1. Welcome to San Diego Chargers NFL Football Podcast and Forum!

    Bolt Talk is one of the largest online communities for the San Diego Chargers. We host a regular Chargers podcast during the season. You are currently viewing our community forums as a guest user.

    Create an Account or

    Having an account grants you additional privileges, such as creating and participating in discussions. Furthermore, we hide most of the ads once you register as a member!
    Dismiss Notice

Virus Warning

Discussion in 'The Lounge' started by Thumper, Jul 15, 2008.

  1. Thumper

    Thumper WHS

    Joined:
    Aug 24, 2005
    Messages:
    15,615
    Ratings:
    +1,467
    If you use internet explorer, please update to the current version and make sure your virus software is current.

    If you get a message in internet explorer that looks like the message below, DO NOT CLICK ON IT.
    [​IMG]

    Someone has somehow hacked literally thousands (probably more than that) of websites on the internet. They most likely have written some script to do this in an automated way.

    The script appends some code to the end of certain files. So far the files appended are index.html index.php default.html login.php

    That code uses an internet explorer vulnerability to load a virus on your computer. The virus is a pretty nasty one and seems to have a few variants. It's been reported that at least one of the variants load a fake screen saver on your computer that looks like the microsoft blue screen of death and forces continual hard reboots.

    As far as I can tell, this only affects internet explorer, not firefox or other browsers.

    I am researching this further. If I find any additional information, I'll post it.
     
  2. Thumper

    Thumper WHS

    Joined:
    Aug 24, 2005
    Messages:
    15,615
    Ratings:
    +1,467
    *** VIRUS WARNING ***

    The reason I'm posting an alert about this virus is because I've seen a lot of virus attacks and vunerabilities before, but the scope of this one is bigger than any I've seen before.

    A couple of other things I've noticed.

    Any type of website can be hacked with this exploit, but some web software doesn't seem to let the script run.

    vBulletin websites don't seem to run the bad script.

    WordPress websites definitely DO PASS THE SCRIPT

    Joomla websites seem to become non functional if they have the script. Basically it takes down the site, which is good in this case because the script can't be passed.

    I've seen some sites with other custom software and with those I've seen either pass the script (THAT's BAD) or it kills the website.
     
  3. Thumper

    Thumper WHS

    Joined:
    Aug 24, 2005
    Messages:
    15,615
    Ratings:
    +1,467
    *** VIRUS WARNING ***

    One other thing to add.

    I've checked all of BoltTalk and we are 100% virus free. I also checked BoltBunker and they are virus free as well.
     

Share This Page