Malicious Site

**saatuk** · 01-30-2017

Any idea why coming to PE via Opera gets a red screen with a 'malicious site' warning? It's been happening for weeks and I'm getting tired of it.

**Zeuhlmate** · 01-30-2017

I have noticed it too.
It seems to be an Opera 'feature' - if you choose the menu and 'about' then there is a link where you can 'rate' Opera and send them a comment about this.
I have just done that.

**saatuk** · 01-31-2017

Done

**lak611** · 02-11-2017

My antivirus software is doing this.
Screenshot (626).jpg

**interbellum** · 02-15-2017

Originally Posted by lak611

My antivirus software is doing this.
Screenshot (626).jpg

Mine (ESET) did too, but after a few days not anymore.

**lak611** · 02-15-2017

Originally Posted by interbellum

Mine (ESET) did too, but after a few days not anymore.

I'll see what happens. I've been using the site on mobile with the Tapatalk app recently but haven't tried on desktop PC since then.

Sent from my XT1575 using Tapatalk

**interbellum** · 02-15-2017

Well, according to Duncan there's nothing to worry about, as it's the URL from one of the elements from the PE-site.

**stevea** · 02-15-2017

Its a known exploit of vBulletin and it causes anyone accessing this site via Google (and possibly other search engines) to get redirected to a malicious download site.

Opera gets its information about malicious sites from a Yandex blacklist. http://www.yandex.com/infected?url=w...ssiveears.org/

I would say it is something to worry about.

If you want protect your own computer from being redirected and you know how to, add a local host entry of:

127.0.0.1 myfilestore.com

**lak611** · 02-15-2017

I checked on desktop Windows using chrome earlier and ESET didn't give the malicious site pop-up.

Sent from my XT1575 using Tapatalk

**Zeuhlmate** · 02-16-2017

Doesn't it just say that some of us users have put up links that could containe malware?

Originally Posted by stevea

Its a known exploit of vBulletin and it causes anyone accessing this site via Google (and possibly other search engines) to get redirected to a malicious download site.

Opera gets its information about malicious sites from a Yandex blacklist. http://www.yandex.com/infected?url=w...ssiveears.org/

I would say it is something to worry about.

If you want protect your own computer from being redirected and you know how to, add a local host entry of:

127.0.0.1 myfilestore.com

**stevea** · 02-16-2017

It redirects you to http://myfilestore.c0m/ download.php?id=5e0777d3 (which I have munged to stop it working).

What that php file does is controlled by someone else - they could put anything they like in there (malware, ransomware, keyloggers etc.)

Read all about it here:

https://www.vbulletin.com/forum/foru...direct-malware