JenSocial: Social Web Directory and Ning Tips

Social Web Directory :: Social Network Directory :: Ning Tips and Ning Support

Malware rampant over Ning

Seems many Ning communities are being affected by this any answers of what this is yet?

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

In 3 of 51 pages of the website fileden.com, that we tested in the last 90 days, it was established that malware without the consent of the user was downloaded and installed. The last visit of Google to this website was on 2010-10-27 and suspicious content was found on 2010-10-27.

Malicious software includes 32 trojan(s), 11 scripting exploit(s), 2 exploit(s). Successful infection resulted in an average of 5 new process(es) on the target machine.

The Malware is being hosted in 3 Domain(s)- artinflame.co.cc/, hopewillgetluck.su/,tribalfusion.com/.

By the distribution of the malware to vistors of this website, apparently two domains were involved as the carriers, of them- robingood.cz.cc/, afora.comli.com/.

This site was hosted on 1 network(s): AS14141 (WIRESIX).

In the last 90 days apparently fileden.com was the transmitter of the infection of 1 Website(s) ; come.vn/.

In the last 90 days fileden.com hosted malware. It infected 8 Domain(s)-easyvn.com/prince_dbsk/, sukienvolam.tk/, zingvietnam.tk/.

0 members favorited this

Replies to This Discussion

Permalink Reply by JenSocial on October 28, 2010 at 10:56pm

I have not had any first-hand experience of this yet, and hope I don't - - not as a member or Network Creator of any Ning Network.

I can tell you what typically causes this, and why I hate them - - glitter graphics. And honestly, about all I know about it for now. If I find out anything, I'll be sure to report it in your discussion.

Best,

Jen

Permalink Reply by Pagan UnderWorld on October 28, 2010 at 11:08pm

Thank you Jen I will pass that along.

Permalink Reply by Wayne & Char on October 29, 2010 at 2:22am

OMG...If true how doe we protect our sites?

Permalink Reply by Carny Town on October 29, 2010 at 9:50am

First, I am not experiencing any malware problems, out of the usual. But, I agree totally with Jen. The glitter graphics and all of their ilk are a problem. When you create a product on the web, you are then linking to it, which opens up all kind of possibilities for spyware. Not sure how to stop it, but you can do your part by not using the graphics site toolbar, search engine or smilies. Download nothing if Ning does not provide it. Unless it is from an established company like Widgetbox, Youtbe etc. and in the form of an IFrame. Sounds complicated but it only takes about a couple hours to get up to speed on this problem.

Permalink Reply by Wayne & Char on October 30, 2010 at 3:50pm

OMG I used amimated graphic's I got from google search...but my site is fine. Well I wont do that again as well as requesting my members not to use them.

Is there anything else?

Permalink Reply by funflowingmusik on October 29, 2010 at 8:42am

i am having members tell me the same thing, same exact messge... help!!!

Permalink Reply by funflowingmusik on October 29, 2010 at 8:53am

i am wondering if the new writer is somehow causing this??? i'm still have issues on my site, with it being very slow. can't read what u typed till done.. i wrote ning 2 times.. gonna write then about this malware and the writer again.

Permalink Reply by Carny Town on October 29, 2010 at 9:54am

It sounds very much like you have Malware on your computer. Have you run any programs to eliminate it such as Malware Bytes and CCleaner? I have experienced no slowness with the text editor. It seems to be working pretty good.

I have a gut feeling that your problem is not the ning server but is computer related. Run your checkers because slow type normally indicates a busy cpu. And if the CPU is busy and your not doing anything else, malware is sending info about your computer back to its home site.

Permalink Reply by funflowingmusik on October 29, 2010 at 10:25am

Well it works fine everywhere else, and i never received that notice.. it is members who have..i also have two pcs not linked... and have same issue only with writer on my site.. it is fine everywhere else tho

Permalink Reply by Pagan UnderWorld on October 29, 2010 at 10:50am

A member cam.e to me and said she downloaded a screensaver that had fileden attached to it. She deleted it and my malware flag is gone.

Permalink Reply by Wayne & Char on November 12, 2010 at 4:36pm

Malicious software includes 32 trojan(s), 11 scripting exploit(s), 2 exploit(s). Successful infection resulted in an average of 5 new process(es) on the target machine.

Ok I am a little concerned …on 11-6, I received an e-mail from a member of UrNew Connect (Ning Network) named Miriam. I remember going to the site, however I do not recall excepting the friendship or looking at her page.

Yesterday I got an e-mail from Bruce George Media,(Ning Network) and as I read the e-mail, it seemed familiar, so I went to his site and looked at her page and all of her information was all X’s which alarmed me as I was told spammers do that.

I immediately e-mail him and told him what I thought, but cautioned I wasn’t sure.

After which I went back to my e-mail to see if I still had the first e-mail and I did. They both read the same, alarmed again I updated my anti-virus software and ran a scan and low and behold I had a Trojan virus! I did not go back to the other site because I am not sure how it was done or maybe it had nothing to do with it…but I didn’t want to take the risk.

With that said, I am not saying Miriam is a spammer or virus up loader because I don’t know, however, I am concerned that IF she/he or it did have something to do with it was it sent through the e-mail from a Ning site and when I clicked on it the virus downloaded? Is that possible?

Kindly advise,

Thanks Char

Permalink Reply by funflowingmusik on November 12, 2010 at 4:44pm

i went to fileden and i had 3 graphics i deleted and problem stopped for members getting the messege

RSS

Welcome to
JenSocial: Social Web Directory and Ning Tips

Sign In