Drive by virus
Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Drive by virus

  1. #1

    Drive by virus

    I'm always very cautious about where I go on the internet. THe local paper has an online version, and they were soliciting Christmas songs from local choirs, orchestras, bands and musicians. My wife suggested I submit a Christmas song I wrote and recoded last year, so I did. They asked for a bio to post with my song as they decided to use it, and it was then I noticed that the background photo was gone from my Myspace page where all my music is. So with my daughters help I went searching for places to find new BB codes. Found a cool photo from what looked like a legit place, copied the code, and pasted it in.

    Right about then, all hell broke loose. 32 infections and it took over my AVS security system which has been fail proof for years. It is a nasty bugger. What its doing is soliciting a renewal fee for my security software through a fake page. I'm sure that many less savvy people give away all their credit card and personal information with this scam. They asked for everything except my car keys and a date with my wife. I'm quite sure when some unsuspecting person gives out than info their identity gets stolen their life is ruined and they STILL have the virus.

    Took me three guesses to remember my password to get on here using the wifes computer, which is networked to mine. Amazing hers isnt infected too. My guy who built all 3 machines here said bring it over and he will try to save whatever he can off the machine tomorrow. He said these new viruses that take over your security are called drive by's and difficult to fix.

    Soooo. Watch where you go on the web and write down any address you click on so you can warn people and report it as a hostile site. I didn't since my software ALWAYS caught whatever was thrown at it.

    I'd love to draw a bead on these bastids.
    You can run... but you'll just die tired. 3%

  2.   
  3. #2
    There is a lot of these out there and aggravating as a brady bunch petitioner. I have found the best protection is Microsoft Security Essentials and Malwarebyte's Anti-Malware. The MSSE running is probably the best behaved AV that I have found and does the best job of finding the stuff. However it cannot get rid of all of it especially the one that you describe. The steps that I use for most of these are:

    1. Be sure that MSSE and MBAM is up to date. MSSE will update daily if you will let it and MBAM can be a weekly thing but just update it before you run it.

    2. Once MSSE has stopped the thing (which it will usually do but doesn't completely get rid of it so iyt returns) reboot your PC in safe mode.

    3. Run MBAM and let it find and clean anything it can.

    4. Now you probably can't get on the Internet so you have to check the settings in your browser. Open your IE Browser and go to Tools=>Internet Options=>Connections=>Lan Settings and see if there is a check in Use a Proxy Server. Take that check out and you should be back in business.

    Step 4 is what causes problems as even if you get rid of all the viruses and mal-ware you still can't get on the Internet until you change that.

    Some of these seem to be embedded in ads that are displayed on legitimate sites (including msnbc.com) so you can't necessarily avoid them by staying away from funky sites.

    Just be sure to have some kind of AV protection running and kept up-to-date. If it is over 24 hours olf then it is out of date.

    I agree that whoever writes and distributes these things would make great targets for the next machine gun demo.

  4. #3
    Join Date
    Aug 2010
    Location
    South of Chicago
    Posts
    155
    thats why i read every code i use... and i dont use myspace anymore... facebook is where its at..
    "Loyalty to the country always. Loyalty to the government when it deserves it."
    "You have enemies? Good. That means you've stood up for something, sometime in your life." (Winston Churchill).

  5. #4
    Join Date
    Mar 2009
    Location
    Indiana
    Posts
    993
    That's why I use Linux and the Firefox plugins AdBlock Plus and Request Policy
    When they "Nudge. Shove. Shoot.",
    Don't retreat. Just reload.

  6. #5
    Join Date
    Feb 2010
    Location
    Laurinburg NC
    Posts
    163
    Quote Originally Posted by CathyInBlue View Post
    That's why I use Linux and the Firefox plugins AdBlock Plus and Request Policy
    Add noscript to the plugins. I don't even bother with av software, its about worthless unless the virus us known. Common sense goes a lot further.
    For me, it is far better to grasp the Universe as it really is than to persist in delusion, however satisfying and reassuring. - Carl Sagan .When you understand why you dismiss all the other possible gods, you will understand why I dismiss yours - Stephen Roberts

  7. #6
    Quote Originally Posted by sFe View Post
    Add noscript to the plugins. I don't even bother with av software, its about worthless unless the virus us known. Common sense goes a lot further.
    Do not get lulled into a false sense of security. I am the IT manager for a college I have seen viruses attack from every point possible and common sense is helpful but no guarantee at all. Linux is less prone due to the number of systems right now as it is not as profitable as attacking Windows. Macs the same way but there are viruses out there that affect both Mac and Linux as well as cell phone OS's.

    As for a virus having to be known that isn't exactly correct as we are running two devices that can examine code that come through and catch it based on certain appearances whether it is known or not. Once a virus appears in the wild the turnaround time for it to be known and updates available is about 6 hours so that is the reason for updating your configuration at least every 24 hours. Some of hour update every hour.

    On the common sense thing we have pretty much stopped the "virus" problem and really don't hae a problem with that. Our main problem is the malware that people actually download. I have seen a few that unless you are very familiar with how everything with the Internet works you can easily be fooled. Lots of these come through email and is almost impossible to determine the fakes from the real ones. Through my work I can assure you that I have seen more than the average person and more than most people and there is no one simple answer. We have even worked with the FBI on some of them and it even took their specialists several hours to find the code trying to hack the Feds computers.

  8. #7
    Join Date
    Feb 2010
    Location
    Laurinburg NC
    Posts
    163
    I'm not in a false sense of security,though I think people with avs mostly are. i have yet to be infected unintentionally since building my comp in 01, and I run windows. When I said virus I meant any type of malicous code/software. As for the emails its easy to look at domain names of the sender, if that's what you're talkingt about. Most browsers and email programs even do the work for you now and say "you shouldn't be clicking this". Youre looking at code coming through where, and youre searcing for known code signatures correct?
    For me, it is far better to grasp the Universe as it really is than to persist in delusion, however satisfying and reassuring. - Carl Sagan .When you understand why you dismiss all the other possible gods, you will understand why I dismiss yours - Stephen Roberts

  9. #8
    Join Date
    Mar 2009
    Location
    Indiana
    Posts
    993
    I haven't found NoScript to be of a significant benefit for the aggravation it cases. When that changes, I'll install it.

    Just for the sake of the conversation, where do USACarry users place ClamAV in the pantheon of usable/valuable AV packages?
    When they "Nudge. Shove. Shoot.",
    Don't retreat. Just reload.

  10. #9
    The viruses just get nastier and nastier. I have gone through about 4 hard drives on 2 computers in my household this year. I saved one twice, but the bad ones have gotten so deep within my system, that they prevent things from running like system restore, resetting factory settings as well as other ways to make manual removals. The viruses know how to beat out "Medium-Tech" folks like myself.

    I'm afraid to even look in my yahoo spam mailbox!

  11. #10
    Join Date
    Feb 2010
    Location
    Laurinburg NC
    Posts
    163
    Quote Originally Posted by father-of-three View Post
    The viruses just get nastier and nastier. I have gone through about 4 hard drives on 2 computers in my household this year. I saved one twice, but the bad ones have gotten so deep within my system, that they prevent things from running like system restore, resetting factory settings as well as other ways to make manual removals. The viruses know how to beat out "Medium-Tech" folks like myself.

    I'm afraid to even look in my yahoo spam mailbox!
    You could've just formatted the drives..
    For me, it is far better to grasp the Universe as it really is than to persist in delusion, however satisfying and reassuring. - Carl Sagan .When you understand why you dismiss all the other possible gods, you will understand why I dismiss yours - Stephen Roberts

Page 1 of 2 12 LastLast

Similar Threads

  1. Virus detected!!!
    By PaulIcemanMc in forum Site News & Feedback
    Replies: 41
    Last Post: 06-25-2010, 06:03 PM
  2. Pandemic warning thread
    By festus in forum Survival Related
    Replies: 22
    Last Post: 05-29-2009, 09:27 PM
  3. a GUN drive
    By Rht4162 in forum General Firearm Discussion
    Replies: 7
    Last Post: 11-18-2008, 12:34 PM
  4. The pro-barack vote-fraud drive
    By HK4U in forum Politics and News
    Replies: 5
    Last Post: 10-10-2008, 05:31 AM
  5. Hang Up And DRIVE
    By festus in forum Off-Topic
    Replies: 16
    Last Post: 08-18-2008, 07:39 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Quantcast