|
02-02-2015, 10:03 PM | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
softwareupdaterlp MALWARE
Ok, there is a nasty piece of malware floating around the web so I thought I'd post the solution to the problem here.
This malware may be keying off certain ads on CP but the ads themselves shouldn't be an issue. Google is claiming to have fixed the previous ad hijack/redirect issue that we saw. OK, to fix this for PC check this... http://malwaretips.com/blogs/remove-...rlp-com-virus/ For Mac check this... https://discussions.apple.com/thread/6802324 Please post here if the problem gets resolved or if it persists. If you have never had the problem (I have yet to see it) then feel free to ignore this. |
Posts: 19,495
|
02-03-2015, 05:12 PM | #16 |
MVP
Join Date: Jan 2007
Location: Missouri
Casino cash: $1942250
|
My Mac just started redirecting again via Safari and this thread 3 times in a row after force quitting each time.
These redirects didn't appear to be softwareupdater related, but the adds at the bottom of the page have been dominated by malware and virus related advertisements. Seems connected in this case. The address bar image is hard to read, but I didn't see a softwareuploader connection in it. |
Posts: 8,199
|
02-03-2015, 05:42 PM | #17 | |
Supporter
Join Date: Mar 2003
Casino cash: $3117626
|
Quote:
|
|
Posts: 16,314
|
02-03-2015, 06:09 PM | #18 | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
Quote:
|
|
Posts: 19,495
|
02-03-2015, 06:36 PM | #19 | |
MVP
Join Date: Jan 2007
Location: Missouri
Casino cash: $1942250
|
Quote:
|
|
Posts: 8,199
|
02-03-2015, 06:56 PM | #20 | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
Quote:
|
|
Posts: 19,495
|
02-03-2015, 07:17 PM | #21 |
Greatest QB Duo of 2015
Join Date: Mar 2010
Casino cash: $2591133
|
This had been happening to me the past few days. Uninstalled Chrome and downloaded Malwarebytes. Everything's been OK since.
|
Posts: 17,070
|
02-03-2015, 08:29 PM | #22 | |
Ain't no relax!
Join Date: Sep 2005
Casino cash: $2298919
|
Quote:
I've been in the middle of deploying new machines at work. And in doing so, I tend to browse CP on whatever machine I happen to be working on in the field. I've noticed the issue on brand new retail OS installs. OS X. Chrome/Safari/Firefox. All these machines I installed the OS myself, and know exactly what's been installed. Also running MS Endpoint virus client, OS X malware detection, etc. I have a very advanced knowledge of OS X and all possible locations for running apps, and I can tell you this isn't OS X malware/adware or browser extensions. I'm very familiar with the removal suggestions in the links provided, and this particular issue isn't part of the group of malware/adware that app looks for. Somehow it's being triggered by the ads displayed. That said, I'd be happy to leverage any quick troubleshooting on OS X/Win 7 vanilla setups if you have anything specific to test. I generally have both vanilla OS X and Windows installs handy, with or without Flash/Java/adblock/etc. Let me know if I can do anything to help.
__________________
|
|
Posts: 47,491
|
02-03-2015, 08:47 PM | #23 |
Veteran
Join Date: Nov 2011
Location: Villa Straylight
Casino cash: $10005610
|
Is there another ad network that is a viable option? I feel like the only time I see posts like this on any site I visit is here.
I know you've got to pay the bills but damn. Its harming your users and even when it works properly the ads just torture Safari on iOS. |
Posts: 2,367
|
02-03-2015, 08:48 PM | #24 | |
Kind of a mod
Join Date: Aug 2005
Location: Donkey Land
Casino cash: $2046899
|
Quote:
|
|
Posts: 51,757
|
02-03-2015, 09:18 PM | #25 | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
Quote:
It's frustrating as hell because I have yet to see either problem myself except when it first started I could replicate it by going to our ad panel and reviewing ads. There I found offending ads and blocked them from being served. I have continued to do so and haven't seen the issue lately. What would help is if we could determine exactly which ones are occurring NOW (after Google claims to have fixed it) on clean machines. |
|
Posts: 19,495
|
02-03-2015, 09:19 PM | #26 | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
Quote:
|
|
Posts: 19,495
|
02-03-2015, 09:26 PM | #27 |
Ain't no relax!
Join Date: Sep 2005
Casino cash: $2298919
|
The fact that the same exact redirect happens in iOS would rule out malware and point to adware redirect.
__________________
|
Posts: 47,491
|
02-03-2015, 09:30 PM | #28 | |
Kind of a mod
Join Date: Aug 2005
Location: Donkey Land
Casino cash: $2046899
|
Quote:
I suppose conceivably it could be the same site - the redirect gets people fooled into installing it, and then it installs other adware that forces pop ups later. |
|
Posts: 51,757
|
02-03-2015, 09:56 PM | #29 |
In Search of a Life
Join Date: Feb 2004
Casino cash: $1862905
|
FWIW I ran malwares and haven't had any issues since. That was around 5 tonight.
__________________
http://give.somo.org/site/TR/Plunge/...nal&fr_id=1244 ^^^^^^^^^^ Click here to help with a special cause. Please help me out |
Posts: 36,007
|
02-03-2015, 10:05 PM | #30 | |
Administrator
Join Date: Aug 2000
Location: Austin
Casino cash: $2689112
|
Quote:
Here is another weird thing... I have been doing iOS devel lately so the last 2 months I have primarily been accessing CP from my Mac... and haven't seen the issue once. Just bizarre. |
|
Posts: 19,495
|
|
|