Driven1

iTrader: (2)

It crashed Firefox on my Mac 2 times fyi.

Its just easier for me to clean up

But people seem to be doing well with FF+adblock plus.

JEKL

iTrader: (24)

The first time I got it was in the Lucky Kid Gets Camaro SS For 16th Birthday thread, but it has since been merged with the Official Internet Video Thread.

I can't remember where I was the second time.

phreaktor

iTrader: (22)

The only time AVG flagged it was when I went to bassholics thread bout his girl leaving with his phone. The thread was deleted or moved to QP. Since then, no flags on Win 7 64bit at home. At work one of the ads had our "Website blocked" page in it. Nothing else. This was an ad at the top of the page though- not in a thread.

phreaktor

iTrader: (22)

Is this site hosted by Internet Brands or someone else? Also, there is no info on www.vbulletin.com forums regarding this. I'll check some of the "grey-hat" vbulletin forums.

I'm pretty sure the mods are forum moderators, not IT security technicians.

akks350z

iTrader: (26)

possibly my ***...im 1000% sure its from this site this bs vista security 2010 scam/virus...i recovered my entire computer and then only went on this site and bam i got it again...mods please pm me when this virus is gone from this site...im not recovering my entire system again until it is...at least this time i can still surf around but annoying warning and danger pop ups still every 3 mins...

PikesPeakZ

iTrader: (12)

Wow I'v been browsing this forum with no problems the past few weeks at home and work without even knowing anything like this was going on until I saw the warning when I just got on the site.

Mac and Safari FTMFW

It sucks, it looks like a lot of people here have been screwed. Fookin virus writers are retarded.

MDHRZ

iTrader: (14)

Do the advertisements come from ad.doubleclick.net and doubleclick.net? I have a pretty good feeling that's where the problem is.

MDHRZ

iTrader: (14)

True, but IB IT security sure seems lazy lol. After the moderator board glitch and now this. Somebody isn't doing their job.

tware

iTrader: (12)

Well, yeah, you can scan/remove it in 20 mins and hope you dont still have a well hidden rootkit. I personally wouldnt go back to online banking on any PC thats had any of this newer malware entrenched like that until I've blown out the whole partition and MBR and started over. Even with a recent drive image, thats gonna take more than a few minutes.

Actually, since this targets some tools we usually use and does its best to keep you offline, I wouldn't be surprised if it took longer than 20 mins to figure out how to stop it with Process Explorer, find an offline update file for malwarebytes or similar, then start cleaning it.

I tend to think I know my **** with this stuff, but each new batch of these things just gets more and more devious. Takes alittle diggin to really figure out what they've done, and decide if a simple scan is good enough.

Tian

It's showing up on G35Driver as well.
http://g35driver.com/forums/lounge-o...iver-also.html

Hraesvelg

iTrader: (1)

Damn... I opened my350z and didn't expect the warning screen. I thought I got banned again.

phreaktor

iTrader: (22)

This is an important statement. Are other IB owned sites having issues? Or is it related to a specfic advertiser that has been exploited? If it's just G35driver and here, we have narrowed it down a LOT. Also can someone PM the link that the virus redirects to?


This is getting deeper than I thought. I may have to browse the black hat forums.

Hraesvelg

iTrader: (1)

http://www.youtube.com/watch?v=y8Kyi0WNg40

phreaktor

iTrader: (22)

LOL^ Is ICQ still like it used to be?

billsrcursed

Not sure if this is any way related, but my work has gone through this security upgrade because of an aggressive virus that is being spread throughout the building. I haven't seen anything on my PC to make me think I got anything here, but now I wonder.... anyone think it could be tied in?

*is PC retarded*

Hraesvelg

iTrader: (1)

I probably haven't logged onto ICQ for 8 years.

OCMan

i got the nasty virus from my350z 2 days ago. It's a fake antivirus program called Vista Antivirus Pro. Weird thing is that my mcafee antivirus program didn't stop it from attacking my pc. I found out later on that somehow i have windows firewall off...not sure if that would've made a difference. I then did a full scan w/ Mcafee but it couldn't find shiiit.

I downloaded Windows Security Essential from Microsoft and it was able to detect and removed the virus. For those w/ genuine windows, you should be able to download it for free.

phreaktor

iTrader: (22)

Btw when my 2nd PC at work (which is XP and not networked) was infected, it came from my flashdrive somehow. There were the shortcuts that said "pictures", "videos", and two others. I never clicked them- I just deleted them off the flash drive. I did get 3 icons on my desktop of **** picswith sites listed as the names. Malwarebyte took care of it in Safe Mode.

Just be aware it can spread to flashdrives as well. It was called taoubex.exe I think.

midz350

iTrader: (4)

I just fixed my friends computer. (he has never been here or G35Driver) the fake antivirus name was (Dr guard) and it did exactly what everyone describing. I used (Spyware Doctor) to remove it.

A direct link to download :

Spyware Doctor

Tian

Does this include my ext hard drive?