Domaining.com Alert from Chrome

15

I already sent Francois an email about this, but I want to let you know about an error message I just received from Google Chrome when I visited Domaining.com, and you should be cautious this evening.

According to the message, Google may have detected some sort of malware, so proceed with caution tonight if you visit Domaining.com. I visit Domaining.com several times a day, and I have never seen an error message like this on the site.

I know Francois works as much as I do, so I am sure it’s temporary.. However, if you use a web browser that doesn’t provide alerts like Chrome, you should be cautious when visiting tonight.

A screenshot of the error message I received is posted above. Let me know if you see the same thing.

15 COMMENTS

  1. Didn’t see your post, Elliot.
    Got here thru domaining.com.
    Doing a full sweep on my computer now.
    Was about to be hijacked to some .ru site with Top 10 Sex something or other.

  2. I have had this happen to my site before, and it turned out to be an advertisement engine (openx) that had a security hole that someone exploited. The hacker injected infected ads, so Google flagged it as a “problem” site.

    Once I updated OpenX, and removed his infected banners, AND notified Google that I had repaired things, it took a day to update.

  3. @Uzoma, I checked out namebee why do they still have ygrab.com in their feed. Some seo company is using if for backlinks. Where did that kid go to anyhow, his name was Ross too aye?

  4. Yes,

    My antivirus software blocked the Domaining.com site completely and says “The website was blocked because it has a attacking virus installed.

  5. Oh No!

    This virus is a serious threat!

    Unbelievable!

    It’s all over.

    Not just that it took total control over my computer, it just started activating my espresso-machine which is now making smoothies. Outside there are loud sirens with cops aiming there guns at my front door, screaming “ Hey you cybersquatter, come out with your arms raised and DROP YOUR NAMES! “

  6. Hi,

    Unfortunately we have been victim of an SQL injection attack originating from multiple Chineses IPs. The domain where they apparently host their adware script is:
    http://whois.domaintools.com/jjghui.com
    The domain owner appears to be fake.

    Apparently +70,000 web servers has already been successfully attacked:
    http://www.google.fr/search?hl=&q=%22http%3A%2F%2Fjjghui.com%2Furchin.js%22&sourceid=navclient-ff&rlz=1B3GGLL_frFR374FR378&ie=UTF-8

    We immediately cleaned our database (nothing stollen) and started to check and close all the possible doors for such attacks. We continue securing as much is possible to avoid a new hack attempt.

    I notified Google our servers has been cleaned so I hope they will soon remove the penalty that Firefox and other browsers use to flag dangerous sites.

    The positive of the story is we are making many coding changes to better secure our sites and partitionning our database for an improved safty .

    I apologize for the inconvenience and thanks to Elliot for the alert this night.

    Francois

    PS: Special thanks to Louise Timmons for his appreciated support on this matter.

  7. Google penalty has been removed.
    I hope the security barriers added will prevent future similar attacks.
    Again, sorry for the inconvenience.

Leave a Reply