Master Index of Archived Threads


Infection Blocked

Ceetar May 28 2015 11:12 PM

fyi (might just be me, but worth mentioning) Avast blocked an infection called JS:Redirector-BXF [Trj] at styles/RooseveltAvenue/template/styleswitcher.js

d'Kong76 May 29 2015 10:12 PM Re: Infection Blocked

Thanks for the heads up.

Lefty Specialist Sep 28 2015 07:08 PM Re: Infection Blocked

I keep getting this message: Web attack: Exploit Toolkit Website 67 detected. On my work computer which is pretty well protected (hopefully). Only happens when I do something inside CPF. Very odd.

d'Kong76 Sep 28 2015 08:49 PM Re: Infection Blocked

Thanks, keep us posted if it continues. Anyone else have issues? I've been here on and off most of the day on two computers and haven't gotten any odd warnings or anything. Symantec's site says that message is a high risk for the unprotected.

Lefty Specialist Sep 29 2015 12:43 PM Re: Infection Blocked

Still appears every time I open a page/Click a link within CPF. Only on my work computer. There's nothing when I'm at home. Very odd.

d'Kong76 Sep 29 2015 02:46 PM Re: Infection Blocked

Can/did you run some kind of scan on the work computer?

Lefty Specialist Sep 29 2015 03:26 PM Re: Infection Blocked

Ran a full scan, found nothing. I think it's being blocked by my anti-virus, but I keep seeing the same message pop up over and over and over and....... And it's only when I'm on CPF, nowhere else.

d'Kong76 Sep 29 2015 06:45 PM Re: Infection Blocked

I renamed the file that's causing the message, let us know if that helps.

Lefty Specialist Sep 30 2015 06:44 PM Re: Infection Blocked

Wow, it's gone! Amazin'.

d'Kong76 Sep 30 2015 06:54 PM Re: Infection Blocked

Cool, we headed it off at the pass before Congress intervened!

Lefty Specialist Oct 08 2015 07:49 PM Re: Infection Blocked

It's BAAAAAAAAACK. Same damn message. Wasn't doing it this morning, but it's doing it now.

d'Kong76 Oct 09 2015 02:17 PM Re: Infection Blocked

Is there a message re:styleswitcherA.js this time instead of styleswitcher.js ? Weird that you're the one af(in)fected.

Lefty Specialist Oct 09 2015 07:53 PM Re: Infection Blocked

Well, now it's gone again. I dunno. Computers is weird.

d'Kong76 Oct 09 2015 08:16 PM Re: Infection Blocked

What's weird is that last time this happened (when congress intervened) the problem file kept reappearing and I had to keep renaming it. This time the only file that's in that folder is the one I renamed and you still had issues. Oh well, keep us posted if need be.

Batty31 Nov 02 2015 05:10 PM Re: Infection Blocked

Lefty Specialist wrote: I keep getting this message: Web attack: Exploit Toolkit Website 67 detected. On my work computer which is pretty well protected (hopefully). Only happens when I do something inside CPF. Very odd. I've been getting the message "Norton has blocked an attack by Exploit Toolkit Website 67" quite frequently when I'm here. In fact I'm getting it now as I type!

d'Kong76 Nov 02 2015 06:09 PM Re: Infection Blocked

Batty31 wrote: I've been getting the message "Norton has blocked an attack by Exploit Toolkit Website 67" quite frequently when I'm here. In fact I'm getting it now as I type! Is there any mention of a xxxxxx.js file in your messages?

Batty31 Nov 02 2015 10:01 PM Re: Infection Blocked

It's still happening now. And when I use Opera it doesn't seem to happen and it only happens here. Very strange.

d'Kong76 Nov 03 2015 12:42 AM Re: Infection Blocked

I googled anthonybryanauthor dot com... is he a Mets fan?

Batty31 Nov 03 2015 01:12 AM Re: Infection Blocked

d'Kong76 wrote: I googled anthonybryanauthor dot com... is he a Mets fan? LOL..must be! I still don't understand why that only happens on this site when I use Firefox.

Lefty Specialist Dec 05 2015 02:35 AM Re: Infection Blocked

Kaspersky is blocking the CPF as a malicious site on my home computer. It says 'object is infected by HEUR:Trojan.Script.Generic'

d'Kong76 Dec 05 2015 03:12 PM Re: Infection Blocked

Is it still blocking? Curious that it's only one poster when things like this happen. I did look to see if the thing that helped last couple of times needed to be done but that wasn't the case this time around. Keep us posted.

Lefty Specialist Dec 06 2015 01:43 PM Re: Infection Blocked

Still there. I have to access the CPF on my phone.

d'Kong76 Dec 06 2015 08:36 PM Re: Infection Blocked

Not sure how to help. Is anyone else using Kaspersky on the machine they are visiting the forum on? I have AVG on my laptop and desktop. If the message has more details or a log entry of some sort can you either post it or PM it to me? Thanks.

Lefty Specialist Dec 07 2015 03:00 PM Re: Infection Blocked

Hm. Can access from work, no problem. I'll get the full description tonight, although I think that Trojan warning was the bulk of it. Maybe Kaspersky just had too much vodka. It's a new laptop, although I've had it for a few weeks and this warning's just popping up now. The Kaspersky is the free anti-virus from Best Buy. I'm normally a Norton guy, but hey, free.

Benjamin Grimm Dec 07 2015 03:12 PM Re: Infection Blocked

Maybe it's confused because it sees the words "Lefty Specialist" under a photo of Jacob deGrom. Have you tried replacing your avatar with a photo of Pedro Feliciano?

Lefty Specialist Dec 07 2015 07:36 PM Re: Infection Blocked

I tried using Andres Torres as my avatar. That's why I needed to get a new laptop.

Lefty Specialist Dec 09 2015 02:14 PM Re: Infection Blocked

The requested URL cannot be provided Object URL: http://cranepoolforum.net/phpBB3/index.php Reason: object is infected by HEUR:Trojan.Script.Generic Message generated on: 12/7/2015 7:39:58 PM Just flat-out blocks the site on my laptop.

d'Kong76 Dec 09 2015 02:34 PM Re: Infection Blocked

[fimg=250:3dpi39s1]http://2.bp.blogspot.com/-bITBK2veKKc/US1iyqcejmI/AAAAAAAACgE/7xE9OZC016w/s1600/spock+star+trek.jpg[/fimg:3dpi39s1] This blockage is highly illogical.

d'Kong76 Dec 28 2015 05:10 PM Re: Infection Blocked

Is this still an issue, Lefty S?

Lefty Specialist Jan 01 2016 07:38 PM Re: Infection Blocked

I was actually back and forth with the Yakov Smirnoff and the Kaspersky techs and had to submit the website which was declared free of the Trojan hoobiedoobie. You probably felt them tickle you. Bottom line, as of 10 AM I am reconnected to CPF on this computer. I always had access from other places and devices, so it was more an annoyance than anything else. But thanks and Happy Nude Year!

d'Kong76 Jan 01 2016 08:08 PM Re: Infection Blocked

Lefty Specialist wrote: But thanks and Happy Nude Year! Right bare at ya!

d'Kong76 Jan 18 2016 01:57 AM Re: Infection Blocked

Got this tonight... [fimg=1024:2eohgi7m]http://www.kcmets.com/CPF/011716a.png[/fimg:2eohgi7m]

Nymr83 Jan 23 2016 06:38 PM Re: Infection Blocked

i just had the same thing dkong, what is it about our site that we seem to keep getting infected?

dgwphotography Jan 23 2016 08:22 PM Re: Infection Blocked

I get this same thing every time I hit the back button while on the site.

Nymr83 Jan 23 2016 09:02 PM Re: Infection Blocked

dgwphotography wrote: I get this same thing every time I hit the back button while on the site. yes, that seems to be the culprit!

d'Kong76 Jan 24 2016 02:21 AM Re: Infection Blocked

Nymr83 wrote: what is it about our site that we seem to keep getting infected? Well for starters we need to update our phpBB software version. It really doesn't make much sense. I have three computers on my network all running the same internet security but only my laptop is bothered by the 'virus.' It's an annoyance, not a real threat in my opinion. I'll spend some time on it this week to see what we might be able to do.

Nymr83 Apr 01 2016 02:37 AM Re: Infection Blocked

my work computer is now blocking this site. nothing detected at home.

d'Kong76 Apr 01 2016 03:10 AM Re: Infection Blocked

Yeah, it's a thing. We're leaving here eventually, stuff is in the works. Apologies to all affected (and not infected)...

A Boy Named Seo Apr 18 2016 03:04 PM Re: Infection Blocked

Just thought I'd add that I'm seeing the same. Avast for Mac goes nuts every time I click a page here. Currently 4 notifications all screaming at me about the JS:Iframe-EON [Trj] infection. Still get it even when I add a website exclusion. I checked it on virustotal.com and got this: Looks like Yandex Safebrowsing has blacklisted CPF... Crap I found on that: https://www.mywot.com/en/blog/403-what- ... -by-yandex https://tech.yandex.com/safebrowsing/ Back to work. If we need to do a Jerry Grote telethon to raise funds for a phpBB upgrade, lets do it!

Benjamin Grimm Apr 18 2016 03:16 PM Re: Infection Blocked

Yandex is Russia's version of Google. Maybe Putin is blocking us because of all the anti-Trump stuff that's been posted here! Unfortunately, our current hosting company has no interest in helping us detect or remove viruses or malware. Their policy is pretty much, "if it's there, it's your own fault and your own problem."

A Boy Named Seo Apr 18 2016 03:34 PM Re: Infection Blocked

Imagine how pissed all the Russian Met fans must be... Well that sucks about the host. So I guess then we have no idea what this trojan really is, or where it lives, except for possibly in some java script? Is there js anywhere but the themes? Just curious...

A Boy Named Seo Apr 18 2016 03:38 PM Re: Infection Blocked

FWIW - I get the alerts in Chrome and Firefox but not Safari. Not sure which I trust more or less now...

Benjamin Grimm Apr 18 2016 05:15 PM Re: Infection Blocked

It's happening to me now on my work computer. "Web page blocked!" Category : Malicious Websites. It's possible that this is about to become widespread.

themetfairy Apr 18 2016 06:10 PM Re: Infection Blocked

I can't access the Pool on my phone anymore.

cooby classic Apr 18 2016 08:23 PM Re: Infection Blocked

Still not getting the bottom of the page to load on my ancient (2 or 3 years old) laptop

cooby classic Apr 18 2016 08:23 PM Re: Infection Blocked

Still not getting the bottom of the page to load on my ancient (2 or 3 years old) laptop

d'Kong76 Apr 18 2016 09:17 PM Re: Infection Blocked

I'm sorry to posters who are having these warning messages. I personally don't think the there is much of a threat but please know it is not going to go on without us looking for and implementing one of several solutions. Thanks for your patience.

themetfairy Apr 19 2016 12:21 PM Re: Infection Blocked

I didn't post to complain - I know you guys are doing all you can. I just wanted to add my two cents about how widespread the issues are.

d'Kong76 Apr 19 2016 03:22 PM Re: Infection Blocked

I (we) didn't take anyone's comments as complaints. Just decided yesterday in an email exchange that one of us would make a state of the union statement.

A Boy Named Seo May 19 2016 06:30 PM Re: Infection Blocked

So the new theme seems to have taken care of the infection warnings. Thanks for doing that BG, KC, anyone else that may have been involved...

Benjamin Grimm May 19 2016 06:37 PM Re: Infection Blocked

You're welcome! I'm glad that things seem to have improved.