![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Trojan virus detected when viewing hardforum.com
- Thread starter Haiku214
- Start date
threads may have already been removed from the help sub-forum... hackers were injecting malicious code into the forum, not ads.
hence why the layout has changed; Kyle changed it to default layouts, and got rid of all the custom stuff trying to resolve the issue.
and yeah, it's been happening on and off for a bit over a week now?
hence why the layout has changed; Kyle changed it to default layouts, and got rid of all the custom stuff trying to resolve the issue.
and yeah, it's been happening on and off for a bit over a week now?
YeOldeStonecat
[H]F Junkie
- Joined
- Jul 19, 2004
- Messages
- 11,330
Yeah something like a week ago, these boards were acting weird when I came on one morning.....and then MSE jumped up and bagged a file that landed in a Java directory. I just looked in the logs of MSE, it was on 01/15.
Exploit:Java/CVE-2010-0094.AF
It put a jar.cache file into my appdata\local\temp folder.
Goes to show something I've said over..and over....and over......to those that say "I don't run antivirus, I only go to safe sites..I know what I'm doing, I don't go to bad sites". And I'll usually reply "one day you'll come onto this forum here, or any of your usual tech forums you visit each day...thinking they're safe...."
Exploit:Java/CVE-2010-0094.AF
It put a jar.cache file into my appdata\local\temp folder.
Goes to show something I've said over..and over....and over......to those that say "I don't run antivirus, I only go to safe sites..I know what I'm doing, I don't go to bad sites". And I'll usually reply "one day you'll come onto this forum here, or any of your usual tech forums you visit each day...thinking they're safe...."
D
Deleted member 12106
Guest
I always LOL at those people. I'd rather have that dick wrapper sitting in my system tray keeping a watchful eye over things. Shit happens.
CiscoInside
Gawd
- Joined
- Mar 26, 2010
- Messages
- 546
I was waiting for a thread to start about this in these forums, considering these are the security forums.. I don't think a lot of members are even aware of what happened.
Monkey34
Supreme [H]ardness
- Joined
- Apr 11, 2003
- Messages
- 5,140
There have been multiple threads on the issue - just not in the Networking & Security forum. They're in the Help forum.
http://www.hardforum.com/showthread.php?t=1577825
http://www.hardforum.com/showthread.php?t=1578914
http://www.hardforum.com/showthread.php?t=1579427
CiscoInside
Gawd
- Joined
- Mar 26, 2010
- Messages
- 546
How so? This site is not a "security" site. This is just a sub forum. There is a shit load more content all over the place. Also, depending on how the hacker got in, you are relying on the forum's software. There is only so much you as an admin can secure of the software before having to re-write it yourself. The person looks like he had some access to get in, so that makes sense on how they kept hacking.
With all the security in the world, does not mean you are "secure".
As far as not running any AV, have fun with that.
CiscoInside
Gawd
- Joined
- Mar 26, 2010
- Messages
- 546
Ya, I know. What I was hinting at is I was surprised it was not dropped in here, especially for the users in those threads asking how to clean the virus out or look for it... we have a wealth of information for that right here.
ownloader-AJP [Trj]YeOldeStonecat
[H]F Junkie
- Joined
- Jul 19, 2004
- Messages
- 11,330
LMFAO! So the trojan is sitting deep in your system now, waiting for instructions to do something. May be today, tomorrow, may have happened already, may be next week, next month....often little trojan installs won't trigger right away.
Remember, the common and simple malware can usually easily be detected and found.
The well written ones....remain in stealth, and do their work quietly...unknown to the computer user.
Enjoy life with a computer that's a member of a netbot army. Go you! Be proud that you're quite possibly contributing to the bad stuff out there on the internet.
CiscoInside
Gawd
- Joined
- Mar 26, 2010
- Messages
- 546
Oh well then it makes so much sense why you have no protection, thanks for clearing that up.
Monkey34
Supreme [H]ardness
- Joined
- Apr 11, 2003
- Messages
- 5,140
Not bad. At one point I was unplugging the hard drive, and surfing with a liveCD.....but I decided it was overkill.
txmale4969
n00b
- Joined
- Dec 8, 2010
- Messages
- 61
anyone not running some kind of av is nuts in this day and age. i dont care if your in the security field or not. no one person can keep up with the latest threats ......to much of that shit out there.
jojo69
[H]F Junkie
- Joined
- Sep 13, 2009
- Messages
- 11,270
This site has been under sustained attack for two weeks straight.
Major props to Kyle and the crew for keeping things running.
"That which does not kill us makes us stronger"
Major props to Kyle and the crew for keeping things running.
"That which does not kill us makes us stronger"
It asked. I shut the browser down without clicking on anything. 3 min later I had System Tool 2011 on my desktop. I had the newest MSE and Malware bytes running and it still got thru. Ran MSE it detected nothing. Ran Malwarebytes and it detected System Tool 2011 plus other trojans. It said it had gotten rid of them. I restarted my PC. Ran Malware Bytes again and kept finding more stuff. After about 3 times I finally said fuck it and restored a system image. Stayed away from Hardforum for the rest of the day. Not really sure what else I could have done to be safer.
thedocta45
[H]ard|Gawd
- Joined
- Oct 10, 2007
- Messages
- 1,325
Man fuck java, I remember hearing a while ago that one of the java updaters was infected. I never saw it but you can never be too careful. I run malwarebytes and mse on my computer. I would rather "waste" cpu cycles and see 0 infections than get hit because I was to hard to run scans.