Has Toontastic been hacked?

[Dave]

When I go on there I see my browser loading something from evesteam.net, which Symantec tells me has threats on it: https://safeweb.norton.com/report/show?name=evesteam.net

 

Just then when I was on the forum index, Firefox told me I was missing Quicktime to display the page properly, then when I clicked on a forum I got some address at evestream.net and Adobe Acrobat Reader started up. Firefox then froze.

 

Wondering if this has anything to do with all those spammers they've had lately?

[Parky]

When I go on there I see my browser loading something from evesteam.net, which Symantec tells me has threats on it: https://safeweb.norton.com/report/show?name=evesteam.net

 

Just then when I was on the forum index, Firefox told me I was missing Quicktime to display the page properly, then when I clicked on a forum I got some address at evestream.net and Adobe Acrobat Reader started up. Firefox then froze.

 

Wondering if this has anything to do with all those spammers they've had lately?

 

I reported the threat yesterday. Webshield said it was the exploit25 malware or summink.

[Guest Mucky01]

Safari stopped log on because of Malware on the site. Won’t log on at all now.

[NE6]

Seems slow to me.

[Yorkie]

This is war tactics, isn't it. Just a scheme to stop anyone from going onto the site and staying here.

 

Nice propaganda; you're the Goebbels of N-O. It's worked on me anyway.

[matta]

Avast found trojan when i entered site.

 

 

woho

[Syrette]

Did you do it, Dave?

[Dave]

Did you do it, Dave?

 

[Liam Liam Liam O]

Did you do it, Dave?

 

 

[M4]

http://www.toontastic.net/board/index.php?showtopic=23081

 

some weird shit going on apparently.

[Guest BooBoo]

Bloody hell, i thought Toontastic shut down a few years back.

[Pilko]

The server just couldn't handle any more of NE5's Shepherd/Ashley shite.

 

Watch out, we're next.

[NE5]

When I go on there I see my browser loading something from evesteam.net, which Symantec tells me has threats on it: https://safeweb.norton.com/report/show?name=evesteam.net

 

Just then when I was on the forum index, Firefox told me I was missing Quicktime to display the page properly, then when I clicked on a forum I got some address at evestream.net and Adobe Acrobat Reader started up. Firefox then froze.

 

Wondering if this has anything to do with all those spammers they've had lately?

 

balls.......I got that too [evesteam], and it tried to start windows installer so I stopped it. Asked daughter what sites she had been on 

 

Apology to her is in order I reckon.

 

Do you have any more info Dave ?

 

 

[Guest LucaAltieri]

Bloody hell, i thought Toontastic shut down a few years back.

 

Nah, I just stopped posting.

[Guest Craig]

All sorted now folks....

[Dave]

Good stuff.

 

What was it?

[Guest Craig]

Dunno for certain Dave. Think it was associated, like you said, to the spam we've been getting. I suspect someone has (unwisely) clicked one of the links in the spam posts we've been getting before we've had chance to delete it and it's sent a worm away through the site.

 

Basically what it had done is appended the URL in question (evesteam) to the header/footer wrapper in the board skins. All I had to do was delete the link and hey presto - all OK.

 

Took me ages (and Ant's help) to find the fucker though....

[Dave]

We had something hiding in our code recently that we think had been put there by hacks to the Wordpress part of the site (the main site). Had to do the same thing, just find and delete it.

 

Make sure all your forum software and any mods are fully up to date, it amazed me when I found out how shite an outdated version of Wordpress could be.

[GM]

What are the risks to posters' computers/PDAs etc, Dave? Have we been infected with an internet version of the bad AIDS?

 

[Dave]

What are the risks to posters' computers/PDAs etc, Dave? Have we been infected with an internet version of the bad AIDS?

 

 

On here it was just a bit of code that make some porno links appear for some.

 

On Toontastic I don't think it was anything too dodgy, and any decent web shield should have stopped it anyway.

[Guest Craig]

The toontastic one was a redundant link. No threat, just fucking annoying and set off all the zone alarms and web shields.

[Shearergol]

The toontastic one was a redundant link. No threat, just fucking annoying and set off all the zone alarms and web shields.

 

Morning fella. Get my new number?

[Guest Craig]

Morning chap - I did indeed - think it's still in a text message on my phone somewhere....

[Dave]

When I go on there I see my browser loading something from evesteam.net, which Symantec tells me has threats on it: https://safeweb.norton.com/report/show?name=evesteam.net

 

Just then when I was on the forum index, Firefox told me I was missing Quicktime to display the page properly, then when I clicked on a forum I got some address at evestream.net and Adobe Acrobat Reader started up. Firefox then froze.

 

Wondering if this has anything to do with all those spammers they've had lately?

 

Just happened again.

[GM]

When I go on there I see my browser loading something from evesteam.net, which Symantec tells me has threats on it: https://safeweb.norton.com/report/show?name=evesteam.net

 

Just then when I was on the forum index, Firefox told me I was missing Quicktime to display the page properly, then when I clicked on a forum I got some address at evestream.net and Adobe Acrobat Reader started up. Firefox then froze.

 

Wondering if this has anything to do with all those spammers they've had lately?

 

Just happened again.

 

Gloater.