Pages: [1] 2

Author Topic: Cyndi's List - Phoenix Exploit  (Read 2815 times)

Offline GrahamSimons

  • RootsChat Marquessate
  • *******
  • Posts: 3,149
    • View Profile
Cyndi's List - Phoenix Exploit
« on: Sunday 29 July 12 10:37 BST (UK) »
I am using AVG antivirus and am getting warnings that Cyndi's List www.cyndislist.com is infected with the Phoenix Exploit kit. There's a posting on the AVG site, ostensibly from the site owner, to say that the site is free of threats. Has anybody else had similar experience - and in particular do other anti-virus programs pick up this threat?

Thanks

Graham
Simons Barrett Jaffray Waugh Langdale Heugh Meade Garnsey Evans Vazie Mountcure Glascodine Parish Peard Smart Dobbie Sinclair....
in Stirlingshire, Roxburghshire; Bucks; Devon; Somerset; Northumberland; Carmarthenshire; Glamorgan

Online jim1

  • RootsChat Marquessate
  • *******
  • Posts: 24,816
  • ain't life grand
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #1 on: Sunday 29 July 12 12:15 BST (UK) »
I've got AVG & it's not flagging up anything from this site.
jim
Warks:Ashford;Cadby;Clarke;Clifford;Cooke Copage;Easthope;
Edmonds;Felton;Colledge;Lutwyche;Mander(s);May;Poole;Withers.
Staffs.Edmonds;Addison;Duffield;Webb;Fisher;Archer
Salop:Easthope,Eddowes,Hoorde,Oteley,Vernon,Talbot,De Neville.
Notts.Clarke;Redfearne;Treece.
Som.May;Perriman;Cox
India Kane;Felton;Cadby
London.Haysom.
Lancs.Gay.
Worcs.Coley;Mander;Sawyer.
Kings of Wessex & Scotland
Census information is Crown copyright,from
www.nationalarchives.gov.uk/

Offline mhg

  • RootsChat Extra
  • **
  • Posts: 39
  • Mostly Harmless
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #2 on: Sunday 29 July 12 12:35 BST (UK) »
I've just checked.  Cyndi's list is flagging up the Phoenix Exploit using AVG.

Phoenix feeds false links to the browser, hoping that you click on one to get infected.

Areas: Australia, Canada, England, Ireland, Scotland
Names: Brighton, Campkin, Gray, Marshall, Milne, Riordan, Robson, Smith, Sutterby, Teasel, Young

Offline Nick29

  • Deceased † Rest In Peace
  • RootsChat Marquessate
  • ********
  • Posts: 6,273
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #3 on: Monday 30 July 12 10:37 BST (UK) »
AVG is famous for its 'false alarms'.  I've just visited the page and my Kaspersky AV and Web Security isn't phased by it  :)
RIP 1949-10th January 2013

Best Wishes,  Nick.

Census information Crown Copyright, from www.nationalarchives.gov.uk

Offline roopat

  • RootsChat Aristocrat
  • ******
  • Posts: 1,112
  • Census information Crown Copyright, from www.nationalarchives.gov.uk
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #4 on: Thursday 16 August 12 17:09 BST (UK) »
I've just tried twice to get onto the site and each time my anti-virus (ESET) blocked it, mentioning a trojan and advised me to reboot to clean the infection. (I think that's what it said) Nothing about Phoenix. I don't have AVG.

Any ideas?

Pat
King, Richardson, Hathaway, Sweeney, Young - Chelsea, London
Richardson - Rayne Essex
Steward, Hindry, Hewitt - Norfolk, North Walsham area

Online jim1

  • RootsChat Marquessate
  • *******
  • Posts: 24,816
  • ain't life grand
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #5 on: Thursday 16 August 12 17:40 BST (UK) »
I've just tried it & it's done the same.It's called a false positive & won't do any harm.
Warks:Ashford;Cadby;Clarke;Clifford;Cooke Copage;Easthope;
Edmonds;Felton;Colledge;Lutwyche;Mander(s);May;Poole;Withers.
Staffs.Edmonds;Addison;Duffield;Webb;Fisher;Archer
Salop:Easthope,Eddowes,Hoorde,Oteley,Vernon,Talbot,De Neville.
Notts.Clarke;Redfearne;Treece.
Som.May;Perriman;Cox
India Kane;Felton;Cadby
London.Haysom.
Lancs.Gay.
Worcs.Coley;Mander;Sawyer.
Kings of Wessex & Scotland
Census information is Crown copyright,from
www.nationalarchives.gov.uk/

Offline stanmapstone

  • RootsChat Marquessate
  • *******
  • Posts: 25,798
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #6 on: Thursday 16 August 12 18:41 BST (UK) »
McAfee SiteAdvisor, cyndislist.com  We tested this site and didn't find any significant problems.

Stan
Census Information is Crown Copyright, from www.nationalarchives.gov.uk

Offline roopat

  • RootsChat Aristocrat
  • ******
  • Posts: 1,112
  • Census information Crown Copyright, from www.nationalarchives.gov.uk
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #7 on: Thursday 16 August 12 20:50 BST (UK) »
Thank you all.

ESET has 'quarantined' the site, not quite sure what that means exactly so will ring my local friendly computer boffins tomorrow (who know our computers well!) just to be on the safe side.

King, Richardson, Hathaway, Sweeney, Young - Chelsea, London
Richardson - Rayne Essex
Steward, Hindry, Hewitt - Norfolk, North Walsham area

Offline Nick29

  • Deceased † Rest In Peace
  • RootsChat Marquessate
  • ********
  • Posts: 6,273
    • View Profile
Re: Cyndi's List - Phoenix Exploit
« Reply #8 on: Friday 17 August 12 08:39 BST (UK) »
My Kaspersky Internet Security is now blocking the site.  It alleges that the site is infected with the iFramer trojan which can attempt to access information on the remote computer by using hidden iFrames in the website code.

RIP 1949-10th January 2013

Best Wishes,  Nick.

Census information Crown Copyright, from www.nationalarchives.gov.uk
Pages: [1] 2