Notes from a Medium-Sized Island [entries|archive|friends|userinfo]

[ website | My Website ]
[ userinfo | livejournal userinfo ]
[ archive | journal archive ]

[Dec. 22nd, 2008|11:05 pm]

Fuck to: Windows trojans, "Antivirus 2009".
Thanks to: Malwarebytes. I'm usually happy with Adaware but it is a longer download and seemed to want to have more time on the network to download all its frickin' updates and stuff.

Fuck, man. I thought I was all up-to-date with updates to both Windows generally and firefox in particular. Not sure exactly where I got it from, but things started behaving suspicious just as pandora switched ads. Maybe one of their video files or something was compromised? I'm to understand there's still the occasional video codec overflow floating around...

From: drquuxum
2008-12-23 12:27 pm (UTC)
I love how the Windows Trojans will crank up a pop-up window and re-map the "X" to "Download this auto-spammer".
(Reply) (Thread)
[User Picture]From: jcreed
2008-12-23 02:44 pm (UTC)
Ohhh maybe that is my downfall. I thought I was being clever by meticulously clicking on the "x" rather than "Cancel" because I assumed they mapped "Cancel" to installation. Thought maybe they do that too and I'm just fucked and should have just killed the browser.

Edited at 2008-12-23 02:44 pm (UTC)
(Reply) (Parent) (Thread)
From: drquuxum
2008-12-23 02:51 pm (UTC)
Somewhere out there, there must exist something like "xkill" for Windows.
(Reply) (Parent) (Thread)
[User Picture]From: gwillen
2008-12-23 05:55 pm (UTC)
I have honestly completely given up on Windows at this point. I no longer support it even for family members. Linux has gotten to the point (and Windows has fallen to the point) where I'd rather have them install Ubuntu than try to support them on Windows.
(Reply) (Thread)
[User Picture]From: combinator
2008-12-26 02:13 am (UTC)
I got this same trojan (or maybe it was the 2008 version). I think it's the first time I've ever installed a trojan. I also used Malwarebytes. My uncle got the trojan too and I uninstalled it. I think these guys must be exploiting the machine. I think I saw the program install. A cmd.exe suddenly popped up and did not appear to be triggered by any action I took. I'd just booted up my computer somewhat recently and went to some video link on reddit. But nobody ever commented that the link contained an exploit. I forgot where the video was hosted (not Youtube), but there was nothing suspicious or sketchy about it.
(Reply) (Thread)