Hi --
I have been working on this exploit and trojan "stuff" for the past week and I'm exhausted. I'm coming here as my last resort. My AVG scanner has been reporting exploits that include drupal.org forum as well as within apache2triad (perl.dll) (test site local computer) for the past several weeks. I am trying to figure out if these are true exploits or false positives. Can anybody, please, please give me some feedback based on their experiences? It would be helpful to know if anybody else here is receiving the same warnings as I am... as we are most likely using the same program or have visited the same page within Drupal forum. If I am posting in the wrong forum, please forgive me and don't hesitate to move this post to the right forum. Thank you so very much, in advance, for your help.
1. Process: C: Program Files/Mozilla Firefox\firefox.exe Object: drupal.org/node/229750 EXPLOIT LINK TO KNOWN EXPLOIT SITE
2. Process: C: apache2triad\perl\bin\ perl.exe infection: Trojan Horse Backdoor Generic10. AUX Object: C:\apache2triad\perl\site\lib\auto\Win32API\Registry\Registry.dll
Comments
Anybody seeing these exploits
Anybody seeing these exploits on drupal.org or which apache2triad?
nobody knows anything???
Is that what I'm to conclude? hopeful that I'm wrong..
Yep I can see it
I can't comment on apachetriad, but Avast warns me of a virus on the link you've posted. I presume if you clear you caches on your browser you'll stop getting the link warnings, not so sure about the apachetriad ones though.
Have you reported the infected link to the powers that be at Drupal.org? - I will now.
Colin