Home
i'm an actor, not a reactor

Primary links

  • About
    • $upport (lol)
    • Ethics
    • FAQ
    • Glossary
    • Privacy Policy
  • Contact
  • MGoStore
    • Hail to Old Blue
  • MGoBoard
    • MGoBoard FAQ
    • Michigan bar locator
    • Moderator Action Sticky
  • Useful Stuff
    • Depth Chart By Class
    • Hoops Depth Chart by Class
    • 2017 Recruiting Board
    • Unofficial Two Deep
    • MGoFlickr
    • Diaries, Windows Live Writer, And You
    • User-Curated HOF
    • Where To Eat In Ann Arbor
  • Schedule/Tix
    • Future Schedules (wiki)
    • Ticket spreadsheet
Home Forums MGoBoard

Navigation

  • Forums
  • Recent posts

User login

  • Create new account
  • Request new password

MGoElsewhere

  • @MGoBlog (Brian)
  • @aceanbender
  • @Misopogon (Seth)
  • @Aeschnepp (Adam)
  • @BISB
  • @EUpchurchPhoto
  • @FullOfTwitt (Fuller)
  • Hail to the Victors 2016
  • MGoFacebook
  • MGoPodcast
  • WTKA
  • Instagram

Michigan Blogs

  • Big House Blog
  • Burgeoning Wolverine Star
  • Genuinely Sarcastic
  • Go Blue Michigan Wolverine
  • Holdin' The Rope
  • MVictors
  • Maize 'n' Blue Nation
  • Maize 'n' Brew
  • Maize And Go Blue
  • Michigan Hockey Net
  • MMMGoBlueBBQ
  • The Blog That Yost Built
  • The Hoover Street Rag
  • The M Zone
  • Touch The Banner
  • UMGoBlog
  • UMHoops
  • UMTailgate
  • Wolverine Liberation Army

M On The Net

  • mgovideo
  • MGoBlue.com
  • Mike DeSimone
  • Recruiting Planet
  • The Wolverine
  • Go Blue Wolverine
  • Winged Helmet
  • UMGoBlue.com
  • MaizeRage.org
  • Puckhead
  • The M Den
  • True Blue Fan Forum

Big Ten Blogs

  • Illinois
    • Illinois Loyalty
    • Illinois Baseball Report
  • Indiana
    • Inside The Hall
    • The Crimson Quarry
  • Iowa
    • Black Heart, Gold Pants
    • Fight For Iowa
  • Michigan State
    • The Only Colors
  • Minnesota
    • GopherHole.com
    • The Daily Gopher
  • Nebraska
    • Corn Nation
    • Husker Max
    • Husker Mike's Blasphemy
    • Husker Gameday
  • Northwestern
    • Sippin' On Purple
    • Lake The Posts
  • Notre Dame
    • The House Rock Built
    • One Foot Down
  • Ohio State
    • Eleven Warriors
    • Buckeye Commentary
    • Men of the Scarlet and Gray
    • Our Honor Defend
    • The Buckeye Nine
  • Penn State
    • Slow States
    • Black Shoe Diaries
    • Happy Valley Hardball
    • Penn State Clips
    • Linebacker U
    • Nittany White Out
  • Purdue
    • Boiled Sports
    • Hammer and Rails
  • Wisconsin
    • Bruce Ciskie

Links of Note

  • Baseball
    • College Baseball Today
    • The College Baseball Blog
  • Basketball
    • Ken Pomeroy
    • Hoop Math
    • John Gasaway
    • Luke Winn/Sports Illustrated
  • College Hockey
    • Chris Heisenberg (Class of 2016)
    • College Hockey Stats
    • Michigan College Hockey
    • Hockey's Future
    • Sioux Sports
    • USCHO
  • Football
    • Smart Football
    • Every Day Should Be Saturday
    • Matt Hinton/Grantland
    • Football Study Hall
    • Football Outsiders
    • Harold Stassen
    • NCAA D-I Stats Page
    • The Wizard Of Odds
    • CFB Stats
  • General
    • Sports Central
  • Local Interest
    • The Ann Arbor Chronicle
    • Arborwiki
    • Arbor Update
    • Ann Arbor Observer
    • Teeter Talk
    • Vacuum
  • Teams Of The D
    • Lions
      • Pride of Detroit
    • Pistons
      • Detroit Bad Boys
      • Need4Sheed
    • Tigers
      • Roar Of The Tigers
      • Bless You Boys
      • The Daily Fungo
      • The Detroit Tigers Weblog
    • Red Wings
      • Winging It In Motown
      • On The Wings
    • Michigan Sports Forum

Beveled Guilt

Site Search

Diaries

  • New
  • Popular
  • Hot
  • Loyola-Chicago: A First Glance
    Bambi - 3 weeks ago
  • PreSpring Football updates from Sam Webb
    AZBlue - 4 weeks ago
  • ‹‹
  • 2 of 2
  •  
more
  • This Month in MGoBlog History - March 2008: Pryor isn't coming, Boren has left, and some academic fraud allegations sprinkled in
    Maize.Blue Wagner - 215 comments
  • The Ballad of Jordan Poole
    k.o.k.Law - 176 comments
  • 14 Months Ago: The Fire Beilein Threads.
    stephenrjking - 91 comments
  • PreSpring Football updates from Sam Webb
    AZBlue - 90 comments
  • Thirteen unlucky minutes (TL;DNR-This is a bit of rant about the refs)
    docwhoblocked - 61 comments
  •  
  • 1 of 2
  • ››
more

MGoBoard

  • New
  • Recent
  • Hot
  • Schembechler Hall practice field ripped out (photos)
    22 replies
  • The Evolution of Commerce - What Industries are Dying, What's Thriving?
    95 replies
  • Softball Wins Series Opener Over Maryland, 6-0
    7 replies
  • OT: How do some student-athletes finish a bachelors so quickly (to transfer)?
    55 replies
  • OT: Avicii dead at 28
    66 replies
  • Chase Young becomes highest drafted Michigan lacrosse player
    20 replies
  • Podcast discussion on the conference
    31 replies
  • Matthews Declares WITHOUT agent
    45 replies
  • OT - Jalen Hurts possibly looking to transfer
    118 replies
  • Game Day Condos - who's gonna buy one?
    71 replies
  • OT: Arsene Wenger set to retire from Arsenal FC
    51 replies
  • OT: The Cube Inaccessible Until Fall 2019
    22 replies
  • It’s Friday - Time to POSBANG!!
    81 replies
  • RIP Earle Bruce
    47 replies
  • Final 2018 Basketball COMPOSITE Rankings
    34 replies
  •  
  • 1 of 6
  • ››
  • Apparently, the NCAA has already received a response from MSU about Nassar
    62 replies
  • Belleville coach Jermain Crowell mad at UM again
    244 replies
  • RIP Earle Bruce
    47 replies
  • OT: The Cube Inaccessible Until Fall 2019
    22 replies
  • Final 2018 Basketball COMPOSITE Rankings
    34 replies
  • Any news on Grant Newsome?
    81 replies
  • Auston Robertson arrested again
    59 replies
  • "Being Not-Rich at UM" Guide
    168 replies
  • HELP WANTED! I'm moving to Chicago for school and I need good haunts to watch football/basketball games. Recommendations?
    61 replies
  • 2018-19 Michigan Basketball B1G slate announced
    43 replies
  • Michigan announces single-game ticket prices for 2018 football season
    36 replies
  • CBS Sports: Shea Patterson details scope of Ole Miss deception in lengthy letter to Michigan
    41 replies
  • NCAA changes rules to restrict James Doug Foug's super power
    107 replies
  • Angelique on Patterson Transfer
    58 replies
  • Q&A with FB Ben VanSumeren--Video
    10 replies
  • ‹‹
  • 2 of 6
  • ››
  • Why should we be optimistic about 2018 M football?
    273 replies
  • Belleville coach Jermain Crowell mad at UM again
    244 replies
  • Police investigating Elysee Mbem-Bosse for death threat against Harbaugh
    224 replies
  • "Being Not-Rich at UM" Guide
    168 replies
  • Buckle Up
    159 replies
  • Scouting the Enemy: Ohio State QBs are Good
    158 replies
  • Semi-OT: What sports would you fix?
    158 replies
  • Elysee Mbem-Bosse disturbing tweets
    157 replies
  • Whats the Best Way to Make Flight Arrangements?
    149 replies
  • Wagner to NBA
    141 replies
  • Urban Meyer throws more shade at Michigan
    141 replies
  • FB new Nutrition plan under Herbert is well received by players
    132 replies
  • What past season would you have liked to see an Amazon-style documentary on?
    121 replies
  • OT: best-selling musical artists by state of birth
    120 replies
  • OT - Jalen Hurts possibly looking to transfer
    118 replies
  •  
  • 1 of 6
  • ››

Support MGoBlog: buy stuff at Amazon

OT- Windows Restore Virus

69 posts / 0 new
Login or register to post comments
Last post
June 7th, 2011 at 4:50 PM
#1
swdude12
swdude12's picture
Joined: 09/01/2009
MGoPoints: 1548
OT- Windows Restore Virus

I believe I got this virus from mgoblog.  I got it on my home cpu and I also got it on my work cpu, which i dont have admin rights too, so now I am kinda screwed. FYI be careful! It hides all your files and pretends to run a restore program, says your harddrives have crashed etc.

 

Top
  • Login or register to post comments
Tags:
  • MGoBoard

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
June 7th, 2011 at 4:53 PM
#2
Quail2theVict0r
Quail2theVict0r's picture
Joined: 12/01/2008
MGoPoints: 15054
You got that from MgoBlog or

You got that from MgoBlog or all the porn you watch? I'm pretty confident you didn't get it from MgoBlog.

Top
  • Login or register to post comments
June 7th, 2011 at 5:04 PM
(Reply to #2) #3
BlueDragon
BlueDragon's picture
Joined: 11/14/2010
MGoPoints: 21718
BUSTED (NTB)

BUSTED (NTB)

Top
  • Login or register to post comments
June 7th, 2011 at 7:17 PM
(Reply to #2) #4
brandanomano
brandanomano's picture
Joined: 09/05/2009
MGoPoints: 5086
Mgoblog=porn

Mgoblog=porn

Top
  • Login or register to post comments
June 7th, 2011 at 9:00 PM
(Reply to #2) #5
The Blue in Ohio
The Blue in Ohio's picture
Joined: 02/08/2011
MGoPoints: 437
ZING!!!!!

ZING!!!!!

Top
  • Login or register to post comments
June 10th, 2011 at 9:41 PM
(Reply to #2) #6
mikoyan
mikoyan's picture
Joined: 09/06/2010
MGoPoints: 2784
I got it twice at work both

I got it twice at work both times were right after I visited here.  Then tonight when I first came on here, my virus checker at home caught it.  It is a nasty little virus.  Hides all your files.  Sets it up so you can't do Task Manager.  Etc.  I don't think it's from the blog, may be one of the ads.

Top
  • Login or register to post comments
June 7th, 2011 at 4:53 PM
#7
joeyb
joeyb's picture
Joined: 10/12/2008
MGoPoints: 14048
I doubt you got it from

I doubt you got it from MGoBlog, because then more of us would have it and all of the browsers would be shitting themselves in fear again.

Those viruses do suck and I generally try to save whatever I can for a friend who gets this and then reformat because even if you remove it, it changes registry values and corupts files to the point that it's not even worth it to try to get it working like normal again.

Top
  • Login or register to post comments
June 7th, 2011 at 5:02 PM
#8
Marley Nowell
Marley Nowell's picture
Joined: 07/31/2008
MGoPoints: 10384
You defintely downloaded that

You defintely downloaded that virus.

Top
  • Login or register to post comments
June 7th, 2011 at 5:05 PM
#9
MichiganMan2424
Joined: 03/09/2011
MGoPoints: -99998917
Dude

I got the same virus last night on my laptop. It just crashed 30 minutes ago.

Top
  • Login or register to post comments
June 7th, 2011 at 5:56 PM
(Reply to #6) #10
Aero01
Aero01's picture
Joined: 09/10/2010
MGoPoints: 2234
Me too

Got the virus this morning and was able to fix my registry and remove the virus. My harddrive failed an hour ago.

Top
  • Login or register to post comments
June 7th, 2011 at 5:08 PM
#11
ixcuincle
ixcuincle's picture
Joined: 08/11/2010
MGoPoints: 4547
Bleepingcomputer.com can

Bleepingcomputer.com can really help you out with nasty stuff like this.

Good luck restoring your computer to pre-infected status.

Top
  • Login or register to post comments
June 7th, 2011 at 5:09 PM
#12
LB
LB's picture
Joined: 09/26/2009
MGoPoints: 10448
I have taken to telling those folks

whose confusers I babysit to just turn them off via the power button if they see any malware or a browser hijack. Some of these are really nasty. All of the machines I read MGoBlog with are happy right now (several). That didn't come from MgoBlog.

Top
  • Login or register to post comments
June 7th, 2011 at 5:11 PM
#13
Dhani Bowtie
Dhani Bowtie's picture
Joined: 10/21/2008
MGoPoints: 99
I got that last night on my

I got that last night on my work computer as well. I don't think it came from here but it may have been in a link or an ad we both clicked on. Seems like to much of a coincedence not to be related.

Top
  • Login or register to post comments
June 7th, 2011 at 5:13 PM
#14
BiSB
BiSB's picture
Joined: 08/15/2009
MGoPoints: 44839
PSA:

Most of you have probably already done this after the MGoUnpleasantness, but if you haven't, download MalWareBytes and Rkill right now.  Install them right now.  We'll wait.

You'll really be glad to have those some day.

Top
  • Login or register to post comments
June 7th, 2011 at 5:23 PM
#15
DamnYankee
Joined: 07/15/2008
MGoPoints: 548
I got the same thing this afternoon

after I logged on to MgoBlog too.  I have already installed malwarebytes!

Top
  • Login or register to post comments
June 7th, 2011 at 5:30 PM
#16
maizenbluenc
maizenbluenc's picture
Joined: 07/21/2009
MGoPoints: 7931
I didn't get this one

but something took over my yahoo email address book yesterday.

Top
  • Login or register to post comments
June 9th, 2011 at 12:16 PM
(Reply to #12) #17
maizenbluenc
maizenbluenc's picture
Joined: 07/21/2009
MGoPoints: 7931
So I ran

Norton 360, rkill and malwarebytes. Norton found nothing, removed a few cookies, and malwarebytes found trojan.vundo, and some add trackers like Adware.MyWebSearch and Adware.Hotbar.

Top
  • Login or register to post comments
June 7th, 2011 at 5:56 PM
#18
maizenbluenc
maizenbluenc's picture
Joined: 07/21/2009
MGoPoints: 7931
Double post

disregard

Top
  • Login or register to post comments
June 7th, 2011 at 5:39 PM
#19
MKEblue
Joined: 01/16/2011
MGoPoints: 169
I've just recentely (once

I've just recentely (once yesterday and once today) had AVG flag mgoblog as suspicious when I browsed to it and then it said it was blocking a file from downloading. It hasn't done that since the meltdown, so I was actually kind of waiting to see if something was up.

Top
  • Login or register to post comments
June 7th, 2011 at 5:55 PM
#20
tdcarl
tdcarl's picture
Joined: 04/11/2009
MGoPoints: 2922
Yep

I got the same thing earlier. I ran a system restore which seemed to kinda work, but it hid all my files and made me damn near have a heart attack. I can deal with having hidden files, but is there anything else I should do to fix this bitch beyond malwarebytes?

Top
  • Login or register to post comments
June 7th, 2011 at 6:07 PM
#21
plaidflannel
Joined: 07/21/2009
MGoPoints: 1142
Me too

Got this today as well when logging onto mgoblog at work. The IT guy wasn't too happy with me.

Top
  • Login or register to post comments
June 7th, 2011 at 6:08 PM
#22
Wolverine Incognito
Wolverine Incognito's picture
Joined: 11/08/2009
MGoPoints: 1381
Try Malware Bytes.  (Just

Try Malware Bytes.  (Just google it.)  My friend says it should kinda fix it.

Top
  • Login or register to post comments
June 7th, 2011 at 6:14 PM
#23
swdude12
swdude12's picture
Joined: 09/01/2009
MGoPoints: 1548
Ya im pretty sure it was from

Ya im pretty sure it was from this site because at work I dont go that many sites...Mgoblog, detnews, yahoo, and espn. No i do not go to porn sites at work...i think i know better.

Top
  • Login or register to post comments
June 7th, 2011 at 9:03 PM
(Reply to #19) #24
FuManBlue
FuManBlue's picture
Joined: 01/20/2010
MGoPoints: 1546
It has to be this site...

I got it at work today too.

Top
  • Login or register to post comments
June 7th, 2011 at 6:16 PM
#25
ReadYourGuard
ReadYourGuard's picture
Joined: 08/21/2008
MGoPoints: 33681
Our IT guy just warned us

Our IT guy just warned us about this virus.  By any chance, are your running Microsoft Security Essentials?    He told us all to dump MSE and reload AVG Free.  He has 10 clients who experienced the same virus last week and all 10 ran MSE yet the virus got by it.

 

Top
  • Login or register to post comments
June 7th, 2011 at 6:28 PM
#26
ppToilet
ppToilet's picture
Joined: 04/18/2011
MGoPoints: 3013
Agree...

It may be a MSE problem as I know someone else who just got something similar.  Running Norton 360 - no problems with this site.

Top
  • Login or register to post comments
June 7th, 2011 at 6:28 PM
#27
Rusty Shackleford
Joined: 04/03/2010
MGoPoints: 5981
Ok here's what you can do

This will not help you on XP, since the folders are named different. First go into options and click view hidden files. Go into the hard drive and into the program data file. You can find the malicious programs in this folder, one is a registry icon and another is a blue colored icon, looks like a puzzle peice. Both icons will be listed as applications in the file type, and will be larger than most of the files you see. Change the names of both and go into the task manager using crtl+alt+delete. Since you just changed the names you can look for both in the process folder, the most important one is decribed as privacy assist. End those processes, and delete the files you renamed. You should have 3 more random files at the bottom, delete those too. Unhide all your files on the C:/ only. The next part is more advanced, go C:/ to sys32 to drivers to ect. Open host file, and it should show your local host ip number 127.0.0.1. Under that should be blank, if not I can not help you anymore becuase im not a windows user and i can only do so much with my virtual machine. Anytime anyone has security issues im always available, send me an email [email protected]

Top
  • Login or register to post comments
June 7th, 2011 at 6:34 PM
#28
Pazman
Pazman's picture
Joined: 01/31/2010
MGoPoints: 58
Had the same virus last week !

Had the same virus last week ,  Ended up have to re-install windows 

Top
  • Login or register to post comments
June 7th, 2011 at 6:59 PM
#29
MichiganStudent
MichiganStudent's picture
Joined: 08/27/2008
MGoPoints: 7223
I had MGoBlog on my office

I had MGoBlog on my office computer today for like 3 clicks. I didn't get it, as far as I know. 

 

Do you guys not work for companies that have good anti-virus tech?

Top
  • Login or register to post comments
June 7th, 2011 at 7:51 PM
#30
Griff88
Griff88's picture
Joined: 01/26/2010
MGoPoints: 1401
Another recommendation

for Malwarebytes. It is not a stand alone anti-virus. However, it is a great compliment to whatever anti-virus you use. I also recommend making a backup of a good system configuration. Here is a free option that works well,

http://www.easeus.com/disk-copy/

EASEUS Todo Backup Free 2.5 will make an exact copy of your system. If something goes wrong you can use it to restore your setup. Using this system backup method will save you a lot of time and effort later. Easeus is not the only backup software available, there are many. However, it's free and has always worked for me. It also has the option for making a recovery boot disk. You can also use it to clone an image on a brand new Hard Drive, without having to do a new install of the operating system.

Here are a couple of videos on how the software works. The first one is an older video, but even though the software has been upgraded since it was made... the general principle on how it works, is still the same.

http://www.youtube.com/watch?v=AEyAtFJR8fI

http://www.youtube.com/watch?v=Ib99WihC8qI

Top
  • Login or register to post comments
June 7th, 2011 at 7:58 PM
#31
name redacted
Joined: 07/13/2009
MGoPoints: 1473
I had a threat reported to me from MGOBLOG last night

I use the free AVG, and last night it reported a threat while I was surfing MGoBlog.  I took a screen capture, its big I apologize, don't have time to shrink it. Because the weird URL it reported I figured it was one of the advertisements.  Also, I closed the tab and came back, no threats reported, surfed mgoblog for the usual 30 minutes, no more threats.  Only the first time.  Here is the screen cap :


 

 

 

Top
  • Login or register to post comments
June 7th, 2011 at 8:24 PM
(Reply to #28) #32
Rusty Shackleford
Joined: 04/03/2010
MGoPoints: 5981
Oh that's not good

Blackhole came out a little while ago, and we should be familiar with it. It uses SQL injection and the URL redirect looks something like .co.cc That's the same thing that hit mgoblog a few months ago. It exploits java and adobe files, running in .jar or under the filename info.exe or on linux icinfo.exe. AVG can not pick it up, neither can most antiviruses.

Top
  • Login or register to post comments
June 9th, 2011 at 12:24 PM
(Reply to #28) #33
maizenbluenc
maizenbluenc's picture
Joined: 07/21/2009
MGoPoints: 7931
Hey, that's not my link.

Did you click on the Scout link I posted when that came up? The link your warning lists is not the link I posted. (I posted: http://michigan.scout.com/2/1077160.html)

I wonder if the link got hijacked somehow?

Top
  • Login or register to post comments
June 7th, 2011 at 8:01 PM
#34
The BlackHand
Joined: 12/16/2008
MGoPoints: 67
This is just one more good reason why Microsoft sucks

Dude, Get rid of windows and just install Linux. I have been virus free for many, many years. Either that or build yourself a system that will run OSX.

 

Even if you decided to use linux and you still need some microsoft apps like office. you can install crossover in linux and run MS office.

Top
  • Login or register to post comments
June 7th, 2011 at 8:49 PM
(Reply to #29) #35
Rusty Shackleford
Joined: 04/03/2010
MGoPoints: 5981
You still have to be careful

With the growing popularity of macs and linux systems malicious programs are being written in java because it's a universal platform. I am a linux user and I have had a few programs try and sneak in.

Top
  • Login or register to post comments
June 8th, 2011 at 9:29 AM
(Reply to #29) #36
joeyb
joeyb's picture
Joined: 10/12/2008
MGoPoints: 14048
I'm sure that his IT

I'm sure that his IT department will get right on installing linux on his machine for him.

Top
  • Login or register to post comments
June 7th, 2011 at 8:17 PM
#37
ottomatic
Joined: 01/12/2011
MGoPoints: 1020
Here's the problem...

I work in the cybersecurity world, more on the vulnerability management and configuration management realm than with inciden response so my big contribituion would be to question if you're configration levels.

Here's what I know from looking at 230K assets everyday:

If you run Windows XP, you can be 100% patched and you are still vulnerable to dozens of exploits. As some of you have found out, you don't have to be logged in admin, or execute anyhing to get hit. If you are running a down level of Internet Explorer you are at risk. Adobe products and Java JRE are huge attack vectors. If you had my job you'd hate Adobe like posion. Adobe Reader X is an important half-step in the right direction.

Win7 with IE9, and Office 2010 is a tough nut to crack. As long as you are keeping up with MS and 3rd party paches this is optimal - if you have to use Windows. Firefox and Chrome need to be he newest version.

AV software is hit and miss. It's all signature based and none is perfect. On our high sensitivity systems we run two different AV soultions and trust neither.

Here's the problem, modern cyber criminals aren't pushing malicious malware like what you are seeing. They don't want you having to reimage your system. They want to get in and stay in - low and slow so they can steal your shit. This malware comes from some dickhead in Columbus using Metasploit to exploit mgoblog. Probably T. Pryor using a sweet borrowed laptop.

Top
  • Login or register to post comments
June 8th, 2011 at 9:51 AM
(Reply to #30) #38
thisisme08
thisisme08's picture
Joined: 12/02/2008
MGoPoints: 2701
So to cliff note that; dont

So to cliff note that; dont be an idiot and keep your system updated and you will more than likely have a nice safe browsing experience?

Honestly the OSX agrument is sooo old, I do believe they just got hit with a round of malware attacks a couple weeks ago yes? How many of these people that are getting virus warning s are running XP SP2 w/ IE7 or Win7 w/out a firewall or AV program meanwhile I keep my laptop up to date (not hard people, you can set it to automatic) and I have yet to encounter a virus even during the Mgoapocalypse.  Doing your due diligence is a must. 

Top
  • Login or register to post comments
June 7th, 2011 at 9:01 PM
#39
The Blue in Ohio
The Blue in Ohio's picture
Joined: 02/08/2011
MGoPoints: 437
A customer of mine had that

A customer of mine had that virus on her laptop, I installed microsoft security essentials and it got rid of it. It's a very persistant virus though, good luck!

Top
  • Login or register to post comments
June 7th, 2011 at 9:08 PM
#40
Tater
Tater's picture
Joined: 08/13/2008
MGoPoints: 30564
Didn't get it...

Avast stopped a couple of things for me yesterday while I was on mgb, but I thought it was because I was downloading music from "the daemon."  Avast is pretty cool for free; I took a paid version of Norton off of my computer to put Avast on, and have almost no problems.  

Top
  • Login or register to post comments
June 8th, 2011 at 1:27 AM
(Reply to #36) #41
Louie C
Louie C's picture
Joined: 11/16/2009
MGoPoints: 3233
I have Avast on my pc and it

I have Avast on my pc and it block some malware while I was on here yesterday as well. To everybody else, the OP is not blowing smoke. Something was a-lurking here.

Top
  • Login or register to post comments
June 7th, 2011 at 9:09 PM
#42
Indiana Blue
Indiana Blue's picture
Joined: 09/19/2010
MGoPoints: 4916
That Windows Restore screen ...

is so obviously a fake.  The intent is to get you to buy their "fix".  If you know how to analyze your entire system, you can delete all recent files installed on your system .... I did this once ..it's a PITA.   

I have over 20 PC systems at work & 2 of them recently got this (real Windows errors are never this colorful or graphic).  I immediately shut down the the computers, took them to a local PC store and they fixed them in about an hour ... for $99.

Doesn't have to be porn .... it just happens in cyber-space.

Go Blue !

ps  -  Pryor .... wawwawawawawwaaaaaa !

Top
  • Login or register to post comments
June 7th, 2011 at 10:05 PM
#43
phork
phork's picture
Joined: 11/01/2009
MGoPoints: 4486
I got this virus as well from

I got this virus as well from mgoblog last night.  My stuff still isn't straight.  While i got my desktop back in order, the start menu is still FUBAR'd, no idea how to get it back.

Top
  • Login or register to post comments
June 7th, 2011 at 10:13 PM
#44
markjko.rn
markjko.rn's picture
Joined: 08/25/2009
MGoPoints: 233
Yet another reason why...

I love my MacBook. Have fun guys!

 
Top
  • Login or register to post comments
June 7th, 2011 at 11:00 PM
(Reply to #39) #45
quiqsilver
quiqsilver's picture
Joined: 08/29/2009
MGoPoints: 956
You love your macbook because

You love your macbook because it's just as vulnerable to this type of attack as any other system, quintessential apple customer?  Oh.  How apropos.

Top
  • Login or register to post comments
June 7th, 2011 at 11:19 PM
(Reply to #44) #46
markjko.rn
markjko.rn's picture
Joined: 08/25/2009
MGoPoints: 233
Actually, I got the apparent

Actually, I got the apparent "mgoblog virus" on my work laptop(windows/dell), but was able to resolve my problem by utilizing Hijack This. Good luck to the rest of you.

 
 
Top
  • Login or register to post comments
June 7th, 2011 at 10:15 PM
#47
swdude12
swdude12's picture
Joined: 09/01/2009
MGoPoints: 1548
I downloaded unhide.exe and

I downloaded unhide.exe and it unhides all the files and stuff.  right click on the start menu and click properties and look at the options.

Top
  • Login or register to post comments
June 7th, 2011 at 10:16 PM
#48
name redacted
Joined: 07/13/2009
MGoPoints: 1473
I just got the avg warning

I just got the avg warning again, so I think I am going to stick with droid app until things cool down here on mgoblog.com....

Top
  • Login or register to post comments
June 7th, 2011 at 10:25 PM
(Reply to #41) #49
Broken Brilliance
Broken Brilliance's picture
Joined: 09/07/2010
MGoPoints: 4056
Damn thing

Just infected my shit...i have an ancient pos dell and was gonna go buy a replacement netbook anyway... so I may try to get some friends to fix this or I might just try the cash for clunker route that canton computers always advertises.

Top
  • Login or register to post comments
June 7th, 2011 at 10:35 PM
#50
phork
phork's picture
Joined: 11/01/2009
MGoPoints: 4486
Firefox or Chrome + adblock

Firefox or Chrome + adblock 4tw.  This is my work laptop unfortunately it still uses IE7 and our Enterprise AV is McAfee...  God help us all.

Top
  • Login or register to post comments
June 7th, 2011 at 11:01 PM
#51
Griff88
Griff88's picture
Joined: 01/26/2010
MGoPoints: 1401
For those that use Firefox or other Mozilla browsers

You should be using the noscript extension. It's an extra layer of security while surfing. When you go to a site, only what you allow will run.

http://noscript.net/

 

 

Top
  • Login or register to post comments
June 7th, 2011 at 11:40 PM
(Reply to #45) #52
phork
phork's picture
Joined: 11/01/2009
MGoPoints: 4486
+1

+1

Top
  • Login or register to post comments
June 7th, 2011 at 11:51 PM
#53
a2bluefan
a2bluefan's picture
Joined: 12/29/2008
MGoPoints: 2497
I've gotten popped twice this

I've gotten popped twice this evening by the same Blackhole Exploit Kit virus that others have referenced above.  Presently using IE9, and have Norton Security Suite (the free version you get from Comcast). Norton blocked it both times, thankfully.

Top
  • Login or register to post comments
June 8th, 2011 at 12:06 AM
#54
Blazefire
Blazefire's picture
Joined: 04/17/2009
MGoPoints: 25034
I got a very similar one

slightly different graphics, last night, on my wife's laptop. I didn't get the whole shebang, though. Just a portion. Running system restore from safe mode and then malewarebytes (it was preventing malewarebytes before that) cleaned it off quite nicely. She refuses to run chrome.

Chrome with Notscript is the best thing ever to happen.

Top
  • Login or register to post comments
June 8th, 2011 at 12:34 AM
#55
Griff88
Griff88's picture
Joined: 01/26/2010
MGoPoints: 1401
Well now, it just happened to me.

I had to update a program so I shut down my browser. After the update was done, I restarted the browser and came to mgoblog. As soon as the page opened I got hit with a bad script... JS Downloader-ARA.

I have been coming and going to mgoblog all day, and this is the first time anything has come up. Avast stopped it. I also got a message telling me that I need Java to view mgoblog. Fortunately I don't have java installed.

Top
  • Login or register to post comments
June 8th, 2011 at 8:08 AM
#56
A2GoBlue
A2GoBlue's picture
Joined: 05/18/2011
MGoPoints: 232
Me too

I got it on two different computers, it's from Mgoblog. Anyone know how to fix it?

Top
  • Login or register to post comments
June 8th, 2011 at 10:32 AM
(Reply to #52) #57
Griff88
Griff88's picture
Joined: 01/26/2010
MGoPoints: 1401
Get Malwarebytes

http://www.malwarebytes.org/

You don't have to pay for it, the free version works very well.

- Turn off system restore

- Download, install, and run a full scan with malwarebytes

- Once scan and cleaning are done... reboot and run the scan a 2nd time.

- Turn system restore back on.

You should be free of the infection.

Top
  • Login or register to post comments
June 8th, 2011 at 9:26 PM
(Reply to #58) #58
A2GoBlue
A2GoBlue's picture
Joined: 05/18/2011
MGoPoints: 232
Thank you kind sir

Although, I eneded up going the route of manually removing the virus.

Top
  • Login or register to post comments
June 8th, 2011 at 8:14 AM
#59
dmccoy
dmccoy's picture
Joined: 01/31/2009
MGoPoints: 164
Avast caught it

I got two warnings when I opened up TomVH diaries that my AV (Avast) had blocked a file from downloading. Definitely something on mgoblog, probly an ad.

Top
  • Login or register to post comments
June 8th, 2011 at 8:17 AM
#60
dmccoy
dmccoy's picture
Joined: 01/31/2009
MGoPoints: 164
unhide.exe

If the virus hides all your files, there's a utility called unhide.exe that you can get from bleepingcomputer.com that will un hide them.  First you'll need to download and run malwarebytes, possibly in safe mode, to get rid of the thing.

Top
  • Login or register to post comments
June 8th, 2011 at 8:46 AM
(Reply to #54) #61
phork
phork's picture
Joined: 11/01/2009
MGoPoints: 4486
I got rid of it easily

I got rid of it easily enough, but my start menu is still screwed

PS: I always knew you guys were dirty. :).

Top
  • Login or register to post comments
June 9th, 2011 at 10:21 AM
#62
swdude12
swdude12's picture
Joined: 09/01/2009
MGoPoints: 1548

got it again last night with mgoblog open. any word on whats goin on?

Top
  • Login or register to post comments
June 9th, 2011 at 11:54 AM
#63
octal9
octal9's picture
Joined: 11/11/2008
MGoPoints: 5775
I run ABP on all computers I

I run ABP on all computers I use, and have not had any issues arise. Leads me to believe the underlying problem doesn't lie in mgoblog's code, but in the advertisements - which are brought in from external sites.

edit: Also, anybody running a non-windows OS that claims superiority over others because they think they're immune to viruses, malware, etc is a) ignorant and b) kidding themselves.

Top
  • Login or register to post comments
June 10th, 2011 at 6:07 AM
#64
dennisblundon
dennisblundon's picture
Joined: 02/23/2010
MGoPoints: 9509
Just a heads up, I just had

Just a heads up, I just had another attack blocked on this site this morning. If you have had a virus from here in the past then I suggest GTFO.

Top
  • Login or register to post comments
June 10th, 2011 at 9:51 PM
(Reply to #65) #65
mikoyan
mikoyan's picture
Joined: 09/06/2010
MGoPoints: 2784
If you find the address for

If you find the address for the site, you can type it into your browser.  This virus messes with the search engines though....Nasty thing.

Top
  • Login or register to post comments
June 10th, 2011 at 9:51 PM
(Reply to #65) #66
mikoyan
mikoyan's picture
Joined: 09/06/2010
MGoPoints: 2784
If you find the address for

If you find the address for the site, you can type it into your browser.  This virus messes with the search engines though....Nasty thing.

Top
  • Login or register to post comments
June 10th, 2011 at 9:16 PM
#67
phork
phork's picture
Joined: 11/01/2009
MGoPoints: 4486
If you are using IE you

If you are using IE you really need to consider getting Firefox with Adblock+NoScript, or Chrome with the same addons.

Top
  • Login or register to post comments
Powered by Drupal, an open source content management system
Theme provided by Roopletheme; sidebars adapted from Chris Murphy.