Support MGoBlog: buy stuff at Amazon
You got that from MgoBlog or all the porn you watch? I'm pretty confident you didn't get it from MgoBlog.
BUSTED (NTB)
Mgoblog=porn
ZING!!!!!
I got it twice at work both times were right after I visited here. Then tonight when I first came on here, my virus checker at home caught it. It is a nasty little virus. Hides all your files. Sets it up so you can't do Task Manager. Etc. I don't think it's from the blog, may be one of the ads.
I doubt you got it from MGoBlog, because then more of us would have it and all of the browsers would be shitting themselves in fear again.
Those viruses do suck and I generally try to save whatever I can for a friend who gets this and then reformat because even if you remove it, it changes registry values and corupts files to the point that it's not even worth it to try to get it working like normal again.
You defintely downloaded that virus.
I got the same virus last night on my laptop. It just crashed 30 minutes ago.
Got the virus this morning and was able to fix my registry and remove the virus. My harddrive failed an hour ago.
Bleepingcomputer.com can really help you out with nasty stuff like this.
Good luck restoring your computer to pre-infected status.
whose confusers I babysit to just turn them off via the power button if they see any malware or a browser hijack. Some of these are really nasty. All of the machines I read MGoBlog with are happy right now (several). That didn't come from MgoBlog.
I got that last night on my work computer as well. I don't think it came from here but it may have been in a link or an ad we both clicked on. Seems like to much of a coincedence not to be related.
Most of you have probably already done this after the MGoUnpleasantness, but if you haven't, download MalWareBytes and Rkill right now. Install them right now. We'll wait.
You'll really be glad to have those some day.
after I logged on to MgoBlog too. I have already installed malwarebytes!
but something took over my yahoo email address book yesterday.
Norton 360, rkill and malwarebytes. Norton found nothing, removed a few cookies, and malwarebytes found trojan.vundo, and some add trackers like Adware.MyWebSearch and Adware.Hotbar.
disregard
I've just recentely (once yesterday and once today) had AVG flag mgoblog as suspicious when I browsed to it and then it said it was blocking a file from downloading. It hasn't done that since the meltdown, so I was actually kind of waiting to see if something was up.
I got the same thing earlier. I ran a system restore which seemed to kinda work, but it hid all my files and made me damn near have a heart attack. I can deal with having hidden files, but is there anything else I should do to fix this bitch beyond malwarebytes?
Got this today as well when logging onto mgoblog at work. The IT guy wasn't too happy with me.
Try Malware Bytes. (Just google it.) My friend says it should kinda fix it.
Ya im pretty sure it was from this site because at work I dont go that many sites...Mgoblog, detnews, yahoo, and espn. No i do not go to porn sites at work...i think i know better.
I got it at work today too.
Our IT guy just warned us about this virus. By any chance, are your running Microsoft Security Essentials? He told us all to dump MSE and reload AVG Free. He has 10 clients who experienced the same virus last week and all 10 ran MSE yet the virus got by it.
It may be a MSE problem as I know someone else who just got something similar. Running Norton 360 - no problems with this site.
This will not help you on XP, since the folders are named different. First go into options and click view hidden files. Go into the hard drive and into the program data file. You can find the malicious programs in this folder, one is a registry icon and another is a blue colored icon, looks like a puzzle peice. Both icons will be listed as applications in the file type, and will be larger than most of the files you see. Change the names of both and go into the task manager using crtl+alt+delete. Since you just changed the names you can look for both in the process folder, the most important one is decribed as privacy assist. End those processes, and delete the files you renamed. You should have 3 more random files at the bottom, delete those too. Unhide all your files on the C:/ only. The next part is more advanced, go C:/ to sys32 to drivers to ect. Open host file, and it should show your local host ip number 127.0.0.1. Under that should be blank, if not I can not help you anymore becuase im not a windows user and i can only do so much with my virtual machine. Anytime anyone has security issues im always available, send me an email [email protected]
Had the same virus last week , Ended up have to re-install windows
I had MGoBlog on my office computer today for like 3 clicks. I didn't get it, as far as I know.
Do you guys not work for companies that have good anti-virus tech?
for Malwarebytes. It is not a stand alone anti-virus. However, it is a great compliment to whatever anti-virus you use. I also recommend making a backup of a good system configuration. Here is a free option that works well,
http://www.easeus.com/disk-copy/
EASEUS Todo Backup Free 2.5 will make an exact copy of your system. If something goes wrong you can use it to restore your setup. Using this system backup method will save you a lot of time and effort later. Easeus is not the only backup software available, there are many. However, it's free and has always worked for me. It also has the option for making a recovery boot disk. You can also use it to clone an image on a brand new Hard Drive, without having to do a new install of the operating system.
Here are a couple of videos on how the software works. The first one is an older video, but even though the software has been upgraded since it was made... the general principle on how it works, is still the same.
I use the free AVG, and last night it reported a threat while I was surfing MGoBlog. I took a screen capture, its big I apologize, don't have time to shrink it. Because the weird URL it reported I figured it was one of the advertisements. Also, I closed the tab and came back, no threats reported, surfed mgoblog for the usual 30 minutes, no more threats. Only the first time. Here is the screen cap :
Blackhole came out a little while ago, and we should be familiar with it. It uses SQL injection and the URL redirect looks something like .co.cc That's the same thing that hit mgoblog a few months ago. It exploits java and adobe files, running in .jar or under the filename info.exe or on linux icinfo.exe. AVG can not pick it up, neither can most antiviruses.
Did you click on the Scout link I posted when that came up? The link your warning lists is not the link I posted. (I posted: http://michigan.scout.com/2/1077160.html)
I wonder if the link got hijacked somehow?
Dude, Get rid of windows and just install Linux. I have been virus free for many, many years. Either that or build yourself a system that will run OSX.
Even if you decided to use linux and you still need some microsoft apps like office. you can install crossover in linux and run MS office.
With the growing popularity of macs and linux systems malicious programs are being written in java because it's a universal platform. I am a linux user and I have had a few programs try and sneak in.
I'm sure that his IT department will get right on installing linux on his machine for him.
I work in the cybersecurity world, more on the vulnerability management and configuration management realm than with inciden response so my big contribituion would be to question if you're configration levels.
Here's what I know from looking at 230K assets everyday:
If you run Windows XP, you can be 100% patched and you are still vulnerable to dozens of exploits. As some of you have found out, you don't have to be logged in admin, or execute anyhing to get hit. If you are running a down level of Internet Explorer you are at risk. Adobe products and Java JRE are huge attack vectors. If you had my job you'd hate Adobe like posion. Adobe Reader X is an important half-step in the right direction.
Win7 with IE9, and Office 2010 is a tough nut to crack. As long as you are keeping up with MS and 3rd party paches this is optimal - if you have to use Windows. Firefox and Chrome need to be he newest version.
AV software is hit and miss. It's all signature based and none is perfect. On our high sensitivity systems we run two different AV soultions and trust neither.
Here's the problem, modern cyber criminals aren't pushing malicious malware like what you are seeing. They don't want you having to reimage your system. They want to get in and stay in - low and slow so they can steal your shit. This malware comes from some dickhead in Columbus using Metasploit to exploit mgoblog. Probably T. Pryor using a sweet borrowed laptop.
So to cliff note that; dont be an idiot and keep your system updated and you will more than likely have a nice safe browsing experience?
Honestly the OSX agrument is sooo old, I do believe they just got hit with a round of malware attacks a couple weeks ago yes? How many of these people that are getting virus warning s are running XP SP2 w/ IE7 or Win7 w/out a firewall or AV program meanwhile I keep my laptop up to date (not hard people, you can set it to automatic) and I have yet to encounter a virus even during the Mgoapocalypse. Doing your due diligence is a must.
A customer of mine had that virus on her laptop, I installed microsoft security essentials and it got rid of it. It's a very persistant virus though, good luck!
Avast stopped a couple of things for me yesterday while I was on mgb, but I thought it was because I was downloading music from "the daemon." Avast is pretty cool for free; I took a paid version of Norton off of my computer to put Avast on, and have almost no problems.
I have Avast on my pc and it block some malware while I was on here yesterday as well. To everybody else, the OP is not blowing smoke. Something was a-lurking here.
is so obviously a fake. The intent is to get you to buy their "fix". If you know how to analyze your entire system, you can delete all recent files installed on your system .... I did this once ..it's a PITA.
I have over 20 PC systems at work & 2 of them recently got this (real Windows errors are never this colorful or graphic). I immediately shut down the the computers, took them to a local PC store and they fixed them in about an hour ... for $99.
Doesn't have to be porn .... it just happens in cyber-space.
Go Blue !
ps - Pryor .... wawwawawawawwaaaaaa !
I got this virus as well from mgoblog last night. My stuff still isn't straight. While i got my desktop back in order, the start menu is still FUBAR'd, no idea how to get it back.
I love my MacBook. Have fun guys!
You love your macbook because it's just as vulnerable to this type of attack as any other system, quintessential apple customer? Oh. How apropos.
Actually, I got the apparent "mgoblog virus" on my work laptop(windows/dell), but was able to resolve my problem by utilizing Hijack This. Good luck to the rest of you.
I downloaded unhide.exe and it unhides all the files and stuff. right click on the start menu and click properties and look at the options.
I just got the avg warning again, so I think I am going to stick with droid app until things cool down here on mgoblog.com....
Just infected my shit...i have an ancient pos dell and was gonna go buy a replacement netbook anyway... so I may try to get some friends to fix this or I might just try the cash for clunker route that canton computers always advertises.
Firefox or Chrome + adblock 4tw. This is my work laptop unfortunately it still uses IE7 and our Enterprise AV is McAfee... God help us all.
You should be using the noscript extension. It's an extra layer of security while surfing. When you go to a site, only what you allow will run.
+1
I've gotten popped twice this evening by the same Blackhole Exploit Kit virus that others have referenced above. Presently using IE9, and have Norton Security Suite (the free version you get from Comcast). Norton blocked it both times, thankfully.
slightly different graphics, last night, on my wife's laptop. I didn't get the whole shebang, though. Just a portion. Running system restore from safe mode and then malewarebytes (it was preventing malewarebytes before that) cleaned it off quite nicely. She refuses to run chrome.
Chrome with Notscript is the best thing ever to happen.
I had to update a program so I shut down my browser. After the update was done, I restarted the browser and came to mgoblog. As soon as the page opened I got hit with a bad script... JS Downloader-ARA.
I have been coming and going to mgoblog all day, and this is the first time anything has come up. Avast stopped it. I also got a message telling me that I need Java to view mgoblog. Fortunately I don't have java installed.
I got it on two different computers, it's from Mgoblog. Anyone know how to fix it?
You don't have to pay for it, the free version works very well.
- Turn off system restore
- Download, install, and run a full scan with malwarebytes
- Once scan and cleaning are done... reboot and run the scan a 2nd time.
- Turn system restore back on.
You should be free of the infection.
Although, I eneded up going the route of manually removing the virus.
I got two warnings when I opened up TomVH diaries that my AV (Avast) had blocked a file from downloading. Definitely something on mgoblog, probly an ad.
If the virus hides all your files, there's a utility called unhide.exe that you can get from bleepingcomputer.com that will un hide them. First you'll need to download and run malwarebytes, possibly in safe mode, to get rid of the thing.
I got rid of it easily enough, but my start menu is still screwed
PS: I always knew you guys were dirty. :).
got it again last night with mgoblog open. any word on whats goin on?
I run ABP on all computers I use, and have not had any issues arise. Leads me to believe the underlying problem doesn't lie in mgoblog's code, but in the advertisements - which are brought in from external sites.
edit: Also, anybody running a non-windows OS that claims superiority over others because they think they're immune to viruses, malware, etc is a) ignorant and b) kidding themselves.
Just a heads up, I just had another attack blocked on this site this morning. If you have had a virus from here in the past then I suggest GTFO.
If you find the address for the site, you can type it into your browser. This virus messes with the search engines though....Nasty thing.
If you find the address for the site, you can type it into your browser. This virus messes with the search engines though....Nasty thing.
If you are using IE you really need to consider getting Firefox with Adblock+NoScript, or Chrome with the same addons.
