Personal computing discussed

Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popups?

Moderators: renee, David, mac_h8r1, Nelliesboo

Post Reply
 
computron9000
Minister of Gerbil Affairs
Topic Author
Posts: 2420
Joined: Sun Oct 16, 2005 7:21 pm

Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popups?

Wed Jun 13, 2012 9:30 am

I had a client with a Droid phone come to me that said they had random popups from mobgifts . org (DO NOT GO THERE).

Seems like some sort of mobile-device virus or something. Google searching reveals many people in the last 24-48 hours or so with this issue.

Any ideas?

Thanks for any help.

Examples:

Looks like this, but Mobgifts(dot)org: http://i.imgur.com/kAHtm.jpg

http://www.computersupportforums.com/sh ... ?tid=84427
Last edited by computron9000 on Wed Jun 13, 2012 9:40 am, edited 1 time in total.
Top
 
DancinJack
Maximum Gerbil
Posts: 4494
Joined: Sat Nov 25, 2006 3:21 pm
Location: Kansas

Re: Possible Virus: mobgifts . org (DO NOT GO THERE) popups?

Wed Jun 13, 2012 9:38 am

It infuriates me when people get a virus/whatever from things like this. Take a second, think, and don't click on that crap.
i7 6700K - Z170 - 16GiB DDR4 - GTX 1080 - 512GB SSD - 256GB SSD - 500GB SSD - 3TB HDD- 27" IPS G-sync - Win10 Pro x64 - Ubuntu/Mint x64 :: 2015 13" rMBP Sierra :: Canon EOS 80D/Sony RX100
Top
 
computron9000
Minister of Gerbil Affairs
Topic Author
Posts: 2420
Joined: Sun Oct 16, 2005 7:21 pm

Re: Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popup

Wed Jun 13, 2012 9:41 am

I agree. The question is how to remove it or what it is precisely. The Droid in my possession is stock, just your standard apps (weather, news, Google stuff, etc.). I've killed all apps and removed everything suspicious and will still get notifications from mobgifts(dot)org popping up now and again using the default browser. I also installed two anti-virus utilities w/ full-feature trials to see if they would catch it. Nope.
Last edited by computron9000 on Wed Jun 13, 2012 9:46 am, edited 1 time in total.
Top
 
derFunkenstein
Gerbil God
Posts: 25427
Joined: Fri Feb 21, 2003 9:13 pm
Location: Comin' to you directly from the Mothership

Re: Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popup

Wed Jun 13, 2012 9:43 am

well if it's an Android phone there are free mobile AV programs like AVG on the Google Play store - have you tried anything with those?

If you can't remove it on its own, and assuming the phone hasn't been rooted, you should be able to kill it (and everything else) by using the Factory Data Reset option in the Privacy settings. It'll wipe your SD card and any user-accessible partitions.

If the phone has been rooted, it's time to flash a new ROM and start from scratch.
I do not understand what I do. For what I want to do I do not do, but what I hate I do.
Twittering away the day at @TVsBen
Top
 
DancinJack
Maximum Gerbil
Posts: 4494
Joined: Sat Nov 25, 2006 3:21 pm
Location: Kansas

Re: Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popup

Wed Jun 13, 2012 9:44 am

computron9000 wrote:
I agree. The question is how to remove it or what it is precisely.


I don't know all the details obviously, but I'd say back up the info to a PC/Google Apps and do a factory reset on the phone. Shouldn't take more than 30 minutes to get everything back to how it was before all this started happening.
i7 6700K - Z170 - 16GiB DDR4 - GTX 1080 - 512GB SSD - 256GB SSD - 500GB SSD - 3TB HDD- 27" IPS G-sync - Win10 Pro x64 - Ubuntu/Mint x64 :: 2015 13" rMBP Sierra :: Canon EOS 80D/Sony RX100
Top
 
computron9000
Minister of Gerbil Affairs
Topic Author
Posts: 2420
Joined: Sun Oct 16, 2005 7:21 pm

Re: Possible Virus: mobgifts(dot)org (DO NOT GO THERE) popup

Wed Jun 13, 2012 9:49 am

DancinJack wrote:
computron9000 wrote:
I agree. The question is how to remove it or what it is precisely.


I don't know all the details obviously, but I'd say back up the info to a PC/Google Apps and do a factory reset on the phone. Shouldn't take more than 30 minutes to get everything back to how it was before all this started happening.


I agree, but clearly there's some sort of problem out there in the wild. I'd rather see the larger issue stomped out rather than just wipe the phone (which I can do).

All the Google searches I'm getting are less than a day or two old on this infection.

Edit: Here's another, and another, less than 6 hours old:

http://boards.kusports.com/printthread. ... &type=post
https://twitter.com/jamesparton/statuse ... 1288240129
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest
GZIP: On