Contravirus pop up surfing LED Forum

Marlite

Enlightened
Joined
Jan 7, 2006
Messages
257
Location
YVR
While surfing LED Forums I got a Virus warning that my computer was infected. Being familiar with spyware proliferating on the web and having once been hit with a trojan in an email, I closed the box and another with an official looking Microsotf (Window) opens with a dire warning to click to remove deadly virus. I closed said window and 5-6 more popups warned of virus needing to be removed.
After all windows were closed, thankfully, I googled "spyware Contravirus" as recommend by security buffs and spychecker. Many sites including CNET and PC Magzine offered free Contravirus Spyware removal.

Anyone else see this on CPF? I saw Sasha's concern in "Shocked" and I am shocked that this is happening to our membership. I would be glad to support via paid membership and some silver bullets for vampirii as this is too personal.

marlite
 
Last edited:

DUQ

Flashlight Enthusiast
Joined
Jun 22, 2005
Messages
1,824
Location
Ottawa, Ontario, Canada
Re: Contrvirus pop up surfing LED Forum

Which AV software are you running and did recieve it while just browsing or did you open up a picture hosted elsewhere? First time I've heard of anything like it here.
 

Fallingwater

Flashlight Enthusiast
Joined
Jul 11, 2005
Messages
3,323
Location
Trieste, Italy
Re: Contrvirus pop up surfing LED Forum

It happens.
The owner of the site does not have complete control on the ads. Sometimes a previously innocuous ad gets replaced with something offensive such as those fictitious "you're infected" popups, and people get spyware.
 

Marlite

Enlightened
Joined
Jan 7, 2006
Messages
257
Location
YVR
Which AV software are you running and did recieve it while just browsing or did you open up a picture hosted elsewhere? First time I've heard of anything like it here.

Hi DUQ
Which adds to my concerns since this happened after I read Sasha's Shocking Raffle comments. I was reading in the LED Forum and I'm using Symantec AV Pro Edition as stated above. Don't recall if there were any pictures or not. Perhaps just Trolls at work. So I ran Adaware, Spybot and Symantec AV right away and found nothing so I'm fortunate. Then came back to post this warning. Having been hit once by Spyware Quake a bad one, from which my IT guy couldn't remove and lost everything.

Thanks for asking,
marlite
 

matrixshaman

Flashlight Enthusiast
Joined
Jan 17, 2005
Messages
3,410
Location
Outside the Matrix
Are you using a dial-up modem or DSL/Cable or something with NAT? Do you use a Firewall? Forget Windows firewall in XP - get Zonealarm. If you had no firewall or NAT or even if you do and your computer isn't locked down quite securely in other ways someone can slip in a backdoor on an open port and get a virus in regardless of where you are surfing. It may have had nothing to do with CPF - just having a browser open or email running leaves you readily open to attack.
 

Marlite

Enlightened
Joined
Jan 7, 2006
Messages
257
Location
YVR
Are you using a dial-up modem or DSL/Cable or something with NAT? Do you use a Firewall? Forget Windows firewall in XP - get Zonealarm. If you had no firewall or NAT or even if you do and your computer isn't locked down quite securely in other ways someone can slip in a backdoor on an open port and get a virus in regardless of where you are surfing. It may have had nothing to do with CPF - just having a browser open or email running leaves you readily open to attack.

Hi Matrixshaman

Love your handle most intriguing like Carlos Castaneda. I use Shaw high speed cable and have had 4600 or so broad band speed. I am using Zonealarm personal edition and all security programs are updated and run at least once a week Symantec Pro Edition is checked for updates daily before surfing and is run in Realtime Protection mode and OP is MS- XP Pro. I do not use Windows Firewall and it was garbage allowing M.S partners access to track. I heard they conflict as well as do many programs with Microbespot.
That's it, that's all I know. If you ask more :sigh: you'll scrape bottom.
Thanks for helping guys, you're all great members and problem solvers.

marlite
 

matrixshaman

Flashlight Enthusiast
Joined
Jan 17, 2005
Messages
3,410
Location
Outside the Matrix
Thanks on the name comments - sounds like you are fairly well covered against most standard threats. I'd suggest you go to Steve Gibson's web site ( www.grc.com ) and run some of his utilities that will test for security leaks. Steve is a programmer extraordinaire who writes in pure machine language - the guy who wrote Spinrite (utility to bring bad hard drives back to life and reinforce the magnetic media with just software ) and is one of the people who has helped the FBI with Internet security. Internet security is now his main focus. Hopefully Norton automatically took care of that thing. It's still like the Wild West on the Internet - be careful out there :)
 

orionlion82

Enlightened
Joined
Dec 21, 2006
Messages
296
HANG ON!

its highly unlikely you got a virus from CPF.

you likely got it due to inadequate security measures in the first place and you got owned while simply browsing. too bad, so sad, get with the times.

i would say you in fact arent fimilliar with any sort of "spyware proliferating." if you got the contravirus


its a standard thing
you get a warning, (its too late allready, you dropped the ball and its all downhill)

you are told to download some cleaner (youre allready owned and this is the extortion part)
cleaner wants $12.99 to remove it.

nothing to see here, move along.

From:
http://uk.answers.yahoo.com/question/index?qid=20070607032810AAGYGkt

"ContraVirus is a Dangerous fake antispyware software and it is update version of AntiVermins. ContraVirus maybe a variant of Trojan.Zlob. ContraVirus display a fake warning message to purchase the paid version of ContraVirus.

ContraVirus also displays a fake warning alert with flashing icon on your system tray. A Pop up balloon warning messages claiming that your PC is infected. For example : "Critical System Error", "Your computer is infected", "System Alert", "Security Alert", Trojan-Spy.win32@mx", "Virus Alert", "Security Alert" or "Spyware.Cyberlog-X".

I got all these information from this site and you can also check it. There you can also get the complete manual and Automatic removal."

----

how to get your box owned 101, brought to you by marlite

marlites box is now in the hands of the criminal underworld sending spam and Ddosing as part of a cute little botnet. aww. :crackup:

expensive mistake, for sure.
unplug it from the net as is responsible when this happens to do and nuke and pave.
sorry boss. get it right next time with the security and it wont happen in the first place.


ive used nothing but avast, komodo, SSD and AAF since ive had the box.
along with FF, ABP, and SS - simple, basic, easy free stuff.
no trouble.

unless the OP hasnt gotten any windows updates in a while.
and that reason would either be laziness - or WGA blocking updates because its... not a legit copy

(and if it isnt a legit copy AND YOU CANT UPDATE - no sympathy- theres thousands of free opearting systems out there if you dont want to pay the microsoft tax.)

EDIT - matter of fact im reporting the Original post as bogus.
(the OP's clearly inept computer security issues are not the fault of CPF and shouldnt be addressed as such)
 
Last edited:

orionlion82

Enlightened
Joined
Dec 21, 2006
Messages
296
Thanks on the name comments - sounds like you are fairly well covered against most standard threats. I'd suggest you go to Steve Gibson's web site ( www.grc.com ) and run some of his utilities that will test for security leaks. Steve is a programmer extraordinaire who writes in pure machine language - the guy who wrote Spinrite (utility to bring bad hard drives back to life and reinforce the magnetic media with just software ) and is one of the people who has helped the FBI with Internet security. Internet security is now his main focus. Hopefully Norton automatically took care of that thing. It's still like the Wild West on the Internet - be careful out there :)


nunh-unh. steve gibson is a marketing genious targeting internet noobs who are just learning about security.

i HIGHLY reccomend against his site. its RAMPANT with misinformation and garbage.

ironically enough the GRCsucks website has been taken over by squatters and porn...

but heres a good page about it...
http://www.jagular.com/stevegibson.shtml
 

Kraid

Enlightened
Joined
Jul 4, 2007
Messages
515
Location
Waipio, HI
Silly people. There is a super simple, super easy way to avoid problems like this all together! A way that has MANY additional benefits.

BUY A MAC!
 

Empath

Flashaholic
Joined
Nov 11, 2001
Messages
8,508
Location
Oregon
This isn't really a CPF administrative issue. It's a personal infection of a computer, and not a drive-by infection received from the LED forum. I'm moving it to the Cafe.
 
Top