Prius Chat Virus Warning

Ok, I'm browsing with CACHE disabled and I'm still getting the bbb site trying to load.

It doesn't load when i disable the following script file:
http://priuschat.com/forums/clientscript/vbulletin_global.js

the first few words is:

CLEARLY obfuscated code when compared with another vbulletin site:
http://forums.guru3d.com/clientscript/vbulletin_global.js

Seriously, I think its infected. It may be turning on/off based on some variables.

 

My antivirus provider the ever efficient German Avira has some details on this in their techblog at Avira – TechBlog which includes some links to Microsoft where there is a temporary fix. However at shut down yesterday an update to for Microsoft.Net Framework 3.5 SP1 and .Net Framework 2.0 SP2 Update for Windows Server 2003 and Windows ZP x86 (KB982524) to address a number of known issues was installed, and I have not experienced any attept by the bbb file to open up Windows Media player. Are the two connected? I'm no IT Geek, so cannot answer that one.

Avira Premium Security Suite is happy to run a scan. I am running the latest Media player so it has not been immune.

 

If anyone here got infected or actually opened up those infected pdf/media files, then be sure to download the free version of malwarebytes at malwarebytes.org and do a scan.

 

i seem to be good now, but everytime i boot up i get a symantek script thing i have to go thru and then i'm told i'm not connected to the internet and i click retry and it's fine. other than that all seems well.

 

Many thanks for the fix, it looks OK to me now, even on the PC that's not running noscript and adblock.

Jeremy

 

Danny, Out of curiosity, would it be possible to setup some sort of hash/CRC for the files - that way you can compare the hash of the files - instead of the datestamp? In case of future security breaches, of course.

 

More importantly, it seems to be running on my PC that IS running adblock and noscript.

 

Thanks, Danny!

 

Hello all,

Just a quick update from Tapatalk team. We have resolved the issue and has released the updated plugin. More information can be found here:

** it appears we don't have the permission to post URL here ** please visit our forum at tapatalk.com for more information.

Let us know if you have any issue we are happy to help.

Cheers

 

so what is it that you guys do? must be nice to have your car package option.

 

I got a virus notice 5 days ago on IE8 - I never noticed this on my Mac machine, but this does not mean it is not doing its deeds on it as well - Mac users tend not to have Anti-Virus (and it might not be the best choice).