Spyware Warrior

rombo

Hackers Are pushing it to the limit to infect people on the famous freewebs server. as you all may know freewebs.com allows you to make a website and post your own content and scripts on it.

hackers on freewebs.com go from stealing ip addresses and phishing to exploits Sad

.

Hackers now found a flaw in freewebs.com with iframe.

what this expoit does is:

the hacker embeds to a script to the website and makes the spysheriff website hidden in the backround.

so what they do is lower the frame to 0 so that your browser opens spysheriff(.)(DOT)com( so spysheriff(dot)com is invisible)

into the freewebs.com site and downloads the "nightmare" into your pc.

as you also may know if you vist spysheriff(dot)com your computer is pritty much Screwed with the stealth installs.

if you vist any freewebs your pc is 84% in danger
beacuse a "spysheriff infected freewebs page" is the same thing as vistiting the website

Now As To Ster clear from spysheriff i sugest you put freewebs.com on your restricted list. that way internet/any other browser will stop all scripts on the websites connected to freewebs.com and only allow text to be displayed.

if you have any Questions/comments on this feel free to

,rombo

tripkill201 · Posted: Sun Dec 02, 2007 1:19 pm Post subject:

SpySheriff didn't stealth install when I went directly to its website. Confused

_________________

The stakes are immense, the task colossal, the time is short. But we may hope — we must hope — that man’s own creation, man’s own genius, will not destroy him. -Albert Einstein

suzi · Posted: Sun Dec 02, 2007 1:40 pm Post subject:

No, SpySheriff won't stealth install from it's own website, nor will other rogues like it. But they will be installed with malware and through exploits. I've seen a number of malicious sites at freewebs.com. Many are deliberately set up to distribute malware including rogues like SpySheriff.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. Smile

rombo · Posted: Mon Dec 03, 2007 12:58 pm Post subject:

i know that( need the fact that i went to the website with a mac OS) but there is a button called install now and if you click it you get infected. hackers make the expoit page in the backround of their freewebs.

tripkill201 · Posted: Mon Dec 03, 2007 1:38 pm Post subject:

rombo · Posted: Mon Dec 03, 2007 3:59 pm Post subject:

its on the rouge site and the hacker copys the direct link to that button and iframe launched it leading to a result of a stealth install infecting your pc

rombo · Posted: Mon Dec 03, 2007 4:17 pm Post subject:

here is the picture of the spysheriff website. IF you see the red box that says "Free Scan" thats the exploit if you Click download now that is the trojan.

The hackers copy the shortcut to the free scan button and embed it to their website.

mikey · Posted: Mon Dec 03, 2007 4:37 pm Post subject:

When you visit or worse create content on a FWP, you simply ask for troubles and doing a diservice to anyone coming to see your content. For anyone reading this, please do your users better than to subject them to the garbage on FWPs(Free Webspace Provider).

Those who are well informed enough, will not visit a site when they see that the addy is from a FWP. Since it only costs a few dollars a month to get a real host, no one is really saving much when using crap like FWPs.

This is an old page but the situation has only gotten worse; http://cexx.org/evils.htm

BTW It's quite unlikely that 'hackers' have anything to do with the site/s and subject in question here...as Suzi has already stated. Folks who create and propagate malware are sleaze but not 'hackers'. You might want to learn the lingo instead of disagreeing with folks who actually know something.
_________________
-
W2K/2K3/XP/2K8/Vista/W7/RHE/DEBIAN/SUSE

Spyware/Adware is NOT freeware, it costs all of us dearly.

Mikey's Stuff

Fiddler and friends...essential web diagnostic, forensic, & development tools.
-

rombo · Posted: Mon Dec 03, 2007 4:45 pm Post subject:

thank you for that statment. but i am only leting people know about the danger and new danger that they could get into by just going on a fwp. and for ex if their friend said to check out their site on freewebs then at least they are aware of what could happen to their Pc. plus in my statement i am leting people know how block out all the exploits on the page.

So basicly i leting people know that if they vist a fwp they could get infected with spysheriff

and yes suzi was helpful beacuse i never went to spysheriff(d0t)com on a windows pc.

tripkill201 · Posted: Mon Dec 03, 2007 7:14 pm Post subject:

rombo · Posted: Mon Dec 03, 2007 7:21 pm Post subject:

yeah but, thanks for your concern