Nice virus alert...

Lamont · Sep 2009

A nice trojan to hijack anyone's machine who visits. iFrames are nice, but a huge security risk to the site. Below is a trojan injected into a PC members site, which is linked from his sig0. Names have been hidden and the member alerted.

I am sure a few of you have clicked the link to this person's site. Update yer virus scanners and check yer comps.

Mark Dygert · Sep 2009

Humm does this persons sig also say "my host is constantly being hacked visit my other site over here ->"?:poly124:

Lamont · Sep 2009

Vig wrote: »

Humm does this persons sig also say "my host is constantly being hacked visit my other site over here ->"?:poly124:

Ha!! I'm not that dense. And if that were the case he needs TWO new hosts..

Yozora · Sep 2009

great, now I'm gonna stop clicking peoples sigs

JasonLavoie · Sep 2009

Fack it... I'll click all the sigs I want, if its for inspiration... NOTHING WILL STOP ME!!!

a fack... got a virus

Jeremy Lindstrom · Sep 2009

let a mod know so they can remove his sig and website location privileges? Heck, let us know too doesn't help us any if we don't know if we visited it.

Firebert · Sep 2009

http://www.homestarrunner.com/sbemail118.html

Lamont · Sep 2009

JasonLavoie wrote: »

Fack it... I'll click all the sigs I want, if its for inspiration... NOTHING WILL STOP ME!!!

a fack... got a virus

While you're running a virus scan, would you be a champ and ship me like 10 crates of vanilla Clodhoppers?

bearkub · Sep 2009

Yes, please notify at least one of the administrators (adam or myself, for example) of the username so we can remove the sig immediately. Thanks

Andreas · Sep 2009

Why dont people actually make nice viruses? Like a virus that would automatically defragment your drive for you...or something helpful like that.

Mark Dygert · Sep 2009

That's kubs nice way of saying:

I want ZEE names... and wantzem NOW!

MoP · Sep 2009

Yes, please tell one of the moderators which member it is, we can edit the sig manually ASAP and remove the link.

Mark Dygert · Sep 2009

Blenderhead wrote: »

Why dont people actually make nice viruses? Like a virus that would automatically defragment your drive for you...or something helpful like that.

Because its easier to make money hooking up a underground network of unsuspecting computers and then sell access to that network to the highest bidder, for whatever nefarious purposes they have...

bearkub · Sep 2009

The offending link, as far as we know, has been removed. Please notify an administrator if the issue is still present.

aesir · Sep 2009

While we're on the topic, I'd just like to say the program MALWAREBYTES is the best fucking free antivirus program ever.

Blaizer · Sep 2009

he must be using wordpress... malicious iframe code injections

D4V1DC · Sep 2009

So what are you saying wordpress blogs are unsafe now?

If so someone give me free webspace!

Off Topic:
Blaizer, I like how your 3D sections has mouseover image popups, but your Game art doesn't (at least the first two images don't) you should make it like the 3D section mouse over. I am using Opera if it works on other browsers then oh well

.

Mark Dygert · Sep 2009

A lot of template or linked sites tend to have the same security holes. Find a hole in one and you've probably found a hole in a lot of others.

bearkub · Sep 2009

aesir wrote: »

While we're on the topic, I'd just like to say the program MALWAREBYTES is the best fucking free antivirus program ever.

ditto.

http://www.malwarebytes.org/

System · Sep 2009

Haven't tried that one yet but Spybot Search and Destroy still rules with an iron fist, been running that with Symantec AV 10 (not norton) haven't had an infection for wow, 2 years, maybe more!

ps: the vista x64 firewall selection is not nice, currently have comodo but it's nothing like sygate was when I had xp

Cody · Sep 2009

Hey guys, ya it was my site. I don't know what to do. Some of you might have seen a thread I made awhile back with this problem. Well it seems it is back. I have contacted 1and1 Hosting and they are no help at all. I do not use iframes in my site at all, so I dont know where it is coming from. I write all my pages by hand in notepad. I have tried re uploading my site, and it still is doing this. Ideas?

Lamont · Sep 2009

Blaizer wrote: »

he must be using wordpress... malicious iframe code injections

Wordpress by default does not allow ANY iframe code and does not allow it to run for this very reason. People who add iFrame to wordpress have to go through some serious loops to get it done. I think some tool wrote a plug and was blasted for it.

But the site is not wordpress. I told an admin before I went to bed.

Cody · Sep 2009

Ya it's def not wordpress, it is a handwritten html code site. very simple.

Blaizer · Sep 2009

Some wordpress versions have high security issues, and for art of magic, you can get "injections", just putting "read more" and without installing a bad plugin hehe. If your web is in a shared hosting, and one of the webs hosted is "infected", it's very usual to get malicious injections. These trojans writes a malicious code in all the web files they find.

I have had a similar problem with wordpress in Dreamhost. The support was fast and they solved the problem. I'm not a fan of plugins for wordpress, so i didn't imagine what could have happened.

So, if an antivirus is saying you got an iframe trojan... just browse the code and search "iframe". There should be a line of code pointing to a remote server, an iframe code you didn't write. Replacing the html files should have solved the problem :S, Support of your hosting should help, i'm sure they have a form for infections/viruses threads. All hostings should make a daily scan...

S!nz, i'm working in a new website, that's old and will be renoved :P

Nice virus alert...

Replies