Current Events Malware

Discussion in 'malware problems & news' started by NormanN, May 2, 2011.

Thread Status:
Not open for further replies.
  1. NormanN

    NormanN Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    67
    A Twitter user blogged a recent event in Pakistan. In his Twitter handle, he had a link to his blog. Apparently, his blog was compromised and had a malware link inserted. I actually went there before this report came out and did not get a peep from:

    Firefox 3.6.17 w/No Script and Request Policy
    Running as RunSafer with OA Free
    Prevx SOL Free

    I just went back and couldn't find that code in the source.

    Scanned with Prevx and current MBAM and SAS...clean.

    I don't know but here is the report:

    *

    NN
     
    Last edited by a moderator: May 2, 2011
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    as with any major event malware pushers are ready to take advantage. Be vigilant out there
     
  3. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
    Try scanning with Hitman Pro and Avira Rescue CD. If nothing detects it, you'll have to restore a disk image or reformat.
     
  4. NormanN

    NormanN Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    67
    Or I didn't get infected, or it was pulled out before I got there. I went back to the page on purpose and didn't see the code in the source like it was reported on the WebSense blog post.

    P

    Edit: Forgot about HitmanPro, thanks. Clean there too. No outgoing connections, nothing anywhere. It either wasn't there or it didn't get in. You would know when you got the pop up for the ScareWare.
     
    Last edited: May 3, 2011
Loading...
Thread Status:
Not open for further replies.