![]() |
Show all 17 posts from this thread on one page |
VCDQuality Forums (http://www.vcdhq.com/forum/index.php)
- Site News and Discussion (http://www.vcdhq.com/forum/forumdisplay.php?forumid=3)
-- MHTMLRedir.Exploit virus embedded into ads (http://www.vcdhq.com/forum/showthread.php?threadid=45308)
MHTMLRedir.Exploit virus embedded into ads
Found this virus this morning when viewing the site. Has anyone else encountered it?
http://securityresponse.symantec.co...ir.exploit.html
Trying to find out which domain it came from specifically, though I thought I had all the banner serves blocked through hosts file already.
Re: MHTMLRedir.Exploit virus embedded into ads
quote:
Originally posted by wahl
Found this virus this morning when viewing the site. Has anyone else encountered it?
http://securityresponse.symantec.co...ir.exploit.html
Trying to find out which domain it came from specifically, though I thought I had all the banner serves blocked through hosts file already.
quote:
Systems Not Affected: Linux, Macintosh, OS/2, UNIX

__________________
soda box
Scan type: Realtime Protection Scan
Event: Virus Found!
Virus name: MHTMLRedir.Exploit
File: C:\Documents and Settings\xxxxxx\Local Settings\Temporary Internet Files\Content.IE5\6NC34VCT\hp2[1].htm
Location: Quarantine
Computer: xxxxxx
User: xxxxxx
Action taken: Quarantine succeeded
Date found: Sat Aug 07 07:27:57 2004
I posted a thread about this too. I find it funny that some people actually say, "You use IE, switch to Firefox or Mozilla." So that's what it's come to? This website is serving an ad which contains trojan code and the best you can do is tell us to switch browsers? How about eliminating the ad that serves the trojan in the first place. You shouldn't have to use a certain browser just to keep from being attacked by an ad on a website. 
quote:VCDQ cannot control the content of the ads provided though, they'd have to change advertiser. So the only sure way if avoiding this is to avoid IE until the advertiser sorts their shit out (IF they sort their shit out).
Originally posted by BiggD23
I posted a thread about this too. I find it funny that some people actually say, "You use IE, switch to Firefox or Mozilla." So that's what it's come to? This website is serving an ad which contains trojan code and the best you can do is tell us to switch browsers? How about eliminating the ad that serves the trojan in the first place. You shouldn't have to use a certain browser just to keep from being attacked by an ad on a website.![]()
__________________
Statistically... 9 out of 10 people actually enjoy gang rape.
quote:
Originally posted by BiggD23
I posted a thread about this too. I find it funny that some people actually say, "You use IE, switch to Firefox or Mozilla." So that's what it's come to? This website is serving an ad which contains trojan code and the best you can do is tell us to switch browsers? How about eliminating the ad that serves the trojan in the first place. You shouldn't have to use a certain browser just to keep from being attacked by an ad on a website.![]()
quote:
Originally posted by lolobo21
Ads pay for the site that is very free to us. If the owner requests that everyone to be a little more intelligent so that he can keep the site up . . . well then . . . ummmm, let me think, I get to try something new, avoid some bullshit, and at the same time keep my favorite release site. Not a hard descision to leave IE behind.
quote:
Originally posted by BiggD23
...Do a Google search and see how many gaping security holes have been found in Firefox. Granted, it's still way better than IE6, especially lately, but let's not pretend that Firefox is bulletproof. Hopefully the next time an ad on this site serves a trojan it will attempt to exploit something in Firefox...at least that might get an actual response from x69 or another mod and not just "don't use IE".
quote:
Originally posted by BiggD23
Believe me, I understand that ads help keep the site free. But we're talking about confirmed trojan code here. It's sad that no one cares enough to do something about it short of saying, "change your browser." As for "being a little more intelligent"...that statement can stand on it's own. Do a Google search and see how many gaping security holes have been found in Firefox. Granted, it's still way better than IE6, especially lately, but let's not pretend that Firefox is bulletproof. Hopefully the next time an ad on this site serves a trojan it will attempt to exploit something in Firefox...at least that might get an actual response from x69 or another mod and not just "don't use IE".
__________________

Scrobble all you want, we'll make more!
I turned off activex control, it just now pops up with a warning saying "Due to your security settings so and so can't run" every time this ad tries to pop up.
*shrug* worked for me.
From Symantec Corp
Scan type: Auto-Protect Scan
Event: Threat Found!
Threat: MHTMLRedir.Exploit
File: C:\Documents and Settings\Joe\Local Settings\Temporary Internet Files\Content.IE5\8BDFEEJT\hp2[1].htm
Location: C:\Documents and Settings\Joe\Local Settings\Temporary Internet Files\Content.IE5\8BDFEEJT
Computer: xxx
User: xxx
Action taken: Clean failed : Quarantine failed : Access denied
Date found: Friday, August 13, 2004 8:38:36 PM
This is disturbing to see on a high quality forum.
I realize I'm a n00b here but its not appropriate.
I also realize funding is necessary but this?
brut7
quote:
Originally posted by brut7
From Symantec Corp
Scan type: Auto-Protect Scan
Event: Threat Found!
Threat: MHTMLRedir.Exploit
File: C:\Documents and Settings\Joe\Local Settings\Temporary Internet Files\Content.IE5\8BDFEEJT\hp2[1].htm
Location: C:\Documents and Settings\Joe\Local Settings\Temporary Internet Files\Content.IE5\8BDFEEJT
Computer: xxx
User: xxx
Action taken: Clean failed : Quarantine failed : Access denied
Date found: Friday, August 13, 2004 8:38:36 PM
This is disturbing to see on a high quality forum.
I realize I'm a n00b here but its not appropriate.
I also realize funding is necessary but this?
brut7
__________________

Scrobble all you want, we'll make more!
OK horizonstar,
You are right it's already been mentioned and I guess I didn't need to repost. More of a vent I suppose and i apologize.
Since the time of my last post, I have tried out firefox. Didn't think I'd like it but I was wrong and may move to it on a more permanent basis.
I suppose this chalks up to a learning experience for me lol.
brut
I spent over 10 hrs of using various spyware removal programs trying to get rid of the MHTMLRedir.Exploit virus I picked up from this site. I finally had to reformat my hard drive and I still don't have all of my program back that I use to have. I don't understand why they allow a nasty virus like that to continue on their site.
And congrats, geo_jetson! You're the fourth person to post without reading even the post directly above yours!
Well done. You get a cookie.
Laced with cyanide.
::edit:: And by "laced", I mean "coated/glazed".
__________________

Scrobble all you want, we'll make more!
quote:You had to reformat? That's just lack of imagination on your part, not VCDQ's fault!
Originally posted by geo_jetson
I spent over 10 hrs of using various spyware removal programs trying to get rid of the MHTMLRedir.Exploit virus I picked up from this site. I finally had to reformat my hard drive and I still don't have all of my program back that I use to have. I don't understand why they allow a nasty virus like that to continue on their site.
__________________
Statistically... 9 out of 10 people actually enjoy gang rape.
| All times are GMT. The time now is 11:33 PM. | Show all 17 posts from this thread on one page |
Powered by: vBulletin Version 2.3.0
Copyright © Jelsoft Enterprises Limited 2000 - 2002.