View Full Version : Cubendo site hacked / trojan downloader?
12-17-2011, 09:18 AM
I just got on the forum and my Kaspersky gave me a trojan downloader warning on every page I opened. False alarm or bad news??
12-17-2011, 12:14 PM
I'm getting the same
12-18-2011, 01:59 PM
shit. Yeah my other forum got hit by this too. Got to update to the newest vbulletin.
12-18-2011, 03:12 PM
Just upgraded the forum software which should fix the issue. Sorry for the problem!
12-18-2011, 04:18 PM
FWIW - No problem at my end with Kaspersky on FF8 /Opera /Chrome or IE.
This was reported at my forum as well by a member over the weekend who only reported it in FF , no other browser would flag the issue.
I haven't seen any notice from VBulletin either , but if the update definitely fixes it I'll do the update as well.
12-18-2011, 04:47 PM
There is definitely a trojan called kokosina going around the vbulletin forums. Gearfreq was affected too and the update solved it.
12-18-2011, 05:27 PM
Yeh, just reading in on that thread at VBulletin.
The responses on there are useless and I don't see any acknowledgement of a definitive fix.
I am not seeing any of those symptoms on my site , and only one report so far with FF only.
I'll sit for a bit before I update.
Can you browse across to DAWbench Forum and tell me if you are seeing any indication of a highjack
01-01-2012, 09:19 PM
I just came back here and there is no alarm any more. I believe the update fixed the issue? No need to be sorry anyway, gotta be grateful for having the forum :)
I'm pretty sure I wasn't using firefox when I came here and had the alarm, normally I use slimbrowser.
Anyway, happy nu year!
01-04-2012, 11:32 PM
Yeah the update fixed it on both my forums.
In the last days I was several times redirected from the Cubendo site to a p0rn site. The cubendo site popped up for just a second and then the other site appeared. It was only happening on www.cubendo.com and I have seen this on my desktop running Linux and my tablet running WebOS so I don't think it is a virus on my side.
So I suspect the board has been hacked again(?). :eusa_think:
02-29-2012, 08:20 PM
Yeah, still trying to track it down. This was different from the last hack. I got a message from my domain hosting company that they were hacked and our ftp passwords were compromised. I changed that but then forgot that my password was the same for this admin account and they logged in here as me and hacked some shit. Bastards. It's not in the htaccess redirect as I don't even have one, which was what happened the other time. Looks like I will have to get vbulletin support in on this one as I don't know enough to figure out where the redirect is coming from. Stay tuned. thanks for mentioning it.
02-29-2012, 10:02 PM
Anybody still getting the redirect? It only happens here periodically so it's hard to troubleshoot.
03-01-2012, 09:33 AM
damn! Gearslutz just got hacked too. Redirects to a porn portal.
03-09-2012, 12:49 PM
Think I got her fixed. Let me know if its not the case.
Powered by vBulletin® Version 4.1.11 Copyright © 2013 vBulletin Solutions, Inc. All rights reserved.