Notices |
Hello!
Either you have not registered on this site yet, or you are registered but have not logged in. In either case, you will not be able to use the full functionality of this site until you have registered, and then logged in after your registration has been approved.
Registration is FREE, so please register so you can participate instead of remaining a lurker....
Please note that the information requested during registration will be used to determine your legitimacy as a participant of this site. As such, any information you provide that is determined to be false, inaccurate, misleading, or highly suspicious will result in your registration being rejected. This is designed to try to discourage as much as possible those spammers and scammers that tend to plague sites of this nature, to the detriment of all the legitimate members trying to enjoy the features this site provides for them.
Of particular importance is the REQUIREMENT that you provide your REAL full name upon registering. Sorry, but this is not like other sites where anonymity is more the rule.
Also your TRUE location is important. If the location you enter in your profile field does not match the location of your registration IP address, then your registration will be rejected. As such, I strongly urge registrants to avoid using a VPN service to register, as they are often used by spammers and scammers, and as such will be blocked when discovered when auditing new registrations.
Sorry about all these hoops to jump through, but I am quite serious about blocking spammers and scammers at the gate on this site and am doing the very best that I can to that effect. Trust me, I would rather be doing more interesting things with my time, and wouldn't be making this effort if I didn't think it was worthwhile.
|
FaunaClassifieds Site HELP & Feedback Forum Anything of a nature concerning this website, moderators, admin, or anything having to do with how it is being run, should go here. Criticism is welcome, but abusive antagonism is not. THIS IS NOT THE FORUM FOR FEEDBACK CONCERNING BUYERS AND SELLERS! Such posts are ONLY allowed as replies to classified ads posted by the specific member involved in a specific issue with you. |
12-19-2011, 06:56 PM
|
#21
|
|
I've been using Vipre Premium for a while now and it's been pretty good about blocking everything that tries to squirm into my PC. I also recently installed that Malwarebytes script as well, but in the few days I've been running both of them together, not got a peep from either one about any malicious code being present on any pages here.
I think that if you keep your virus and malware definitions up to date, and keep your OS up to date as well, you can greatly limit your exposure. And NEVER, EVER click on ANY attachments or embedded URLs that come to you via email, no matter who they are from.
|
|
|
12-19-2011, 07:55 PM
|
#22
|
|
I got the vista version of this virus (It's the same for XP, vista and 7) and there are different versions other then the antivirus.
I didn't get it from here, however. I got it from NFL.com. I purged my system on the 13th when I got it. I got it again a day later at aprox the same time. After some extensive digging, I've learned that its caused by a cookie. Clear them out and then run the anti-malwayre program of your choice. (I'm using malwayre bytes pro, and spyware DR.) It took me 3-4 clearings before getting rid of all the root issues, but it still has some elements that neither program can fix. To see if you have anything still lurking around in your system, here's some steps you might want to take.
Open up a document, and input this:
C:\Users\(your name here)\AppData\Roaming
(my leftover was "WallpaperSS")
C:\Users\(your name here)\AppData\Local
and look for .exe files. (ex: vlr.exe, tbl.exe)
If you cant see hidden files, then go to:
Control Panel\Appearance and Personalization
Click on "Folder Options", then click on the "View" tab on the window that pops up.
You'll see "show hidden files and folders" click on that, and "Hide extensions for known file types" along with "Hide protected operating system files". (when you're done, click on them back if you dont want to see the hidden files) then click "ok" not "apply"
(hope I didn't confuse anyone lol)
|
|
|
12-20-2011, 03:22 AM
|
#23
|
|
Utta, Latest combofix will get it in one swipe. They had an update the day my work pc got it for the 2012 version. Takes about 15 min to repair on avg pc. I've used it on about 6 or 7 other 2012 antivirus pc's since then and it grabs everything. It will reboot your pc several times. Nice thing is, I had it going on 3 computers at once and all 3 one week later seem fine.
|
|
|
12-20-2011, 08:20 PM
|
#24
|
|
I read a large thread on the BP forums about this happening. It seems that most of these attacks occur while in the classifieds section. I had the same issue yesterday and while I don't remember the site it was from, I do remember that it was the same one listed in the BP.net forum. The admin gave the Op to that thread your contact info Rich. Thankfully Norton caught and stopped mine.
|
|
|
12-20-2011, 08:45 PM
|
#25
|
|
There are infections now that require only the display of a particular banner ad on your screen, no clicking required.
I've dealt with them on three occasions, but I have never known the mechanism of the infection. I tend to think the banner is remotely hosted, not stored on the site it is being displayed on. That would make it more difficult to pinpoint.
The biggest problem with the ones I have had to deal with is they must be completely cleaned in one go, many of the files installed are capable of replicating the entire virus on the next reboot, so if you miss one, you're back at square one.
The anti virus and malware programs are all well and good, but no real protection plan should be without a complete system backup done on a regular basis.
I image the C drives on all my computers regularly so when the really nasty infections come along I always have the last resort option of restoring the last good image with minimal loss of recent changes. I currently use Acronis True Image for this.
It has saved my bacon and kept me from having to do a full wipe and start from scratch on many occasions.
|
|
|
12-20-2011, 11:03 PM
|
#26
|
|
So, are these banner ads being passed through Google?
|
|
|
12-21-2011, 06:44 AM
|
#27
|
|
Yes they are remotely hosted and it could be google or other ad hosting. Flash is the biggest culprit. I fixed another pc last night and the people said they were on yahoo news when they got hit. Unfortunately they clicked to fix and got nailed.
|
|
|
12-21-2011, 06:48 AM
|
#28
|
|
Quote:
Originally Posted by Clay Davenport
The biggest problem with the ones I have had to deal with is they must be completely cleaned in one go, many of the files installed are capable of replicating the entire virus on the next reboot, so if you miss one, you're back at square one.
|
As i have stated before, combofix will take care of it. If manually cleaning or using another program, You need to turn off system restore and delete restore points or it will come back on reboot.
|
|
|
12-21-2011, 10:39 AM
|
#29
|
|
Quote:
Originally Posted by JColt
As i have stated before, combofix will take care of it. If manually cleaning or using another program, You need to turn off system restore and delete restore points or it will come back on reboot.
|
Well the thing that is interesting about this is that apparently the people trying to infect viewers with malicious code are willing to PAY to be able to do this. I would think that Google would require a payment account to be set up with them before accepting any ads.
Unless I just don't understand the vehicle being used in the delivery method.
|
|
|
12-21-2011, 02:24 PM
|
#30
|
|
Quote:
Originally Posted by WebSlave
Well the thing that is interesting about this is that apparently the people trying to infect viewers with malicious code are willing to PAY to be able to do this. I would think that Google would require a payment account to be set up with them before accepting any ads.
Unless I just don't understand the vehicle being used in the delivery method.
|
It is done with out the knowledge of google or other advertisers. It is slipped in usually through flash, javascript or activex. You can read a bit about it here Webslave, http://www.malwarehelp.org/methods-of-infection.html
|
|
|
Join
now to reply to this thread or open new ones
for your questions & comments! FaunaClassifieds.com
is the largest online community about Reptile
& Amphibians, Snakes, Lizards and number one
classifieds service with thousands of ads to look
for. Registration is open to everyone and FREE.
Click Here to Register!
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -4. The time now is 03:31 PM.
|
|