HomeBackdoor malware spread by fake security
3 posters
Page 1 of 1
Backdoor malware spread by fake security
by jkh February 12th 2021, 2:48 pm
Howdy all
My forum was running slow today and I kept getting a 'maintenance' page. While I was waiting for the forum to load I could see, in the bottom left hand corner it said waiting for dealctr.com - I googled it and it said it's a 'backdoor malware that's spread through fake security'.
Marvellous.
Does anyone know how it got there and how I can get rid of it please? Does this affect all members of my forum? I don't get the same alert on any other website, so I guess it's not a virus on my computer...
I'm a bit concerned about 'fake security'.
Thank you.
My forum was running slow today and I kept getting a 'maintenance' page. While I was waiting for the forum to load I could see, in the bottom left hand corner it said waiting for dealctr.com - I googled it and it said it's a 'backdoor malware that's spread through fake security'.
Marvellous.
Does anyone know how it got there and how I can get rid of it please? Does this affect all members of my forum? I don't get the same alert on any other website, so I guess it's not a virus on my computer...
I'm a bit concerned about 'fake security'.
Thank you.
jkh- Forumember
- Posts : 644
Reputation : 17
Language : english -
Re: Backdoor malware spread by fake security
by skouliki February 12th 2021, 3:29 pm
Your forum is definitely secured
Now I refresh many times you forum but i didnt get any error or maintenance page
Is this still happening?
Now I refresh many times you forum but i didnt get any error or maintenance page
Is this still happening?
skouliki- Manager
-
Posts : 15391
Reputation : 1709
Language : English,Greek
Location : Greece -
Re: Backdoor malware spread by fake security
by The Godfather February 12th 2021, 4:19 pm
Hello @jkh
We experienced a problem with one of our servers which was charged for several minutes. Based on your post and the time you posted it, this corresponds perfectly to this problem. Hence the latencies you encountered while browsing your forum.
We experienced a problem with one of our servers which was charged for several minutes. Based on your post and the time you posted it, this corresponds perfectly to this problem. Hence the latencies you encountered while browsing your forum.
Last edited by The Godfather on February 12th 2021, 4:20 pm; edited 1 time in total
The Godfather- Administrator
- Posts : 5343
Reputation : 846
Niko likes this post
Re: Backdoor malware spread by fake security
by jkh February 12th 2021, 4:20 pm
Hi Skouliki 
I activated the adblocker on my browser for my forum, then I didn't get the alert. I also didn't get the alert after I deactivated the adblocker.
I also deleted the forum cookies and ran a virus check, but no virus on my pc, so I guess whatever the problem was it's been resolved somehow.
I haven't seen that dealctr.com thingy before.
How do you know my forum is secure? Is it because of the padlock thing at the top?
I activated the adblocker on my browser for my forum, then I didn't get the alert. I also didn't get the alert after I deactivated the adblocker.
I also deleted the forum cookies and ran a virus check, but no virus on my pc, so I guess whatever the problem was it's been resolved somehow.
I haven't seen that dealctr.com thingy before.
How do you know my forum is secure? Is it because of the padlock thing at the top?
jkh- Forumember
- Posts : 644
Reputation : 17
Language : english -
Re: Backdoor malware spread by fake security
by jkh February 12th 2021, 4:22 pm
Ah thank you for explaining...all seems to be well nowThe Godfather wrote:Hello @jkh
We experienced a problem with one of our servers which was charged for several minutes. Based on your post and the time you posted it, this corresponds perfectly to this problem. Hence the latencies you encountered while browsing your forum.
jkh- Forumember
- Posts : 644
Reputation : 17
Language : english -
Re: Backdoor malware spread by fake security
by jkh February 12th 2021, 4:27 pm
Oh, I've just seen it again....
and this: ct.sddan.com (open threat exchange)
and this: ct.sddan.com (open threat exchange)
jkh- Forumember
- Posts : 644
Reputation : 17
Language : english -
Re: Backdoor malware spread by fake security
by skouliki February 12th 2021, 4:36 pm
Please don't double/tripple post, use the edit button instead
skouliki- Manager
- Posts : 15391
Reputation : 1709
Language : English,Greek
Location : Greece -
Re: Backdoor malware spread by fake security
by The Godfather February 12th 2021, 4:44 pm
You talk about external resources. For the first mentioned, certainly called by an advertising network that we use: Criteo, Google Adsense, Taboola...
For the second (sddan.com), it is the provider of our consent banner for the GDPR.
Likewise, we have just intervened once again on the server in question.
For the second (sddan.com), it is the provider of our consent banner for the GDPR.
Likewise, we have just intervened once again on the server in question.
The Godfather- Administrator
- Posts : 5343
Reputation : 846
TonnyKamper likes this post
Similar topics» The security 'Disallow admin to send new password' is active in Admin Panel > General Admin > Security
» The security 'Disallow admin to send new password' is active in Admin Panel > General Admin > Security
» Fake Abuses
» Fake Name Generator
» Idiot posting fake abuses
» The security 'Disallow admin to send new password' is active in Admin Panel > General Admin > Security
» Fake Abuses
» Fake Name Generator
» Idiot posting fake abuses
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum
Facebook
Twitter
Pinterest
Youtube
