|
Quote:
|
BarryP: Cool Cool, however the first page of this thread is STILL setting off Avast (I'm thinking due to Smokey's post #46 where he showed the code of the exploit)
-Loki- |
Quote:
Glad its sorted now |
Quote:
|
Edit. Just seen what I posted in another thread.
|
Finally was able to remove this damn thing...looks good so far.
Fucking spyware :321GFY |
Quote:
I was kidding around, did a hard boot from yesterday and it was gone. :winkwink: |
This shit happens everywhere. Even on paysites and affiliate programs.
If you are worried about local FTP accounts being compromised (+ the keylogger), try WinPatrol monitoring. For simpler PDF usage, use Sumatra reader. Run browsers and software in encrypted sandboxie. As portable versions, if possible. Don't run your OS by default in administrative mode. Only turn javascript and flash on, when you fap off to your own tubes :) |
Shit happens, thanks for getting it Berry
|
Quote:
|
Quote:
-Loki- |
Quote:
|
Glad I use NoScript and don't run javascript on GFY.com. I have had no problems because viruses cannot install themselves when you don't run javascript. GFY doesn't require JS (like a good website should not) and therefore, it displays and functions just fine without it.
|
|
Quote:
|
Is this just today? ... I havent logge don until now seeing this thread first....
|
Quote:
|
I rebooted to safe mode and ram Malwarebytes and it fund the infection.My proxy settings in FF were normal. But upon re-boot to normal mode the infection came back twice already and I still cannot get rid of this thing! This is ending up to be a whole day wasted and I had a lot of work to do today!
|
Quote:
|
This is what I found in the pdf file:
Quote:
|
Quote:
|
Quote:
|
Quote:
I had to do it twice and also make sure you browsers are shut down when you do the scan I posted a log of some of the crap which you can remove manually to clean your comp. It wont be exactly the same but it will be similar |
Aaaand this: http://pastebin.com/Nz8iVr2M :)
|
Quote:
And yes, you are right what a way to waste allot of time :disgust |
I got hit with Antispyware Soft.
I looked up what process were running and narrowed it to uoxottgtssd.exe I then rebooted in safe mode deleted this file, started normally and had a problem with the proxies after restarting the computer so I rebooted again and restored my computer back 2 days. Got rid of the damn problem. I ran a couple different scans to make sure It was gone lol |
Bloody damn thing. All clear now?!
|
D'oh got someone in the office. =)
|
Crossing my fingers that my warning of the exploit late last night means that Kaspersky caught it n all is well. I did see a little box about an adobe error this morning, but nothing more. Almost afraid to reboot. n for me, the warning popped off a top banner on the main page of this forum.
|
It took effect for me without rebooting I went to login to gfy and about 30 seconds later it popped up installed
|
So it looks like the exploit is from Adobe [pdf] Reader?
It's a bloated piece of shit and this isn't the first time it has been exploited... Change to Foxit Reader... you'll never look back... |
|
Quote:
:thumbsup |
Quote:
|
Quote:
|
I got hit, then contacted ICS, thanx Barry
I have AVAST, no worries, it blocked it |
Quote:
|
PS: Vendors who change the look n' feel of their software every other update, suck.
|
bump for answers, who is getting banned for this stunt?
|
Quote:
|
| All times are GMT -7. The time now is 09:12 PM. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123