URGENT FOR MODERATORS, MEMBERS, and SCOUTER-TERRY

[scoutldr 691]

Still happening...

[ScoutNut 147]

Thought it was gone for a while last night, but it is back this morning.

 

This is one stubborn little nasty piece of business.

[evmori 11]

Yup it's back!

 

Look at the end of the sub-folder. There is a little extra there!

 

Ed Mori

1 Peter 4:10

[scouter-mom 10]

Double drat.

 

I did not see any signs of this virus yesterday, but it is definately back today.

 

Help!

[moxieman 11]

Either this thing is very well hidden or I have extremely good anti-virus/filters because I haven't had any of the problems that others are reporting.

[ScoutNut 147]

Here we go again!

[evmori 11]

Yup it's back!

[John-in-KC 311]

Yep. Time is 840AM Monday 3 September 2007

 

www dot xvgaoke dot cn slash 1 dot htm is the page which tries to open.

 

I'm starting to be glad I don't log in, rather just invoke name and password for each post.

[scoutldr 691]

Me too! I had chores to do today anyway.

[John-in-KC 311]

Yep, saw it again in the activity bar

 

Time is 804PM CDT Wednesday the 5th.

[Ohio_Scouter 10]

Hi Gang,

 

Time is 0600 AM, Thursday, 6 Sep 2007. Virus still seems to be active.

 

www dot xvgaoke dot cn slash 1 dot htm is the page which tries to open. My antivirus software says: "You have opened a dangerous website. Close your browser and ........"

 

Hope this helps you isolate and neutralize the culprit.

 

Thanks!

 

[Joni4TA 10]

I wondered what that was!!!!

That whole http://www.xvgaoke... thing is happening to me too!

[GaHillBilly 10]

It might be worth trying Firefox (www.firefox.com) -- I've logged in multiple times in the past week, and never seen that issue. Most browser exploits target IE, both because it's the #1 browser, and because FF tends to be more secure and resistant to such problems.

 

This does not, of course, address the problem of a server hack or exploit, allowing the presence of some code redirecting you to the Chinese hacker site.

 

For what it's worth, the entire login process has components that are written in an IE-only manner. I actually had to scan through page HTML source code, on the new registration page, in order find the URL for the page that was the next step. The 'next' button (or whatever button it was) didn't work in FF, but I was able to register OK, once I found the page URL's and entered them manually.

 

I don't know if this IE-only code is related to the browser exploit, or not.

 

GaHillBilly

[Ohio_Scouter 10]

Hi Guys,

 

Got the following error message when trying to post a reply in another area this evening:

 

Microsoft OLE DB Provider for ODBC Drivers error ''80040e14''

 

[Microsoft][ODBC SQL Server Driver]

Line 1: Incorrect syntax near ''9''. 

 

/forums/forum_library.asp, line 261

 

Hope this means something to you? Thanks!

[scoutldr 691]

ME too...also getting that popup again.