xbiz hacked?
 

Okay this is the 2nd time I have went to xbiz and got a virus warning.

This time I didn't close the page right away. For a second everything on my screen went away except my desktop background. Then this full page, im guessing browser page poped up that said I owned money to cyber crimes division of fbi or something and need to goto 7-11 and buy a card to pay them off lol

alt-f4 didn't do anything

ctrl-alt-del worked but task manager didn't work from that screen so I used log off and I was able to get out of it.

Anyone else experience this?

this is the page I was viewing
http://www.xbiz.com/news/164288

Im guesing a rogue flash ad causing this?

here is a screen cap of what I saw

http://malwaretips.com/blogs/wp-cont...sion-virus.png

Im getting a warning on that page "Application Blocked..."

Name: JNLP
Publisher: JNLP
from: neatly-handsome-feminist_square.jar

I'm not getting any warning.

You probably have a virus on your machine. Xbiz is fine.

It worries me that I didn't get a warning...

I have got this virus warning 2 times on xbiz in the past 2 days.

if its a rogue ad then might need to reload a few times I dunno.

Works fine for me. I think you have a virus on your pc. Have you run malware bytes?

Im in the process of running a full virus scan then will do the malware bytes next. I haven't actually rebooted my machine yet afraid it will pop up again.

avast is what found the virus and gave me a warning but didn't seem to block it fully i guess

Just curious, What browser you use?

everyhting is fine here, check your pc for virus.

Was using IE 10 when it happened

I'm getting something in Antivirus when I use IE too.

So im not crazy lol

malware bytes found 3 things so I hope im good now

Also I got the warning then I proceeded to read the story then about 30sec later that thing poped up.

Microsoft Security Essentials found a file pump_file-abolish-safely. Doesn't know what it was, Just requested to send to Microsoft.

Sorry not finding a virus though.

Cleared cookies and reopened in IE and I got a similar error like this, different file name. Along with the Security Essentials error file, a different file name (monarch majority).

I think there is a screwed up flash ad on there somewhere.

Oh, that's not a virus.

That's just how PRISM works now. :1orglaugh

okay so I just rebooted and cleaned my system and everything seems fine

so I went back to xbiz in the link above and I got a popup in the center of the screen to update my java

3 options
I think they were

update
block
later

I don't remember if that happened first last time but I just closed the browser and now when I goto it its fine.

Is that normal for it to ask to update your java at a random website like that?

looked like this http://foxitsecurity.files.wordpress...02/javaone.jpg

You know what i think i did get that last time and i hit later before i got the virus

Wow... you're using Internet Explorer.... I thought IE was abolished by serious web surfers...

i have IE,chrome and ff most people use IE so i like to see my websites in IE and the others

Pretty sure its a java hack, the computer that was infected has an older version of java so it runs unsigned java code and i tried on a computer with a new java version and its blocking the code from running. Im seeing the same stuff you guys are, jmlp and another different one also. On the computer that was infected i hit the option "later" it just ran code on my other computer. And i got the virus.

You are a hipster, we get it already

Everytime i delete cookies and reload www.xbiz.com i get a warning about a unsecure or unsigned java code

all the ones i noticed are from this domain

randomsubdomain.sobertow.net:754/different-words-every-time.jar

Your PC is still infected, it have NOTHING to do with xbiz.

Your Java was outdated, that is how you got infected.

Start by uninstalling java, if you haven't already.
Disable system restore (google it if you don't know how)
Then go to IE setting, and reset to default under "settings"
Download and run Kaspersky rootkit detector http://www.bleepingcomputer.com/download/tdsskiller/
Reboot
Download and install this trial http://www.bitdefender.com/solutions...-security.html
Run a full scan and don't use the computer for anything in the meantime

i got rid of the virus already. i used a totally different computer when i was checking xbiz after.

may as well chime in, I clicked a link yesterday to xbiz and got a warning from AVG telling me it had blocked a threat. Didn't bother checking what it was etc., just clicked 'ok', closed the xbiz page, and carried on.

I take it back, the site is infected.

First I tested and there were nothing, then I reloaded and Symantec Enterprise blocked the site.

My apologies :pimp

I can't connect with the Mike South website. I wonder if it has been hacked.

same here

It's not just you! http://www.mikesouth.com looks down from here.

odd considering recent discussions

:1orglaugh:1orglaugh:1orglaugh:1orglaugh:1orglaugh

Im migrating servers no worries just waiting for dns propagation now

good move, its a fuck of a lot faster for me now

Thank You HUGE props to chris at m3servers.....these guys are great

nice article coming on them

Me, Too. I use firefox most of the time. I like to check things in ie and chrome too.

mikewest who??