I beleive I may have run into a malware situation.
I am running Windows 7 and use Google Chrome.
When I went to log in to various sites: Facebook, Yahoo, Twitter - pretty much anything with a login - I received this message:
The site's security certificate is signed using a weak signature algorithm!
You attempted to reach login.yahoo.com, but the server presented a certificate signed using a weak signature algorithm. This means that the security credentials the server presented could have been forged, and the server may not be the server you expected (you may be communicating with an attacker).
You should not proceed, especially if you have never seen this warning before for this site.
Proceed anyway Back to safety
Help me understand
When you connect to a secure website, the server hosting that site presents your browser with something called a "certificate" to verify its identity. This certificate contains identity information, such as the address of the website, which is verified by a third party that your computer trusts. By checking that the address in the certificate matches the address of the website, it is possible to verify that you are securely communicating with the website you intended, and not a third party (such as an attacker on your network).
In this case, the server certificate or an intermediate CA certificate presented to your browser is signed using a weak signature algorithm such as RSA-MD2. Recent research by computer scientists showed the signature algorithm is weaker than previously believed, and the signature algorithm is rarely used by trustworthy websites today. This certificate could have been forged.
It seems to only affect Chrome - the only other browser I have is IE, which seems to work fine.
Any thoughts? If I've left out any vital information, please forgive me.
EDIT: I ran Malware Bytes and it returned a Trojan.Dropper.BCMiner - I did the removal, but it appears it did not go away after the reboot.
Edited by jingram2b, 31 July 2012 - 04:26 PM.