Virus warning

[harrislover]

For the second time today i have logeed on this site and have been notified that a trojan has been found. luckily my virus protection has stopped it. Just thought id share it with you guys.

[Dirthawking]

Loren, thank you for the heads up. I will make sure that Chris L. knows.

[Grahame]

Got the same message twice. McAfee blocked it both times.

Grahame
Calgary, Alberta

[Greg]

Got the same message twice. McAfee blocked it both times.

Grahame
Calgary, Alberta

Yes I've had the same almost every time I log on!

[Chris L.]

Hmmm. Not sure why you are getting this. I will let the server owner know.

One question. What virus protection is everyone running that is getting this warning?

[Dirthawking]

mcafee here, same warning

[High Desert Hawker]

I get it too. McAfee

[FredFogg]

I have Norton and don't get it, must be a McAfee thing!

[samatney]

I have AVG and nothing here

[Chris L.]

Guys, i think the problem is your virus scan.. TO be honest Mcafee sucks.

take a look here http://forums.cnet.com/5208-6132_102...threadID=94275

Mcafee is a trojan itself. It collects info on you all day long. Nasty little program.

Try updating to the most current. I am sure it doesn't like some of the code on here. My virus scan is clean and so is the servers.

[Chris L.]

There are free virus scans even better than norton and mcafee. stop wasting your money on them..

ok I will get off my soap box

[Tom Smith]

I get hit hard every time I get in a contended discussion in this forum. I rather think it is coming from here or some one on here. On one occasion it took me several days of scans and systems restores to get my computer back up. I'm still having some minor problems with it. I have become pretty gunshy virtually speaking.

[Jack Mangum]

Get AVG Free Edition, and update it every time you go on line. You can stop worrying about these things.

Jack

[bgibson]

get a mac

[Chris L.]

I get hit hard every time I get in a contended discussion in this forum. I rather think it is coming from here or some one on here. On one occasion it took me several days of scans and systems restores to get my computer back up. I'm still having some minor problems with it. I have become pretty gunshy virtually speaking.

Tom,
I am sorry you feel that some malicious software is being placed on your CPU from NAFEX.

The only way it is coming from NAFEX is if I put it on here. I think it goes without saying that would not be in my best interest.

I can tell you it is not coming from here and to be honest, I think I have upset many more than you have and my computer is running like a top.

I hope you get your issues ironed out.

[areal]

Mcafee is a trojan itself. It collects info on you all day long. Nasty little program.

Woooah dude, you cant say that, youre likely to get sued!

Pretty apt description I have to admit but I would be really careful describing it as a trojan, though it is a nasty little program.

Actually I refuse to remote support machines with that particular AV suite installed because it causes more trouble than it stops.


As for the alert people are getting from this site, I'm prepared to stick my neck out and say its a false positive on the part of the AV software. This site (and every other VBulletin site out there) makes extensive use of javascript in order to generate the displays we take for granted. It would not surprise me if the AV product in question kicks off over the ajax components (the bits that let you do a quick reply) or the Yahoo Ajax interface and of course the new PM notification script will often be falsely detected.

As others have said, dont change your forum, change you AV package cause there's a pretty good chance you havent even begun to discover just how much of your operating system has been broken by that particular AV package. (try generating an MD5 hash or an SSL certificate and see if mccrappy lets you do it.)

Yes its perfectly possible to SQL inject or XSS a site like this but in fairness to Chris he keeps the forum software up to date, doesnt claim to need to do updates when there are no updates available (sorry private joke!!) and asks advice on the safest way to implement things like banner adverts, before implementing them.
Its the sites still running on V3.7.2 where one can steal any user's session id in about 10 - 12 seconds that you want to worry about

[PeteJ]

get a mac

Here, here!!LOL

[Tom Smith]

Tom,
I am sorry you feel that some malicious software is being placed on your CPU from NAFEX.

The only way it is coming from NAFEX is if I put it on here. I think it goes without saying that would not be in my best interest.

I can tell you it is not coming from here and to be honest, I think I have upset many more than you have and my computer is running like a top.

I hope you get your issues ironed out.

Glad to hear it and I would be the last one to argue,or even comment on that, I assure you, but I will.

I feel I can maybe hold my own in a falconry related issues but computers are way out of my league even though I do a lot with mine and find it very useful. I have noticed that people that are really rather shakey with falconry are top notch with computers. So it kind of makes me wonder sometimes. Enuff said.

[FredFogg]

I have noticed that people that are really rather shakey with falconry are top notch with computers.

Quite frankly, I take offense to your comment! My shakey falconry skills have nothing to do with my excellent computer skills! LOL

[areal]

The only way it is coming from NAFEX is if I put it on here. I think it goes without saying that would not be in my best interest.

Chris, one of the sites I host has been SQL injected 3 times this year so I can assure you, the last person I would look at if I found dodgy content on here, is you, I know I didnt corrupt the database on my own site, I cant imagine any good reason why anyone would "hack" or even pretend to hack (sorry another private joke ) their own site.

The sad fact is sites like this are a magnet for those seeking to compromise as many machines as possible with their malware. Basically you put the work into building up a community of regular users, they come along, hack/inject/XSS your site and before you know it your user's PC's (and Macs) are doing their bidding (saw a rootkit the other day that allows total control over the remote hardware so the new 0wn3r of that machine can open and close CD-Rom drives, mount/umount storage devices, turn the PC off, pretty much do anything they could do if sat in front of your machine, they can do remotely)

Yes its always a risk that you'll decide the last however many years work you've put into Nafex is worth blowing for the sake of compromising a few machines, but its probably the last thing I worry about when I come on here.

[Chris L.]

Glad to hear it and I would be the last one to argue,or even comment on that, I assure you, but I will.

I feel I can maybe hold my own in a falconry related issues but computers are way out of my league even though I do a lot with mine and find it very useful. I have noticed that people that are really rather shakey with falconry are top notch with computers. So it kind of makes me wonder sometimes. Enuff said.

.. I don't see the correlation, nor have I seen it. But hey, what ever works I guess????

There are many on here that are good with computers. Maybe we can help you get your machine running better? If you have any questions don't hesitate to ask.

All the best

Chris

[areal]

Quite frankly, I take offense to your comment! My shakey falconry skills have nothing to do with my excellent computer skills! LOL

Hey right now my shaky falconry skills are all down to fear. Shaking with Fear that the mad evil ferru is gonna do me next time!!! (I escaped a near nasty footing attempt earlier, had my arm been quarter inch shorter or his leg quarter inch longer, I'd have been on the way to the emergency room for sure)
I should have called him Claw cause right now he's certainly saying "I'll get you next time Gadget, Next time!!!"

At least another week of nastiness to come, Who said they grow out of the aggression after two years?

[Chris L.]

Chris, one of the sites I host has been SQL injected 3 times this year so I can assure you, the last person I would look at if I found dodgy content on here, is you, I know I didnt corrupt the database on my own site, I cant imagine any good reason why anyone would "hack" or even pretend to hack (sorry another private joke ) their own site.

The sad fact is sites like this are a magnet for those seeking to compromise as many machines as possible with their malware. Basically you put the work into building up a community of regular users, they come along, hack/inject/XSS your site and before you know it your user's PC's (and Macs) are doing their bidding (saw a rootkit the other day that allows total control over the remote hardware so the new 0wn3r of that machine can open and close CD-Rom drives, mount/umount storage devices, turn the PC off, pretty much do anything they could do if sat in front of your machine, they can do remotely)

Yes its always a risk that you'll decide the last however many years work you've put into Nafex is worth blowing for the sake of compromising a few machines, but its probably the last thing I worry about when I come on here.

Evan,
your right about the injection and hacks..It can be a huge pain in the ass dealing with it all. As you mentioned I do my best to stay up with the security patches and updates. My server host is just at meticulous as I am about his security.

Thanks for the kind words regarding the safety of NAFEX,I appreciate it. Many are scared of the boogy man and the internet is the biggest boogy man out there.

Where people need to be looking for viruses are the porn sites they are visiting and those friendly emails they are receiving . That's where the infection comes from.. no pun intended . So stop the late night porn fests and opening the email you have no idea who it is from. ( BTW this is said in jest)

[areal]

There are many on here that are good with computers.

Dont look at me, I'm still trying to find the ANY key.

Maybe we can help you get your machine running better? If you have any questions don't hesitate to ask.
All the best
Chris

I'd offer to help, right after I find the ANY key, but as others will tell you, there's not a lot I cant do from this side of the atlantic.

[areal]

Where people need to be looking for viruses are the porn sites they are visiting and those friendly emails they are receiving . That's where the infection comes from.. no pun intended . So stop the late night porn fests and opening the email you have no idea who it is from. ( BTW this is said in jest)

Youre still right about the "friendly emails" but for the most part legitimate porn sites these days are pretty tough on security, its the free sites and weird specialist sites you need to watch out for. They will quite happily let their users get harvested.
Unfortunately in my experience, particularly over the last year to 18 months, most malware infections are coming from far more mainstream sites.

Recruitement/job board sites have been heavily targeted (lots of people looking for jobs means lots of computers to harvest) as have social network sites like Facebook/myspace/twitter. Quite a few of the online News sites have been hit over the year, normally around the time of some major event (that plane landing in the hudson river is one example that comes to mind) And of course never forgetting the ever present malware emails.
A certain ferry company (ships people to Ireland) has been repeatedly hit this year as well as one of the low cost airlines so overall youre just as likely to catch a dose (on your PC at least) by booking a holiday or looking for a job as you are browsing porn.

Now where is that ANY Key ¿¿¿

[FredFogg]

so overall youre just as likely to catch a dose (on your PC at least) by booking a holiday or looking for a job as you are browsing porn.

Damn, I guess I better not book that flight for that job interview for that porn company!

[keithtsoar]

Damn I keep geting a id 10t error!

[areal]

Damn, I guess I better not book that flight for that job interview for that porn company!

Dude you just reminded me of something I caught a bit of on telly the other night.
I was babysitting and the adverts come on. I cant watch adverts so I channel hop till my program comes back on or I find something else that interests me that I can watch till adverts come on that channel and I have to go scouting for something new to watch.
Anyway I found this channel with a program called "Porn in the Family"
Hang on this is worth watching (till an advert comes on)
It was a guy (mid to late 20's) driving in a car with this girl, and he gets a phone call from work.
Some guy in editing is on the phone and he's demanding this guy come into work because there's some major problem.
The guy in the car says to him "I'm on a date, dont blow this for me!!"
They chatter away for a bit and its decided he has to go in to work.
So he in a resigned sort of way says to her "I guess you have to find out some time what I do for a living"
Next scene the arrive at the "studio" and this guy plays the footage he's not happy with and its this guy with like 3 women.
At this point his date is looking a bit dubious and as the footage goes on her mouth just gets bigger.
Eventually she asks if she can go to the bathroom and they carry on with this footage till the guy asks what's happened to his date.
They go looking for her till the receptionist informs them the lady left in a taxi.

No jokes, I was rolling about on the floor at this point and fortunately the adverts came on and I could channel hop back to my discovery channels cause I would have ended up with some kind of laughter related injury if I'd carried on watching it for much longer.

I went looking for the channel again when the adds came on my channel but it must be a series that I'll never catch again if I dont develop some sort of reliable tele watching habits instead of using it to escape from babysitting.
Best of luck with the interview, let the ladies know which channel its screened on and I'll try not to stumble across your but while I'm channel hopping.

[Tom Smith]

Quite frankly, I take offense to your comment! My shakey falconry skills have nothing to do with my excellent computer skills! LOL

Lol that cracks me up, Fred, I wasn't to refering you. Well maybe .. a little.
I talked to your buddy Leon Crumpler a little while ago on the phone. He is at Ed Pitcher's for a few days about 75 miles from my place. I was going to drive down to see him but I have been stricken with a virus a real one, very nasty. I think he said he will be heading out to Oklahoma in a few days.

[FredFogg]

Lol that cracks me up, Fred, I wasn't to refering you. Well maybe .. a little.
I talked to your buddy Leon Crumpler a little while ago on the phone. He is at Ed Pitcher's for a few days about 75 miles from my place. I was going to drive down to see him but I have been stricken with a virus a real one, very nasty. I think he said he will be heading out to Oklahoma in a few days.

Tell Leon I said hello and ask him if he has gotten that bird in the air yet! LOL Sorry about the virus, the real one, they affect ones hawking way more than the computer ones!

[Jeff Bertch]

Hey Guys , I can't even get on NAFEX anymore from my home computer . It keeps re-directing me to all these other sites, very frustrating. I'm on today from another computer. I hope a solution is discovered. Jeff

[Chris L.]

Hey Guys , I can't even get on NAFEX anymore from my home computer . It keeps re-directing me to all these other sites, very frustrating. I'm on today from another computer. I hope a solution is discovered. Jeff

Jeff,

can you post some of the links you are being redirected to.

If the redirect is only happening on your home CPU, it is probably some spyware on your home CPU. Is it only when you log on NAFEX? If the computer your on doesnt redirect it might be worth checking your home CPU

[touyang]

Hey Guys , I can't even get on NAFEX anymore from my home computer . It keeps re-directing me to all these other sites, very frustrating. I'm on today from another computer. I hope a solution is discovered. Jeff

I don't think that's caused by NAFEX. It sounded like your machine has been hijacked by some sort of malware, which is not a virus. If that's the case, your virus scan program won't protect you against it.

[Tom Smith]

Tell Leon I said hello and ask him if he has gotten that bird in the air yet! LOL Sorry about the virus, the real one, they affect ones hawking way more than the computer ones!

Will do.

[MarkT]

I got a notice a few times yesterday from Norton. Here is what is in the log.

Source: C:\Documents and Settings\Mark\Local Settings\Temporary Internet Files\Content.IE5\6SLD9RVU\western[1].htm
Click for more information about this threat : Trojan.Malscript!html

From the location I would guess it is a coding problem from the Western Sporting's ad.