invasive program - REPORT POP-UPS/REDIRECTS

HeyZeus · Posted: Wed Feb 13, 2008 3:06 am Post subject:

once again same thing but different site origin this time. didnt check the product name but all else was the same.

it was bestsellingantivirus.com or something.
_________________
DO THESE LOOK LIKE THE EYES OF A JIGOLO O_O !?

" I"'s "

-----Thank you VERY much Admins For having this sight! its very much appreciated-------

HeyZeus · Posted: Sat Mar 01, 2008 11:28 pm Post subject:

yet again but this time it came from the forums after following a link from my email to a replied to topic.
i hadnt gotten to that tab yet and suddenly it did its usual thing with a few details different as usual.
malware again.
_________________
DO THESE LOOK LIKE THE EYES OF A JIGOLO O_O !?

" I"'s "

-----Thank you VERY much Admins For having this sight! its very much appreciated-------

Neogenesis · newbie! Joined: Jan 28, 2006 Posts: 2

legioxxiv · newbie! Joined: Mar 07, 2008 Posts: 2

It appears that the site is infected. Every so often probably at least twice a week or more it will forcefully cause a redirect, and today it somehow managed to get a file onto my computer which thankfully was deleted. Administrators, please check the site more often, something is causing the site to forcefully redirect users to other sites and may cause problems for the inexperienced.
Norton auto deleted the program siting that it was a downloader so i have no idea what it is.[/b]

Neogenesis · newbie! Joined: Jan 28, 2006 Posts: 2

I got the ad that was causing all the problems on my computer

http://thetechnorati.com/statsg.php?u=1201780750&campaign=mebiennial

I logon to the site pretty often so it was only a matter of time before the infected ad appeared again. Norton popped up said someone just tried to put a downloader virus on my computer and this was the address of the ad banner that wouldn't load due to the block. So stands to reason this is the culprit. Hope you can at least do something to the guy.

AoWhijun · newbie! Joined: Jun 23, 2005 Posts: 3

I have also encountered the same ad that Neogenesis encountered. I was in the Daily Releases section of the site when my anti-virus software (Avast) caught it. The other ad that I saw was a Classmates.com "They got Married?!" ad. Here's the information Avast spat out and the source code I pulled from the ad:

File name: http://thetechnorati.com/swf/gnida.swf?campaign=mebiennial&u=1201780750
Malware name: Win32:Gida [Trj]
Malware type: Trojan Horse

White/Blank Banner Ad on top
-Source Code-
Replaced < and > with ( and )

Frundock · Posted: Sun Mar 09, 2008 11:39 pm Post subject:

Removed a possible advertiser as a possible fault.

Just to make it clear, we unfortunatly don't get to choose what ads gets displayed. What we do, is sign with an advertiser to show his ads, and in this case, it seems AdTegrity, was posting virus contained ads.

The servers here are pretty safe and it's not on A-Source side that the problem resides. STill, please let us know if the situation doesn't improve.

JinJo · Conscript Joined: Sep 19, 2007 Posts: 119

I'm still getting this scanner2 malware site. It happens very frequently and I've been getting it for the past couple of months. Sometimes it even crashes my browser so I'm getting to the point where I just won't visit this site anymore.

Kricket · newbie! Joined: Mar 25, 2008 Posts: 1

still poppin up, avast! has been doin a good job stoppin it tho.

3/25/2008 7:06:07 PM
Sign of "Win32:Gida [Trj]" has been found in "http://thetechnorati.com/swf/gnida.swf?campaign=mebiennial&u=1201780750" file.

legioxxiv · newbie! Joined: Mar 07, 2008 Posts: 2

Was fine for about a week I think. Now the pop-ups are back. Its really annoying in the way it hijacks the browser. Please try and fix this problem.

Kaiser · Posted: Thu Mar 27, 2008 2:31 am Post subject:

Ok, Keep us informed if you guys still keep getting the popup.

I made another few changes to the coding and advertisers
_________________

dargondarkfire · newbie! Joined: Jun 18, 2005 Posts: 27

finally found my login name and password.

the add popups, hijacks, and even viruses i have had happen several times while visiting this site on any page, however i started using fire fox and running AD+ add on and haven't had problems.

some tips since you keep having that your computer is weak message come up or the run our free scan program now thing.
don't click it, don't close it do not touch it! clicking ok, cancel, or the close out x button will download the virus, spyware, addware, or trojan.
what you want to do is use ctrl+alt+delete and shut the popup down from there.
and still you should run a add scan afterwards just to be safe.

also if you get spybot make sure the active add scanner is on at all times, it will not only stop allot of adware from getting into your computer but it will also notify you when web site or add programs in sites try making registry changes and allow you to stop the change. your might want to turn this off when you isntall a new game or progam for your printer or ect that your want as it will want to know if you want to let these programs make registry changes and you may make the programs act funky if the registry changes are not made.

also a note on these hijack windows they have little tricks, they have hidden program bars most often so they look like they are part of the internet program, however if you watch there is actual a very very small internet window in either the lower right, lower left, upper left, and sometimes the upper right corner of the screen, allot of the time these are only viewable if the hijack shrunk down your internet window/s, otherwise they hide behind the currently open internet window

you can kill the problem somewhat if you switch to fire fox, but adding security add ons and programs will cut it back even more.

Kaiser · Posted: Sun Mar 30, 2008 5:19 pm Post subject:

So no more reports of popups anyone?
_________________