DANGER: Autopia.org infected with weapons grade malware
Gojirr
09-04-2010, 06:09 PM
Internet surfers who use the forum Autopia.org as a resource should be aware that the site has been infecting the computers of anyone who visits there with weapons grade malware and self replicating script writing viruses.
The infection was called out by Google seach engines over a week ago and the site management has not removed the viruses or shut down the site.
They have not warned any members of the problem and have infected at least one other site.
People are being advised to remove all links to autopia, from their web pages or postings.
The Virus infection is so deeply imbeded within the autopia.org site that it is doubtful if the attack came from outside the sites management.
The infection has been spreading through the site non stop since it's discovery.
What is the current listing status for autopia.org?
Site is listed as suspicious - visiting this web site may harm your computer.
Part of this site was listed for suspicious activity 4 time(s) over the past 90 days.
What happened when Google visited this site?
Of the 771 pages we tested on the site over the past 90 days, 418 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-09-04, and the last time suspicious content was found on this site was on 2010-09-04. Malicious software includes 8 scripting exploit(s), 8 trojan(s), 6 exploit(s). Successful infection resulted in an average of 3 new process(es) on the target machine.
Malicious software is hosted on 8 domain(s), including plotecco.co.cc/ (http://google.com/safebrowsing/diagnostic?site=plotecco.co.cc/), autourl.in/ (http://google.com/safebrowsing/diagnostic?site=autourl.in/), browserservices.in/ (http://google.com/safebrowsing/diagnostic?site=browserservices.in/).
1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including plotecco.co.cc/ (http://google.com/safebrowsing/diagnostic?site=plotecco.co.cc/).
This site was hosted on 3 network(s) including AS31815 (MEDIATEMPLE) (http://google.com/safebrowsing/diagnostic?site=AS:31815), AS32244 (LIQUID) (http://google.com/safebrowsing/diagnostic?site=AS:32244), AS26496 (PAH) (http://google.com/safebrowsing/diagnostic?site=AS:26496).
Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, autopia.org appeared to function as an intermediary for the infection of 1 site(s) including stumbleupon.com/ (http://google.com/safebrowsing/diagnostic?site=stumbleupon.com/).
Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.
How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.
Next steps:
Return to the previous page. (http://google.com/safebrowsing/diagnostic?site=autopia.org#)
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools (http://www.google.com/webmasters/tools/). More information about the review process is available in Google's Webmaster Help Center (http://www.google.com/support/webmasters/bin/answer.py?answer=45432).
The infection was called out by Google seach engines over a week ago and the site management has not removed the viruses or shut down the site.
They have not warned any members of the problem and have infected at least one other site.
People are being advised to remove all links to autopia, from their web pages or postings.
The Virus infection is so deeply imbeded within the autopia.org site that it is doubtful if the attack came from outside the sites management.
The infection has been spreading through the site non stop since it's discovery.
What is the current listing status for autopia.org?
Site is listed as suspicious - visiting this web site may harm your computer.
Part of this site was listed for suspicious activity 4 time(s) over the past 90 days.
What happened when Google visited this site?
Of the 771 pages we tested on the site over the past 90 days, 418 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-09-04, and the last time suspicious content was found on this site was on 2010-09-04. Malicious software includes 8 scripting exploit(s), 8 trojan(s), 6 exploit(s). Successful infection resulted in an average of 3 new process(es) on the target machine.
Malicious software is hosted on 8 domain(s), including plotecco.co.cc/ (http://google.com/safebrowsing/diagnostic?site=plotecco.co.cc/), autourl.in/ (http://google.com/safebrowsing/diagnostic?site=autourl.in/), browserservices.in/ (http://google.com/safebrowsing/diagnostic?site=browserservices.in/).
1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including plotecco.co.cc/ (http://google.com/safebrowsing/diagnostic?site=plotecco.co.cc/).
This site was hosted on 3 network(s) including AS31815 (MEDIATEMPLE) (http://google.com/safebrowsing/diagnostic?site=AS:31815), AS32244 (LIQUID) (http://google.com/safebrowsing/diagnostic?site=AS:32244), AS26496 (PAH) (http://google.com/safebrowsing/diagnostic?site=AS:26496).
Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, autopia.org appeared to function as an intermediary for the infection of 1 site(s) including stumbleupon.com/ (http://google.com/safebrowsing/diagnostic?site=stumbleupon.com/).
Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.
How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.
Next steps:
Return to the previous page. (http://google.com/safebrowsing/diagnostic?site=autopia.org#)
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools (http://www.google.com/webmasters/tools/). More information about the review process is available in Google's Webmaster Help Center (http://www.google.com/support/webmasters/bin/answer.py?answer=45432).
Automotive Network, Inc., Copyright ©2025