WTF is this site doing? Virus detection needed

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • sortie
    Confirmed User
    • Mar 2007
    • 7771

    #1

    WTF is this site doing? Virus detection needed

    These two sites are showing up in my referral stats(blackmonsters.com, but I doubt they are sending me hits. What reason would they have for that.

    http://cumallday.net
    http://blackvideo.biz

    I pulled the code from their page and never see any links to my site.

    Anybody with good virus protection know how to check this out?
    I just figure these site might have some shit on it.

  • Juicy D. Links
    So Fucking Banned
    • Apr 2001
    • 122992

    #2
    detected: malware Exploit.Win32.IMG-ANI.gen (modification) URL: http://search-biz.org/2.ani

    Comment

    • sortie
      Confirmed User
      • Mar 2007
      • 7771

      #3
      this was on one site in the code :

      #SUB1|OBJECT61# #SUB1|OBJECT62# #SUB1|OBJECT63# #SUB1|OBJECT64#

      I'm guessing this is replaced with something when a surfer actually loads the page.

      I didn't load the page in my browser because I don't have good anti virus on this laptop I'm on right now.

      Comment

      • sortie
        Confirmed User
        • Mar 2007
        • 7771

        #4
        Originally posted by Juicy D. Links
        detected: malware Exploit.Win32.IMG-ANI.gen (modification) URL: http://search-biz.org/2.ani

        Yeah, I figure it was a shit site, I'm just wondering what they are trying to do with my domain. They either send fakes hits or are hotlinking in a way that I don't see it.

        Comment

        • sortie
          Confirmed User
          • Mar 2007
          • 7771

          #5
          Tell people not to click the virus link. I almost clicked it.

          Comment

          • _mC_
            Confirmed User
            • Jun 2002
            • 1195

            #6
            It's giving out rainbows and sunshine!

            Process and Settle in USD/EUR/GBP
            KGreer at SegPay dot com
            ICQ~234-382-798

            Comment

            • StarkReality
              Confirmed User
              • May 2004
              • 4444

              #7
              Originally posted by Juicy D. Links
              detected: malware Exploit.Win32.IMG-ANI.gen (modification) URL: http://search-biz.org/2.ani
              Are you using IE and Avira ? I ask because this combo will report almost every animated cursor file as malicious, even if it isn't, it's a common fake alert.

              Comment

              • StarkReality
                Confirmed User
                • May 2004
                • 4444

                #8
                http://www.microsoft.com/technet/sec.../MS07-017.mspx

                Comment

                • sortie
                  Confirmed User
                  • Mar 2007
                  • 7771

                  #9
                  Ok, but why are they sending hits to my site?

                  Comment

                  • sortie
                    Confirmed User
                    • Mar 2007
                    • 7771

                    #10
                    I wanna know what smokeythebear thinks about this.

                    He's probably got some shit to handle this.

                    Comment

                    Working...