Other members and I am getting malware warnings from Chrome regarding this forum for the past few days, but on obviously I am not getting them on my phone. Any ideas as to what's going on

Yes, plenty of ideas.

 

There have been two different sweeps of the site by my web hosts, which resulted in some files being removed and some additional security settings employed.

 

I've used several online security checks on the site, with no bad news:

 

 

 

From Sucuri SiteCheck

 

 

 

web site: audioenz.co.nz/

 

status: Verified Clean

 

web trust: Not Blacklisted

 

 

 

Security report (No threats found):

 

check Blacklisted: No

 

check Malware: No

 

check Malicious javascript: No

 

check Malicious iFrames: No

 

check Drive-By Downloads: No

 

check Anomaly detection: No

 

check IE-only attacks: No

 

check Suspicious redirections: No

 

check Spam: No

 

 

 

From Google's Safe Browsing diagnostics page:

 

 

 

What is the current listing status for audioenz.co.nz?

 

This site is not currently listed as suspicious.

 

 

 

From McAfee's Site Advisor:

 

 

 

audioenz.co.nz

 

This link is safe. We tested it and didn't find any significant security issues.

 

 

 

From Norton's SafeWeb:

 

 

 

Norton Rating

 

 

 

Norton Safe Web has analyzed audioenz.co.nz for safety and security problems.

 

Summary

 

 

 

Norton Safe Web found no issues with this site.

 

Computer Threats: 0

 

Identity Threats: 0

 

Annoyance factors: 0

 

Total threats on this site: 0

 

 

 

From AVG's Safe Web:

 

 

 

Currently Safe

 

No active malware was reported recently by users anywhere on this website. (updated Nov 01, 2013 GMT)

 

 

 

YPES OF MALWARE FOUND 0

 

No threats found

 

COMPROMISED PAGES 0

 

No compromised pages

 

The messages in Chrome and Safari started a couple of days after a member posted a suspicious url on the forum - and the forum software automatically formatted that url as a link. I suspect that this is the reason for Chrome and Safari to give warnings on the forum (and only the forum).

 

I've deactivated that as a link and I suspect that, within a couple of days, both Chrome and Safari will cease to give these warnings.

Ok, great. Thanks!

Michael - will this resolve the issues users are having with Avast?

I hope so. It's annoying (and embarrassing!) to have these issues.

Avast is still reporting issues

The thing to remember with systems such as Avast or Chrome's filter is that they access information from their database - they aren't actively checking the site when you log on here.

 

This means that, until their databases are updated, Avast and Chrome will continue to show a false positive. They are always lagging behind the real situation.

On phone and laptop I've not had any warnings.

 

Might be time to update my protection...

Hey Michael I am getting feedback that there is still no login now from Aust—they cannot get on the site. when you go to Enz forums they get this bloody Go Wild Casino BS!!

 

Same on two friends Computers

All seems fine on all my computers and browsers.

I don't use facebook or twittter. Neither do I view porn. I don't have javascript enabled. And I use an automatic history, cookie, and cache cleaner. I am also behind a double firewall.

Every page change it's asking if I want to continue! Safari is my system....it's a cock up! Will it keep doing it or is it going to get fixed?

I had a feeling it had been happening for up to six weeks, I tried to log in from work to the root address audioenz.co.nz/ and the site had been hijacked by a hacker group that advertise your weak spots and then tell you how to fix it... Ever since then my laptop also has picked it up...the two incidents maybe completely independent and I did not see or hear of anyone else getting the flashing pirate head when logging into the root address. I have to disable avast to get in now or use my ipad.

Can any of you who are experiencing this problem please check if you are running java? I have mine disabled and everything is fine.

 

StanleyB;191454 wrote:

Can any of you who are experiencing this problem please check if you are running java? I have mine disabled and everything is fine.

 

Hooray!! that worked, I just disabled Java in Safari, and now no malware warnings when I log in!! Thanks Stanley

With Safari, the other way is to go into Preferences, click on the Security tab and deselect "Warn when visiting a fraudulent website". I have done this so that I can visit my own forum!

 

There may be something similar in Chrome's preferences.

 

Michael Jones;191456 wrote:

With Safari, the other way is to go into Preferences, click on the Security tab and deselect "Warn when visiting a fraudulent website". I have done this so that I can visit my own forum!

 

 

 

There may be something similar in Chrome's preferences.

I personally would not go down that route. It's best to keep the warning notice active just in case the hackers are slowly building up a zombie botnet.

All good today, have Java enabled again (I need it for reading NZ Herald on line), and able to log into the forum without any warnings popping up. Must be fixed - be a relief for our host!!

Yep,

 

Seems Ok here this morning --Safari thanks to the Mods/Mod for the fix--and to Gort

 

for his tips!

 

Des

Chrome still has the malware warning.

Yes Chrome and my school server still have warning.

Yay seems sorted on Safari without any special techniques!

 

Robocop;191469 wrote:

Yes Chrome and my school server still have warning.

 

Same here after logging back in a few minutes ago. Chrome reports Malware while Avast is reporting the following

 

1 Infection Blocked

URL: http://www.audioenz.co.nz/forums/forumdisplay.php/10...

Infection: HTML:Script-inf

 

2Infection Blocked

URL: http://binfostat.dyndns.org/infob.php?i

Infection: URL:Mal

 

I wont comment on what I would do to mongrels that do this :mad:

I would suggest that if you have not done so already, you should clean out the history and cache of your browser. I use Supercleaner to do that automatically at boot up. If you don't clear out the cache, the offending script will re-activate itself every time you access this site.

Some (all ?)browsers have an automatic cleaning option, but this option is normally not set as default. The reason for that is that in the old days internet speed was far slower. So pages were put in a cache in order to aid faster page loading. But these days that's not an issue so auto clean is the way to go.

 

StanleyB;191476 wrote:

I would suggest that if you have not done so already, you should clean out the history and cache of your browser. I use Supercleaner to do that automatically at boot up. If you don't clear out the cache, the offending script will re-activate itself every time you access this site.

 

Some (all ?)browsers have an automatic cleaning option, but this option is normally not set as default. The reason for that is that in the old days internet speed was far slower. So pages were put in a cache in order to aid faster page loading. But these days that's not an issue so auto clean is the way to go.

 

Yep tried that...it doesn't work. I manually deleted every cache file from the local data folder as well.. still no joy.

Followed this with a complete system scan. All clean.

 

I can access the site if I use Incognito in Chrome.. but as soon as you login in you get the warning.....deleted all cookies and saved passwords as well... same result.

 

The problem appears to coming from the websites' login parameters, which possibly means that Google haven't updated their Malware database.

It is possible that Avast is also slow in updating although I find this unlikely.

I guess we got the all clear from Google, since Chrome works again for me today!