Virus?

I was surfing this site and got a virus notification from McAfee....

virus name was some trojan called vundo!grb

We use McAfee at work and I have Norton at home. So far I have not seen either report a virus or trojan.

This might be better in The Outer Circle forum.

I just visited this thread, and got an automatic download request for a pdf file. =/

same here, symantec caught it for me.

While you're at it make sure it's not one of the several variations of Conficker that's been going around, you can test if you have conficker at http://www.confickerworkinggroup.org...feyechart.html

Hmmmm, nothing unusual for me. Don't tell Inde I said so, but maybe you should consider switching to firefox as using something to block giraffes.

Nah nothing unusual for me either...

Good news: this is a low-profile malware, nothing like a virus.

Bad news: you're probably using Internet Explorer?

Kill the giraffes...

Sounds like it could be a hijacker as well. I do agree with the above, switch to Firefox as well.

Oh by the way, I use Avast and Firefox, and have had zero issues with this site.

If you are having virus/spyware issues, download malwarebytes (google it). I have Spybot S&D and Symantec antivirus. Malwarebytes found a ton of stuff that the other 2 didnt find. Oh and its FREE!

While browsing the riverside Symantec came up with the warning for Bloodhound.Exploit.196. There was also a request to download an Active X control which was denied.

i dont think this is the usual hacking, it could be an actual ad with a virus from our regular ad provider, if you could provide the whole virus report + a screenshot of the page with the ad that got the virus report

Starting yesterday some forum links send me off to a site blocked by my AV software. The site I am redirected to is http://boqwez.info/rp/in.php. Has the guru server been hacked?

For kzap - Today, I was trying to access http://www.guildwarsguru.com/forum/s...php?t=10366819 when I got redirected. I am sure this is what the others were reporting. Attempting a second time I was able to access that thread with no problem.

Quote: Originally Posted by Kanna Banrai

I just visited this thread, and got an automatic download request for a pdf file. =/ I got the same thing today.

If you get asked to download pdfs from zeoztz.info and other sites, you should report exactly which ad is displayed when you get prompted. And obviously reject any suspicious downloads.

I just tried to visit the Riverside forum and Norton blocked a trojan download called Bloodhound.Exploit.196.

I rarely visit guru anymore at all and stuff like this makes me want to delete all bookmarks to the site.

Edit: With firefox, I re-visited Riverside. Again Norton caught the Bloodhound trojan and I was prompted to download a .pdf file which I blocked. The 2 ads showing were "The Millionaire League" at the top of the page and a JCPenney ad imbedded in the thread.

thanks for that ad info, im looking into it asap.

i too have this vundo!grb trojan...how do we get rid of it??

Caught snapview.ocx. With all the other things going on, I have no idea if this is legit or not.

And then on the very next click... Bloodhound