Discussion: Team Canada Blogspot

It's infected. Nobody should click on anything that pops up when you visit http://teamcanadaorienteering.blogspot.ca slash anything.

It might be your computer? If the blog was infected I think all blogspots would be...

No, not my computer. If an intruder gets access to your Blogspot (I think it's sufficiently obvious that access to one Blogspot does not give access to all Blogspots), then the intruder can upload, and the server then serve, files (most likely Javascripts) that do bad things to those who these files are served to. In this particular case, there are pop-ups prompting me to update Java and Flash Player. They should not be served.

It seems to be OK now... please post if anyone is still having issues.

Still appears infected for me, as I found myself before T/D posted.

Getting automatically forwarded to links like this saying that my java needs to be uploaded:
/purchasinglow.com/lp_search.jsp...
/priceboomstore.com/s.php?i...
/click2buystuff.com/s.php?i=df447G...

I am getting this on several computers, as well as on my ipad.

I would definitely (a) clean up all your files (delete all and upload a known non-infected version from somewhere) and (b) change your Blogspot passwords. Sorry if (a) is not possible.

possibly it was infected but is now cleaned, but some infected parts are still in client browser's cache, so only those who got them still see them. One can try clearing cache / refreshing page.

I've never been to that site before but seconds after going there, the page changed to one that looked like the Adobe Flash Player download, only it was from 10funnypics dot com and wanted me to download a file. You've still got a problem.

If the malware writer were just a bit smart, she'd make sure that page admins not be able to readily see its manifestations.

T/D--lets not provide any helpful hints for the malware writers

I have two issues with suspected malware that sound like the above. Maybe someone here can tell me whether they are legit or not.
1) For some time every time I log on to one of my computers - I use three - I get an invitation to update my Java. Is that an invitation to problems? My only program using Java is working fine without the supposed update.
2) My hotmail account gets a demand supposedly from Microsoft that I give them an e-mail address or phone number where they can send me a security code. Supposedly I only have few days left to respond. Does anyone know whether or not this is legitimate?

I recommend using Glary Utilities and Malwarebytes to scan your computer.

@gordhun Nobody from Microsoft will ever call you. ... and yes, update your Java. and your Windows. and your Adobe.

If you click "start", "all programs", scroll down to java, SINGLE left click it, scroll down to "check for updates" and click that.

I am certainly NOT an expert but I would update via that route versus clicking on something that I thought might be suspicious

gordhun...

Most updates for things like Java are focused on bugfixs, not new features. So your stuff will run on the old versions, but not as safely. About 3 or 4 times a year, Oracle releases what they call "critical patch updates". You probably want to have those.

As for Hotmail (Outlook?) accounts, I do know that, in order to make your account more secure, Microsoft will require a two-step verification to access more sensitive parts of your account. (i.e., you will have to enter a password AND enter a code that they send to your phone and/or secondary email account). The new Microsoft accounts ask you to configure this from the start, but these kinds of features were rare back in the Hotmail days.

If the notifications seem sketchy to you (like talking to a telemarketer), like carlch said, there are always safer ways to accomplish the same task. Go directly to outlook.com, and you can edit your account properties by clicking on the 'gear' icon. (Doing it this way is sort of like calling the bank yourself, instead of dealing with a shady person who called you out of the blue). People might be able to hijack your computer to send you messages that look like they are coming from Outlook.com, but if somebody actually hijacked Outlook.com the way this BlogSpot page appears to have been hijacked, the whole world would know pretty soon.

Of course, if you've let your computer get infected by a keylogger, it doesn't really matter if the website is completely safe, everything you do could be compromised.

Thank you all for the information and advice.
Even though they get backed up regularly I have so many map files on this one computer I dread the crash that will have me reloading everything and inevitably losing some things. You have put my mind at ease.