[Squall-Leonhart]

PCXL-Fan is recieving the following message.

The requested object is INFECTED with the following viruses: HEUR:Trojan.Script.Iframer

 

[Hard core Rikki]

Exact location or link if possible ?

 

[nosound.97]

I get the same thing on some sections there too. Is forum infected or something?

 

[Hard core Rikki]

Could be either something like that or (more likely) a rogue advertiser agent, which would require it removed at cg's level. The exact object url would help pinpoint which (a screenshot of the alert could do).

 

[Squall-Leonhart]

these are active on that section

hxxp://ad.doubleclick.net/adj/amzn.us.gw.atf;sz=300x250;bn=507846;u=e4110943d78341d985222302773a6643;ord=002QZG45BA933Y8SQVEF;s=32;s=120;s=m4;s=m1;z=3;tile=1?
hxxp://ad.doubleclick.net/adj/amzn.us.gw.btf;sz=300x250;bn=507846;u=859eb22ede444d0fb5e78f8e2f81ab48;ord=002QZG45BA933Y8SQVEF;s=32;s=120;s=m1;s=m4;z=1;tile=3?
hxxp://ad.yieldmanager.com/pixel?id=566195&t=2
hxxp://ad.yieldmanager.com/pixel?id=585957&t=2
hxxp://ad.yieldmanager.com/pixel?id=586404&t=2
hxxp://ad.yieldmanager.com/pixel?id=586729&t=2
hxxp://ad.yieldmanager.com/pixel?id=593651&t=2
hxxp://ctxt.tribalfusion.com/ctxt/textlinks.js
hxxp://ngemucom.skimlinks.com/api/skimlinks.js
hxxp://pagead2.googlesyndication.com/pagead/show_ads.js
hxxp://pagead2.googlesyndication.com/pagead/show_ads.js
hxxp://partner.googleadservices.com/gampad/google_service.js
hxxp://www.afcyhf.com/image-3363331-10456095

 

[zidine00]

gah freking heck, just when i get rid of one virus ive got to scan for another.....

not my day.

 

[koko]

Me too..sometimes I get this :
View attachment 207377

 

[Cid Highwind]

That´s one way to stimulate the use of Firefox plus Adblock I guess.

 

[Exodus]

That´s one way to stimulate the use of Firefox plus Adblock I guess.

It's my hero.

 

[Lex_Light]

I don't get nothing... because I don't click in Pop-Ups! xD

 

[|-xA-|]

k, I went to go sleep for a while and cousin did something while I was gone. Now I get a ****load of popups and ads. Mostly on NG...

 

[xRyudo]

NoScript + Adblock in Firefox. Get it if you're a Firefox user.

 

[|-xA-|]

Found out what was causing it. And I already had Adblock.

 

[cyric1983]

I just keep getting re-directed to a "Quick Tax" website...

 

[Squall-Leonhart]

WebSanity Internet Marketing & Web Design Blog: Scan website files for embedded iframe virus

 

[PCXL-Fan]

For me kaspersky flags the entire forum - every single page, every single section.

I don't get nothing... because I don't click in Pop-Ups! xD

The similarity is that me koko and nosound.97 all have kaspersky which detects it.

So those without kaspersky many not get the warning.

 

[Squall-Leonhart]

found a online scanner which can check i frames, and it found 2 infections but didn't go into explaining what they were,

 

[PCXL-Fan]

for everyone using noscript addon, iframe content is still accepted by default even if you haven't accepted scripts on a site. You'll have to go into the settings and make it (<iframe>) unaccepted for sites that aren't on the whitelist.

So just installing noscript is not enough.

Smart of the virus writers to send the virus via iframe. Since use of noscript is becoming so widespread, they send it via a method that can bypass noscript by default. Most people would think that noscript protects us enough by default right off the bat if we don't enable scripts on a site, but that isn't the case.

 

[Xtreme2damax]

I don't have a virus scanner, but I presume my PC would be acting funky if I were infected. Right now I have ads unblocked due to some testing on my own site, perhaps Firefox and Windows 7 with UAC has saved my hide for now.

 

[70597]

Kaspersky also reports virii on every page for me. Any CG responses? >.>