Possible malware imbedded here?

Keyser Soze said:
I must say it appears the mod response to this has been.... well, somewhat leisurely, to say the least. I understand that resolving these things takes time, and they are probably busy at work behind the scenes, but at least a warning/update sticky to inform people of the threat, advise them on how to protect themselves, and keep us updated on the situation would be appreciated.
Click to expand...

Indeed, the less tech savy people are highly at risk
 
Haven't read throught the thread, but is this the same issue as the pop-up that has been coming up at the board index for the last few days now? When I go to the index a box pops up telling me that IE or FF needs an update to view something and if you happen to press OK, it starts downloading a exe file, which I assume is a virus.

EDIT: Yeah ok its the same thing.
 
My display drivers are screwed. I'm not entirely sure it has anything to do with this but I'm covering my bases. I'm in safemode scanning junk as we speak. I've also been reinstalling my drivers where I can. But sometimes the monitor on my laptop just stops.

I'm getting the green squares here and there too.


Anywho. Just thought I'd post problems I've had since all this began.


:doom: :doom: :doom:
 
Sam Fisher said:
Ok, my browser has been redirecting all over the place tonight{I think I even got a naughty site}, and it seems to only when I'm on the Hype.
Click to expand...

I don't get the pop ups... but something is definitely up... no matter what thread... every time I go on the Hype my CPU has been freezing up. Not getting the pop ups... but it's definitely just not my CPU... my CPU literally needs 5-10 minutes to recover.
 
carrrnuttt said:
Here's what I got from my McAfee:

trojanscreenshotan1.jpg


Each line is for every page I loaded or refreshed.

Since the McAfee I have installed is a corporate application, it logs these issues to a corporate server. SHH is not a blocked site here at work, and I don't get in trouble for viewing it here and there, but if this keeps up, there's a chance that the site or worse - the IP, will get blocked from our servers.
Click to expand...
That's what I've been getting too.
 
I keep getting a bunch of messages popping up on my On-Access Scan that a Trojan virus keeps making its way in everytime I bring this forum up. Any news on whats going on with this?

Nevermind just checked a page back. I guess is there any update on it?
 
Just spent 2 hours fighting this son of a ***** off my computer. System Restore seems to be the only resort to killing it off.

God
 
From what I can gather, we're still working on it.
 
I just tried something, let's see if this works.
 
The boards just randomly changed the style of the board to the classic redux on me when I refreshed a page....

Gremlins in the system lol.
 
The colors are my doing. I'm testing to see if the ad problems we're having are only from the light blue theme, and as such, I've disabled it for the time being. If the red/white/blue is too bright for you, please feel free to try the Dynamite Skin, which is a black/orange theme. I'm going to have the blue theme disabled for at least a day or so, to see if that alleviates the problems with the bad ads.
 
I'm still using the vBulletin blue theme. That doesn't seem very 'disabled' to me.
 
Daisy said:
I'm still using the vBulletin blue theme. That doesn't seem very 'disabled' to me.
Click to expand...

The page timed out on me because I kicked my modem unplugged. It should be disabled now.
 
The other day I got a small window that said to properly view this page I needed to download a plugin. The Hype was one of two tabs that I had open at the time so I don't know that it was the Hype that it was coming from. The URL for the site is akademikerzeitung.ch. Since I wasn't trying to look at that page I used the task manager to shut it down.
 
Things got retro while I was away. But at least I'm not getting Spybot alerts 24/7.
 
Drive-By Downloads (what's this?)
Threats found: 14
Here is a sample:

Threat Name: MSIE DHTML CreateControlRange Code Exec
Location: http://forums.superherohype.com/index.php



Threat Name: MSIE DHTML CreateControlRange Code Exec
Location: http://forums.superherohype.com/member.php?u=46101



Threat Name: MSIE DHTML CreateControlRange Code Exec
Location: http://forums.superherohype.com/member.php?u=22651



Threat Name: MSIE DHTML CreateControlRange Code Exec
Location: http://forums.superherohype.com/member.php?u=75524



Threat Name: Processes Started
Location: http://forums.superherohype.com/member.php?u=32472



Threat Name: Processes Started
Location: http://forums.superherohype.com/forumdisplay.php?f=315



Threat Name: Processes Started
Location: http://forums.superherohype.com/member.php?u=21704



Threat Name: Processes Started
Location: http://forums.superherohype.com/forumdisplay.php?f=22



Direct link to:
Location: http://forums.superherohype.com/



Direct link to:
Location: http://forums.superherohype.com/forumdisplay.php?f=22




Hard to Uninstall (what's this?)
Threats found: 6
Here is a sample:

Threat Name: Unnamed Hard to Uninstall
Location: http://forums.superherohype.com/member.php?u=32472



Threat Name: Unnamed Hard to Uninstall
Location: http://forums.superherohype.com/member.php?u=21704



Threat Name: Unnamed Hard to Uninstall
Location: http://forums.superherohype.com/forumdisplay.php?f=22



Threat Name: Unnamed Hard to Uninstall
Location: http://forums.superherohype.com/forumdisplay.php?f=315



Direct link to:
Location: http://forums.superherohype.com/



Direct link to:
Location: http://forums.superherohype.com/forumdisplay.php?f=22
 
Well, the Annoyance factors could just be the Circut City ads. :o
 
Silicon Surfer said:
The other day I got a small window that said to properly view this page I needed to download a plugin. The Hype was one of two tabs that I had open at the time so I don't know that it was the Hype that it was coming from. The URL for the site is akademikerzeitung.ch. Since I wasn't trying to look at that page I used the task manager to shut it down.
Click to expand...

Seems like that's what we're all getting too. I knew it was malware right away. No site should just randomly ask you to download something. And any official plugins would be authored by the browsers company (Microsoft, Firefox, Opera, etc...), not some seemingly random name. Even after canceling it tried to install, but Avast! antivirus caught the trojan and wiped it out before it could get a foothold on my system.
 
see now i'm worried, i have cancelled it the few time it popped up. but every scan i have done nothing has turned up, so i assumed it didn't install
 
It didn't install on my system. I have AVG free, Ad-Aware, and Spybot and they show nothing. I also have What's Running? 2.2 that I use to see what IP addresses my computer is linked to. They all show nothing suspicious.
 
You must log in or register to reply here.

Similar threads

Midnyte_Sun
Malware in Uploaded Images in Threads on the Hype
2
Replies
30
Views
6K
ComicChick
ComicChick
darkseid26
Windows Security Warning??
Replies
0
Views
1K
darkseid26
darkseid26
Union Jack
malware popping up on hype news page
Replies
21
Views
5K
ComicChick
ComicChick
Asteroid-Man
Virus in the forums?
Replies
4
Views
1K
Morg
Morg
spideyboy_1111
Malware help! please somoene!!!!
Replies
1
Views
880
black_dust
black_dust

Users who are viewing this thread

Total: 1 (members: 0, guests: 1)

Staff online

Members online

Total: 3,914 (members: 27, guests: 3,887)

Latest posts

Forum statistics

Threads
202,336
Messages
22,087,322
Members
45,887
Latest member
Elchido

Share this page

Back
Top
monitoring_string = "afb8e5d7348ab9e99f73cba908f10802"