• Register
  • Help
Results 1 to 2 of 2

Topic: Virus attempt at Synthopia site

Share/Bookmark
  1. #1

    Virus attempt at Synthopia site

    sponsored links


    ***Advertisments***
    ALL:

    I realize this might be better posted elsewhere but as this is a high visibility forum, it seems the logical place. Admins may move it as they please.

    While reading the thread about virtual orch machines being protested, the supplied link points to a www.synthopia news article. Clicking on this link fired off my antivirus with an attempt to place the java based Trojan "Byteverify" on my machine.

    Additional files placed with this attempt are:

    f-u-c-k.htm (dashes inserted to pacify forum abuse filter)
    exploit.htm

    found in your Temporay Internet Files folder.

    Repeated testing at Synthopia sets of this same virus alert each time so it looks to be either something on their site or a 3rd party ad link.

    I have sent same message to their feedback form and contents of my virus sweep log is below.

    Please be aware of this if you have visited Synthopia.

    Category: Threat alerts
    Date,Feature,Threat Name,Action Taken,Item Type,Target,Suspicious Action,Virus Definition Version,Product Version,User Name,Computer Name,Details
    11/28/2004 12:20:57 PM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\In secureClassLoader.class-b530405-13b75a05.class
    11/28/2004 12:20:56 PM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Du mmy.class-2998a3fe-23874084.class
    11/28/2004 12:20:54 PM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Ge tAccess.class-168634b0-716ecd71.class
    11/28/2004 12:20:51 PM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cla ssload.jar-568f1b37-536a4fb1.zip
    11/28/2004 12:20:43 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\OJFRU4L5\~~~~[1].htm
    11/28/2004 12:20:43 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\OJFRU4L5\~~~~[1].htm
    11/28/2004 12:20:43 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\MXZSXGZA\exploit[1].htm
    11/28/2004 12:20:43 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\MXZSXGZA\exploit[1].htm
    11/28/2004 11:42:34 AM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\In secureClassLoader.class-b530405-118f2941.class
    11/28/2004 11:42:30 AM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Du mmy.class-2998a3fe-144bfe10.class
    11/28/2004 11:42:23 AM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Ge tAccess.class-168634b0-48ffe41f.class
    11/28/2004 11:42:16 AM,Auto-Protect,Trojan.ByteVerify,Automatically deleted,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cla ssload.jar-568f1b37-49e22fe5.zip
    11/28/2004 11:42:05 AM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\3MWRZXCL\~~~~[1].htm
    11/28/2004 11:42:05 AM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\3MWRZXCL\~~~~[1].htm
    11/28/2004 11:42:05 AM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\5BNJLHSE\exploit[1].htm
    11/28/2004 11:42:05 AM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200411230016,10.0.1.13,user,computer,Source: C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\5BNJLHSE\exploit[1].htm


    Just FYI
    Dig

  2. #2

    Re: Virus attempt at Synthopia site

    Fixed:::

    Thanks for the email.

    We noticed some files had been corrupted over the weekend, and it appears to be a result of a vulnerability in the forum software that we use. A patch was released for this problem, so we've updated the forum software and re-published the site html and graphics.

    Please let us know if you encounter any additional problems after reloading the page. If so, please use the Feedback form to let us know what you encountered and the page you were on.

    Thank you very much for your note and sorry about any inconvenience.

    J.
    __________________________________________________
    Synthtopia Electronic Music News and Reviews http://www.synthtopia.com/
    Newsfeed: http://www.synthtopia.com/rss.xml

Go Back to forum

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •