Google Search PhysicsForums Virus Attack

Click For Summary

Discussion Overview

The discussion revolves around a reported incident where a user experienced a severe malware attack after clicking a link to Physics Forums from a Google search. Participants explore the potential causes of the incident, the nature of the malware, and the implications for web safety.

Discussion Character

  • Debate/contested
  • Technical explanation
  • Exploratory

Main Points Raised

  • One user describes experiencing a malware attack after clicking a link to Physics Forums, leading to numerous pop-ups and installations.
  • Another participant suggests that the issue may stem from pre-existing spyware on the user's computer rather than the forum link itself.
  • Some participants express skepticism about the link being the source of the malware, proposing alternative scenarios such as a pop-under ad being responsible.
  • A user shares their experience of encountering multiple pop-ups and adware after clicking the provided link, indicating a belief that the link is problematic.
  • Recommendations are made regarding browser settings, such as blocking third-party cookies and using ad-blockers to prevent similar issues in the future.
  • Some participants note their own experiences with malware and adware, suggesting that such issues are common across various websites.
  • One participant highlights the advantages of using alternative browsers like Mozilla Firefox to avoid these problems.
  • Another user clarifies that they are not seeking advice on prevention but rather supporting the concerns raised about the link's safety.

Areas of Agreement / Disagreement

Participants do not reach a consensus on the source of the malware attack. While some believe it is linked to the forum, others argue that it is likely due to pre-existing conditions on the user's computer or other external factors.

Contextual Notes

There are unresolved assumptions regarding the nature of the malware and the specific link that caused the issue. The discussion reflects varying levels of technical knowledge and differing experiences with web safety.

Who May Find This Useful

This discussion may be of interest to users concerned about web security, those experiencing similar issues with malware, and individuals looking for insights into browser safety practices.

(Q)
Messages
147
Reaction score
0
While searching a topic on Google, I ran across a link that lead to Physicsforums so I clicked the link.

The next thing I knew, my computer was under massive attack. Viruses were being delivered as anti-virus warning windows began popping up. Spybots and Malware were being delivered - found over 60 in one pass. Programs of some sort were being installed. My browser opening page was highjacked.

So, what happened? Why did a link leading to this forum get re-directed?
 
Computer science news on Phys.org
Do you by any chance still have the original link from Google? I would email everything you have to chroot or Greg, just in case this is a problem with this site. I doubt it, though, and you can probably attribute what happened to spyware that was already installed on your computer.
 
that must have been scary
 
DarkAnt said:
that must have been scary
No, not scary at all, Web developers know well what problems they might be...
 
(Q) said:
While searching a topic on Google, I ran across a link that lead to Physicsforums so I clicked the link.

The next thing I knew, my computer was under massive attack. Viruses were being delivered as anti-virus warning windows began popping up. Spybots and Malware were being delivered - found over 60 in one pass. Programs of some sort were being installed. My browser opening page was highjacked.

So, what happened? Why did a link leading to this forum get re-directed?
Give me that link, I want to know how dangerous it really is..
 
Give me the link too. I'll believe it when I see it. The more likely scenario being that you went to another, it openned a pop-under that you didn't see. Then you happened to go to click on a link to physicsforums when the pop-under initiated its attack against your computer.
 
(Q) said:
I went back in my history folder and found the link below:

www.physicsforums.com/archive/t-8466
Why didn't I see anything similar to what you said ? (-.-)
I guess those viruses have found out other sources, so they have gone chase them, and left this thread alone, (there is also possibility that they are afraid of Pattielli--(:redface:)) uhmm, it is internet though, there will never be anything so called statability, if viruses saw something strange/ irritative, they will choose other ways to run immediately, I addmit it is hard to catch them, and much harder if they are already well-trained (well-made) ones--again internet, it is internet ! yeah -- yeah --yeah!
 
You must have gotten it for somewhere else. Even though I'm in linux have popup blocking, I would have seen a little icon telling me it blocked something.
 
  • #10
I'm with (Q) on this matter. Here's what I did;

1) Deleted all TIF files
2) Ran AdAware and removed all traces.
3) Clicked on that link provided by (Q).

Two popup windows and WMP opened.
Popup 1: Web Page Dialog for Westwood College Online.
Popup 2: Microsoft Internet Explorer for Gambling.com

So, I closed the player and killed the two popups, then hit the refresh button on my browser window;

Three popups, WMP, and an Install program dialog box appeared. Killed all instances and ran AdAware again. Seven instances were detected, all cookies. Here's the list;

@advertising[1].txt
@casalemedia[1].txt
@centrport[2].txt
@doubleclick[1].txt
@mediaplex[1].txt
@servedby.advertising[1].txt
@z1.adserver[1].txt

Also, in checking the TIF folder I found the following executables, two of which I'm fairly certain are adware related from having dealt with them in the past;

np1
np2
si1
si2
install026

In short, I have every reason to believe that link is buggy.
 
  • #11
I used to visit codeguru where I got much more than these things, and whenever i run adware, i see them even in my registry.
By the way, after glancing at what you posted, I would highly recommend not to accept third-party cookies, then turn on the ad-block function available in your browser if that is not explorer. But if it is, you should google and download an ads-blocker for free, I am sorry i don't remember its URL but i am sure there are a lot!
If you like or as a careful person, you should check the internet options and check "ask before accepting cookies". If there is something that you shouldn't put your trust on, just click NO and everything would be fine !

Hope that can be of help!
 
Last edited:
  • #12
It's a shame I never have to worry about these problems. I almost feel bad for you windows users. :smile: :smile: :smile:
 
  • #14
Thanks all, but I'm not asking how to avoid such things, merely supporting what (Q) said as being accurate and alerting anyone who may be interested in looking into this matter (Greg?).
 

Similar threads

How does Google Search Redirect Virus work? And how to get rid of it?
  • · Replies 23 ·
Replies
23
Views
52K
Calculators Virus Removal, New viruses acting as anti-virus scanners
  • · Replies 17 ·
Replies
17
Views
16K
Hantavirus outbreak aboard ship MV Hondius; virus present in Argentina
  • · Replies 20 ·
Replies
20
Views
3K
Current and Future AI Threats to Humanity and the Human Response
  • · Replies 10 ·
Replies
10
Views
6K
Need help troubleshooting problem with Google Chrome on Windows 7
  • · Replies 12 ·
Replies
12
Views
5K
Is uStart.org a Safe Alternative to Yahoo or a Potential Virus Threat?
  • · Replies 2 ·
Replies
2
Views
2K
Online videos may be conduits for viruses
  • · Replies 1 ·
Replies
1
Views
5K
Anonimity: Time to take the internet back.
  • · Replies 3 ·
Replies
3
Views
4K
Can I Post Links to Google Image Searches?
  • · Replies 4 ·
Replies
4
Views
3K
Getting Rid of Adware: My Big Problem
  • · Replies 6 ·
Replies
6
Views
3K