anti virus/spyware? - Paintball Forum - Paintball guns and gear forums

Reply

Old January 21st, 2010, 05:44 PM   #1 (permalink)
Administrator
 
truebluefan's Avatar
 
Join Date: Sep 2007
Posts: 549
Blog Entries: 43
anti virus/spyware?

This is what I am asking the posters and staff in the other forums.

Fake anti virus, scamware prompts are running rampant in the internet. Recently, just before the holidays the NY Times was hit with this ad via a third party advertisers.

So I was wondering if any of you are experiencing this here and only here, expecially recently

We have two staff members and myself at MMA forum that have had the problem for over a month now.

Tech came on there last week for 2.5 hrs and the ad, if it is indeed here, never got to them. So, that tells them, and me that the odds of the ad being there is slim, although, it doesnt mean it's not here either.

For those that dont know what I am talking about, the ad loads up in the window you are in at MMA forum and gives the user the impression that their system has a ton of trojans and viruses and spyware and they want you to download their software. DO NOT DO THAT! THEY GAIN CONTROL OF YOUR COMPUTER.

Anyway the ad is no intrusive that it wont let you backs, in fact, the only options it gives you is to either download the software or close the browser window.

Anyway we need to know if you are getting hit here? Also is it only here? For those of you that go to other forums in the sports network, do you experience it in any of those forums?

What tech needs from you is the following when reporting this to us:

1. Screenshots whenever possible
2. Current page URL
3. Browser version
4. OS version
5. Any other pertinent information
6. geographical location.

Also we encourage you to do what you can with your system first.

In my case I went from trend micro to bit defender in anti virus. The software found a lot of problems, that in itself surprised me because trend micro is a top knotch company. I changed spyware software from windows defender to malwarebytes and super anti spyware, both are free, both are very good. Both found some spyware on the very first scan, but not the fake exe.
__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
truebluefan is offline View My Blog!   Reply With Quote
Sponsored Links
Advertisement
 
Old January 21st, 2010, 06:27 PM   #2 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
I got hit with something yesterday, I was thinking it came from an ad here since this was the only web site I visited when things went screwy.

Something brought up Adobe Acrobat reader and tried to load some PDF or something I didn't click on, I'm guessing that by the time I stopped it and ceased all processes the damage had already been done. I'm experiencing the following symptoms: any google search result URL redirects me to an ad page no matter what. When I open pages in a new tab sometime an ad will load in another tab, sometimes the page I wanted doesn't open at all but instead I get an ad page.

1. Screenshots whenever possible
2. Current page URL https://www.paintballforum.com/forum-...s-spyware.html
3. Browser version Firefox 3.5.5
4. OS version MS Windows XP Home ed
5. Any other pertinent information
6. geographical location. Idaho

EDIT:
Here's one of the pages that I get sent to, it happened when I started up Firefox.

http://www.websitesurveygroup.com/?t.../pigeon_m2.php
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Last edited by Frozen Paint; January 21st, 2010 at 11:12 PM..
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 21st, 2010, 08:12 PM   #3 (permalink)
knows whats goin down.
 
peachesaretasty's Avatar
 
Join Date: Dec 2008
Location: so you can stalk me? eh, socal.
Posts: 2,615
sometimes i get something that brings up what looks like a "My Documents" sorta file and says its looking for and has found trojans, viruses, and the like. its still in the browser so i can close it or the tab its in.
__________________
Quote:
"To all you Canvases on Paintball Forum...here it is, The Smigman"
(Pointing to imaginary marker)

Own: Angels, Cockers, Mags, Pump, Tippys, LP&HP, more..

LEGIT, IM SERIOUS (sgt.slaughter jacked this from joe):

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
peachesaretasty is offline View My Blog!   Reply With Quote
Sponsored Links
Advertisement
 
Old January 24th, 2010, 11:10 AM   #4 (permalink)
Administrator
 
truebluefan's Avatar
 
Join Date: Sep 2007
Posts: 549
Blog Entries: 43
ok thanks, in my instance, I did indeed have a rogue trojan in my system. After days of exausted effort I found it.

I havent gotten it since. So does that mean the spyware is not here? No, but I lean towards that conclusion. Why? Many, many more people would have stepped forward over the last month and a half, imo. Not only here, but in the network.

So what should we do about this?

This is what I did last Thursday night to find my trojan.

READ & RUN ME FIRST. Malware Removal Guide - MajorGeeks Support Forums

I did everything it said to do. After going into what windows you are using(I am still using xp}once I got to run malwarebytes scan, I found it. I think in my instance the rogue programs was in my registry, but could have been java based because I had my java uninstalled as requested. Also, I run both SAS and malwarebytes daily and neither one of them found it until java was uninstalled. I later installed the new version of Java.

I think the Rogue program hides itself as a real running program.

So try this...it takes time, but you may find it.

In the mean time, I want to know when you get the ad and how often. My instance it was only at MMA forum and I was getting it once a day.
__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
truebluefan is offline View My Blog!   Reply With Quote
Old January 24th, 2010, 04:15 PM   #5 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
I only got it when I either opened up a new window or clicked a link. It wasn't every time, more like 1-2% of the time.

That was on my desktop, my remedy: backup the material I wanted to keep on another HDD (music, movies, pictures) and NUKE the mother ****er. A fresh OS and removal of Adobe Reader later no more issues.

For testing purposes, after I reinstalled windows (but before I removed adobe) I installed firefox and came to PBF. 10 minutes of browsing PBF only (no other web page) something tried to open Adobe Reader three different times. Fortunately for me, since adobe had never been run before, each attempt to run it brought up their policy or w/e you have to accept before it will perform whatever it was told to do, clicking "Decline" stopped it in its tracks each time.

I've been using my laptop to do 99% of my posting here and never had a problem with it although I'm not running Adobe I'm running Foxit.

If need be I can put adobe back on my desktop and get more information for you.
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 24th, 2010, 08:18 PM   #6 (permalink)
knows whats goin down.
 
peachesaretasty's Avatar
 
Join Date: Dec 2008
Location: so you can stalk me? eh, socal.
Posts: 2,615
the same thing has happened to me.
maybe 4 times in the last week has this happened, trying to open adobe reader. im on pbf alot though, so it prolly only happens about 1-3 % of every 100 pages i open.
__________________
Quote:
"To all you Canvases on Paintball Forum...here it is, The Smigman"
(Pointing to imaginary marker)

Own: Angels, Cockers, Mags, Pump, Tippys, LP&HP, more..

LEGIT, IM SERIOUS (sgt.slaughter jacked this from joe):

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
peachesaretasty is offline View My Blog!   Reply With Quote
Old January 24th, 2010, 10:14 PM   #7 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
Quote:
Originally Posted by peachesaretasty View Post
the same thing has happened to me.
maybe 4 times in the last week has this happened, trying to open adobe reader. im on pbf alot though, so it prolly only happens about 1-3 % of every 100 pages i open.
Do a google search real quick (for anything) and click on one of the links in the results of your search. Do you get taken to an ad or the site you were trying to view? Ad site = infected.

That's where the virus is coming from (adobe) if you want to avoid getting it dump adobe and get Foxit.
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 24th, 2010, 10:32 PM   #8 (permalink)
knows whats goin down.
 
peachesaretasty's Avatar
 
Join Date: Dec 2008
Location: so you can stalk me? eh, socal.
Posts: 2,615
I get taken to my right site.
How do i completely rid myself of adobe?
__________________
Quote:
"To all you Canvases on Paintball Forum...here it is, The Smigman"
(Pointing to imaginary marker)

Own: Angels, Cockers, Mags, Pump, Tippys, LP&HP, more..

LEGIT, IM SERIOUS (sgt.slaughter jacked this from joe):

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
peachesaretasty is offline View My Blog!   Reply With Quote
Old January 24th, 2010, 10:55 PM   #9 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
control panel > Add/remove software > adobe reader ver__ > click uninstall

All you have to get rid of is adobe reader.

I recommend you install Foxit PDF reader, every now and then you need a PDF reader and Foxit doesn't have the same security holes Adobe does.
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 27th, 2010, 06:02 PM   #10 (permalink)
knows whats goin down.
 
peachesaretasty's Avatar
 
Join Date: Dec 2008
Location: so you can stalk me? eh, socal.
Posts: 2,615
Where do i get it?
Also, the fake adobe thing came up a few times again, i think once after i got rid of adobe too. And so did the fake "My Documents" lookin thing that made it look like it was scanning for viruses and said i had trojans.
__________________
Quote:
"To all you Canvases on Paintball Forum...here it is, The Smigman"
(Pointing to imaginary marker)

Own: Angels, Cockers, Mags, Pump, Tippys, LP&HP, more..

LEGIT, IM SERIOUS (sgt.slaughter jacked this from joe):

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
peachesaretasty is offline View My Blog!   Reply With Quote
Old January 27th, 2010, 06:27 PM   #11 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
Foxit Software - Foxit Reader 3.0 for Windows

If the ad tried to open adobe after you deleted it it was either reinstalled or you didn't remove the right program.
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 31st, 2010, 03:06 PM   #12 (permalink)
Senior Member
 
burningcow422's Avatar
 
Join Date: Jan 2005
Location: NYC
Posts: 6,191
this happened to me a few days ago and i had to reformat. i was about to buy the antivirus program that kept popping up but something told me not to so luckily i didn't. i lost a lot of stuff i didn't back up but whatever. could i have gotten it by clicking an add on this site?
__________________
it is i.
burningcow422 is offline View My Blog!   Reply With Quote
Old January 31st, 2010, 03:56 PM   #13 (permalink)
KRAKEN! KRAKEN! KRAKEN!!!
 
Frozen Paint's Avatar
 
Join Date: Jan 2006
Location: Idaho
Posts: 1,298
I got it and I never click any ads.
__________________
Quote:
Originally Posted by DarkTamer
And that trigger frame looks like complete crap, it's like they started it out as a normal 45, but then halfway through were like, "hmm... jk, now it's a 90 degree!! roflcakes!"
Quote:
Im 6 and it's sometimes weird, but for the most part im happy with the way it feels on my hands.

Feedback:
PBNation:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
|
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

COCKER OWNER # 57 HECK YESH!


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Frozen Paint is offline View My Blog!   Reply With Quote
Old January 31st, 2010, 04:14 PM   #14 (permalink)
Senior Member
 
burningcow422's Avatar
 
Join Date: Jan 2005
Location: NYC
Posts: 6,191
i dont' either but i could see myself accidentally clicking one. i'm like that.
__________________
it is i.
burningcow422 is offline View My Blog!   Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules

Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


VerticalSports
Baseball Forum Golf Forum Boxing Forum Snowmobile Forum
Basketball Forum Soccer Forum MMA Forum PWC Forum
Football Forum Cricket Forum Wrestling Forum ATV Forum
Hockey Forum Volleyball Forum Paintball Forum Snowboarding Forum
Tennis Forum Rugby Forums Lacrosse Forum Skiing Forums
Copyright (C) Verticalscope Inc Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2019, vBulletin Solutions, Inc. Search Engine Optimization by vBSEO 3.6.1