Vulnerability Attacks on this site - Page 1

Hi Every body I was trying to print the printable PDF version of Schumman vom Tronje pedigree in google chrome in my Mac on this site:

https://www.pedigreedatabase.com/german_shepherd_dog/dog.html?id=735544-schumann-von-tronje

As soon as I downlowaded that pedigree a music started on my computer like a comercial but with no video just audio, google chrome asked me to access to my contacts and as I was still unaware of the problem I allowed it. 

Then I thought it might be a virus, immediatelly I bought Norton Internet Security for Mac and it was found that my computer was under attack, there were 4 computer intrussions, next day when I checked the History on google chrome I found somebody using my browswer between 12 midnight and 5 am trying to buy tickets for traveling on vacation and tickets for shows in New York City. I started to panic and I reseted google chrome browser, changed from another computer all my bank accounts and credit card accounts passwords, I checked my credit report and placed aa fraud identity alert.

In any case I don't think that this attact is related with Schumman vom Tronge is that some people here are register as members only to place their malware softwares and comit crime, I think I am fine now but it was so scared for almost a week, so please be careful when you download pedigrees from this site.

Joe

What date did this happen?

10/28/2014

As soon as I signed in and tried to open the first thread I got Malwarebytes announcement that something was trying to download malicious software on my computer and it had been blocked. I don't know if you can glean anything at all from the box at the corner or not. Here it is. 

OP,

I do have a few questions. We get a lot of people downloading PDF pedigrees and you are the first to say you caught a virus. I wish you had reported it immediately to an admin.

1. Do you leave your computer on all night?

2. Do you know all firewalls will show attempts to access your computer?

 A person would have to have Oli's level of access to the server in order to be able to change the site to give out malware and viruses. I don't think Oli has felt he has been compromised in the least. If you look at site advisors like

http://www.google.com/safebrowsing/diagnostic?site=pedigreedatabase.com

or

http://scanurl.net/?u=pedigreedatabase.com&uesb=Check+This+URL#results

https://www.mywot.com/en/scorecard/pedigreedatabase.com

or for that matter any site advisor site or blacklist you will not find pedigreedatase.com listed as being bad. In fact Oli has gone above and beyond to keep this site clean.

 

 

Jenni,

Can you please provide the IP address that was blocked, I can't make it out clearly.

 

Everyone,

We suspect that computers are already infected with malware that has mostly been flash driven. The some of the ads on the site contain flash so any time an infected computer tries to reach a page with a flash ad - they will get the flash pop up they are getting asking them to download an update. To test this I would search out a site that had flash players/content and see if you get the pop up. Test flash here  http://www.adobe.com/software/flash/about/

If you are having the flash pop up or any weird pop up here - please please please please go to this site and download this software and run it on your computer  http://www.bleepingcomputer.com/download/adwcleaner/

I also strongly suggest an add on called MYWOT https://www.mywot.com/. It will show you links in searches that are rated for safety. You can use it at any site by copying the URL and taking it to a search engine and searching for it, MYWOT will show you which sites are good or bad.

 

Please everyone I believe the things happening to you I just don't buy that it is coming from this site. I am huge on security and am protected in many ways so what I am saying is if I felt this was coming from this site I would be bugging Oli constantly about it. I myself have tried 5 computers and 2 phones and I can't get this flash thing to come up. There are 6 other admins plus Oli and not one of us have seen it. I would venture to say the vast majority of users haven't seen it.

 

Admin, I don't think anyone thinks it's actually ON this site- just that there's definitely a connection or commonality that's causing the problems to arise when we navigate here. I have not had any problems anywhere else and it's practically instantaneous once I log in here. I go to a lot of sites that use Flash and haven't gotten anything similar. 

I just thought I'd show you this in case it means something to you that I don't know enough to pick up. Just offering clues, not "blaming" PDB or Oli. 

Jenni,

Can you see how this may snowball into more than it is?

 

Possibly, but having factual information as opposed to ignorant mass paranoia seems the preferable route to me. I thought since you're the guru on techie stuff, offering clues and showing you what's happening would help figure out what lapse in the user's security is allowing this stuff to happen.

One thing I did that helped a lot right off the bat was to update Chrome. Newest version of Chrome blocks stuff the older versions did not and that fixed the issues I was having with other shopping stuff popping up on ebay and CL. 

Try that adware program from bleeping computer. Jenni, I know just enough to be dangerous, lol. At least your malware is blocking your computer from going to that site, that is a good thing.

BTW, that IP is an amazon.com IP.

 

IP:	54.200.194.83
Decimal:	919126611
Hostname:	ec2-54-200-194-83.us-west-2.compute.amazonaws.com
ISP:	Amazon Technologies
Organization:	Amazon.com
Services:	None detected
Type:	Corporate
Assignment:	Static IP
Blacklist:

Geolocation Information

Country:	United States
State/Region:	Oregon
City:	Boardman