Aces High Bulletin Board
General Forums => Hardware and Software => Topic started by: Speed55 on August 13, 2008, 12:59:21 PM
-
I don't know the name of it, but i know how it works.
I'm pretty sure this is the one my brother got on his computer a few months back, and a friend of mine got a few weeks ago.
I was searching google for an image and a pop up appeared stating something along the lines of your computer needs to be scanned for virus protection.. It doesn't matter if you press accept, or cancel, as soon as you left click on that image, you will get the virus.
As soon as it's installed, you get a biohazard background picture, warning of a virus. It shuts down the ability to open task manager, and other commands, and attaches to a bunch of files on your computer. It constantly opens internet explorer, linking to download pages for virus software.
I tried right clicking on the task bar, but you can't close it from there. I had to click - start - shut down -restart.
I don't know if this is old news, but it's a real PITA to remove, so this is a heads up on how to avoid it.
-
I spotted that one one day too. I closed it from task manager right away.
-
Browsing with IE is always a bad idea.
-
Probably.. but i blame you for almost getting me into trouble, i was trying to find more pictures of that finnish babe. :lol
-
Finland is pretty close to Russia, and I never visit sites that are something like www.internet.ru
:P
-
Thanks, i'll stay away from the .ru sites
-
Well, typically you press the "X" of the browser, not the ad. :aok
-
Well, typically you press the "X" of the browser, not the ad. :aok
They will sometimes open without a full browser. IIRC that's why I went into task manager to close this one. Actually, I might have right clicked it in the task bar to close it. Still, the reason is the same.
-
Ah. Forgot about those. In that case Alt + F4 comes in handy.
-
In your MSIE internet options go in and UNCHECK the ability for scripts or windows to alter/remove the frame on their window, or to move the browswer position, or to do any number of stuff it shouldn't. Take the time to really sit and look at those options and think "Why the heck would any NON-malicious page/application want to use this?" then disable that function.
-
I had to remove that thing from my fathers comp a few months ago, have to start in safe mode and then hunt for and delete all the pieces of that sucker. Took a few hours, but finally got them all.
Note to self, ask dad what picture he was looking for.
-
No matter what you do to IE it will always be inherently unsafe due to its design. I wouldn't touch it with a 10-foot long pole.
-
I read an article once from a person who was hired to locate security leaks in a company's network system. He had four days to crack into the network and see what type of access he could gain to the company's files.
In the article he mentions, "So, now it was time to use my favorite cracking friend, Internet Explorer." He went on to explain how it could execute commands on remote servers causing them to open malicious files etc... Anyways, my point is that IE is, and will always be un-secure.
-
In default configurations, sure. However, if you take the time to actually go through the pages after pages of settings, you can seriously button it up and still maintain respectable functionality, as I have.
It just takes effort, so much like the Ki84, nobody is going to spend 5 minutes to figure it out and instead are going to call it crap.
Don't get me wrong, I'm not a fanboy, I just think that lately it gets a bad rap.
-
In the article he mentions, "So, now it was time to use my favorite cracking friend, Internet Explorer." He went on to explain how it could execute commands on remote servers causing them to open malicious files etc... Anyways, my point is that IE is, and will always be un-secure.
Ummm re-read what you just wrote ;)
-
Why?
I said nothing wrong. I even went as far to mention that he was hired by a company to do what I mentioned for the purpose of network security. All I was mentioning is if IE was used to help gain malicious access to a network, then why are we using it to browse the web?
-
Why?
I said nothing wrong. I even went as far to mention that he was hired by a company to do what I mentioned for the purpose of network security. All I was mentioning is if IE was used to help gain malicious access to a network, then why are we using it to browse the web?
So if a remote server is compromised it is IE's fault?
Let me give you a clue where you are going wrong, what web server application were the remote servers running?
-
IE sucks...period, however there are equal issues on the other end as well. This is further complicated by the fact that the entire DNS structure is vulnerable to posion cache attacks. This has been out there for awhile but generally unpublicized outside of blackhat circles. Basically you can hack anything from a single user user to a major corporation without even penetrating a single machine. This man in the middle strategy was usded at the DEFCON last week to hack the entire proceeding and not a SINGLE attendent picked up on it at all. So while 10,000 hackers were banging on each other every one of them was being hacked and couldnt pick up on it.
-
I had that same problem yesterday whenever I tried to open up a couple of directories in sequence, would have that spyware message and it did not matter whether I said yes or no, IE would open up to some site(cancelled it immediately).Had been trying to download a compilor without using torrent in its various pieces and then...Ja blush blush....the crack to make it work. the crack was a what caused the stuff to happen. so used note book to look at all the gibberish in the crack and found source code in it? It seemed to do stuff to the registry and also looked like adware.
Anyway, tried to restore registry using last known good configuration on startup...did not work. What worked was that program system mechanic which I do legally own and using its restore registry function.(i had upgraded programs since its last registry backup but they all still work thankfully)
-
humble that security hole has already been addressed. Of course there are many companies who do not pay any attention to CERT and that always will regret it.
This was not just a Windows issue. If you want to know more, click it. (http://www.kb.cert.org/vuls/id/800113)
You will find the problem is easily avoided.