Trojan virus talk - posts split from Roundtable (One Way to Kill your Career)

Status
Not open for further replies.

Jamesaritchie

Super Member
Registered
Joined
Feb 13, 2005
Messages
27,863
Reaction score
2,313
I can't guarantee that a trojan is hiding on her website, but I was on her site when Norton popped up a little box telling me that it had successfully blocked an attempted trojan attack on my computer.

That's enough to make me steer clear from now on.
 

Captcha

Banned
Joined
Jan 27, 2010
Messages
4,456
Reaction score
637
I wonder if the Trojan issue is related to one of the ads, and the reason that some of us aren't experiencing it is because we're running AdBlock?

Does that fit with people's experiences? Do any of the people who got the Trojan alert use AdBlock?
 

OneWriter

Ubi dubium ibi libertas
Super Member
Registered
Joined
Feb 13, 2010
Messages
963
Reaction score
899
Location
In a Conundrum
It may also depend on who's using windows and who's on a Mac.
 

Namatu

Lost in mental space.
Super Member
Registered
Joined
Oct 12, 2006
Messages
4,489
Reaction score
968
Location
Someplace else.
I can't guarantee that a trojan is hiding on her website, but I was on her site when Norton popped up a little box telling me that it had successfully blocked an attempted trojan attack on my computer.

That's enough to make me steer clear from now on.
I got the same notice from Norton, only I haven't been to her site on the computer it popped up on. Might just be a very prolific trojan.
 

Jamesaritchie

Super Member
Registered
Joined
Feb 13, 2005
Messages
27,863
Reaction score
2,313
I wonder if the Trojan issue is related to one of the ads, and the reason that some of us aren't experiencing it is because we're running AdBlock?

Does that fit with people's experiences? Do any of the people who got the Trojan alert use AdBlock?

I'm not running AdBlock. The only reason I connected the attack with her site is because that was the only site I was on when the attack came.

But trojans are sneaky little things, and her site might not be responsible.
 

blacbird

Super Member
Registered
Joined
Mar 21, 2005
Messages
36,987
Reaction score
6,159
Location
The right earlobe of North America
I got hit with one just yesterday, when the only site I had up was AW. No joke. I had to do a complete system recovery, which took more than two hours.

caw
 

Wicked

Outcast Rogue
Super Member
Registered
Joined
Jun 19, 2009
Messages
6,728
Reaction score
3,546
Location
Lost
I got hit with one just yesterday, when the only site I had up was AW. No joke. I had to do a complete system recovery, which took more than two hours.

caw

Same here, but my antivirus blocked it. Intrusion prevention detected it at 8:08 AM.
 

Jamesaritchie

Super Member
Registered
Joined
Feb 13, 2005
Messages
27,863
Reaction score
2,313
I got hit with one just yesterday, when the only site I had up was AW. No joke. I had to do a complete system recovery, which took more than two hours.

caw

You should never have to do a system recovery for a virus, much less a trojan.
 
Joined
Jan 17, 2010
Messages
2,368
Reaction score
105
Location
The Best Place In The World...Absolute Write!!
You should never have to do a system recovery for a virus, much less a trojan.


I never knew that, James. That's what I used to do with my desktop back in 2004 every time it got a trojan. Luckily, neither my first laptop nor this one have gotten a virus or a trojan because I've had great anti-virus programs. With my first Toshiba I had McAfee and with this one I have Norton. Speaking of which, entering this woman's website didn't cause any warnings from my anti-virus to pop up.
 

benbradley

It's a doggy dog world
Super Member
Registered
Joined
Dec 5, 2006
Messages
20,321
Reaction score
3,513
Location
Transcending Canines
There was SOME site I went to the other day (I thought it might have been an AW writer, from someone's sig, but it could easily be this person), Google said it was an attack site or some such. It give the option of going on to it - I'm running noscript which I have to enable for each site, and I'd think would have protected me, but I didn't go on.

And no, I haven't read this whole thread, much less the blog in questiion, maybe the first page and the last few posts here. I'm trying hard to stay away from drama...
 

Jamesaritchie

Super Member
Registered
Joined
Feb 13, 2005
Messages
27,863
Reaction score
2,313
Well, dammit James, you're just a hell of lot smarter than I am, ya know.

Probably handsomer, too. I bet you even smell better.

CAWWWWWWWWWWWWWWWWWWW

All true, of course.

Though part of my extreme intelligence concerning viruses comes from having kids who were always allowed free access to the computers. My youngest once managed to download fourteen viruses and a fair number of trojans in one day. A record that may never be beat.

If I had to do a system recovery for every virus or trogan, I'd still be sitting around waiting for the computers to be up and running.

But, really, most viruses are pussycats, if you know how to handle them. And deadly, if you don't know. I know people who have thrown away computers because of a simple virus that could have been removed in five minutes.

It pays to learn how to handle such critters. System restore is an extreme step, and contrary to what most think, does not always rid your system of viruses and trojans. Some of them actually hide in the very files you use to restore the computer, only to exploit your computer later on, often without your knowledge.

You need to remove any virus on the computer, not try to squah it with system restore.
 

AW Admin

Super Member
Registered
Joined
Apr 19, 2008
Messages
18,772
Reaction score
6,316
Two things:

1. I'm a little uncomfortable with the references to "nutjob" and the like. Speaking as a nutjob, we have feelings to, and deserve to be treated kindly. Please do think about the phrases you use to refer to a fellow writer.

2: On the topic of viruses and malware:

I've now spent over three hours on this issue, and until I have further data, I'm considering it closed.

* I've scanned the server, and had a colleague scan the server.
* I've hand-checked the HTML on all the threads members have specifically mentioned.
* There are some things I want people to know. These include the following pieces of information:

A. Symantec will, depending on your settings, treat any HTML that contains an i-Frame as an injection attack (that's what this is about: http://securityresponse.symantec.com/security_response/writeup.jsp?docid=2008-011517-3725-99)
B. My contact at Symantec immediately said "Oh, it's probably the iFrames in the Google ads."
C. Those ads are not running on the AW server, they are on Google's server.
D. Ad blockers will *not* protect you from mal ware. For heaven's sake, use actual anti-virus software.
E. The way that injection attacks work means that even if you are on page X of Server Y, and it is reported as the source of the malware, it could be a site you visited hours or even days ago.

F. Respectfully, to those who are making absurd assertions about Trojans and Viruses and malware--speaking as a professional, with various sorts of server certifications, and, frankly, more years of computer use than anyone in this thread (I was using my first mainframe in 1975; this is what happens to the children of faculty at college campuses):

There are in fact Trojans and viruses that do require that a drive be completely zeroed out, not just reformatted. There are, moreover, root kits in the wild that are in fact far more dangerous.

The only people--including Mac users--who are EVER complacent about malware are, like the people who are complacent about backups, fools. Don't be a fool. Take every instance seriously. There's stuff coming down the pipeline that is incredibly clever, dangerous, and malicious. Be pro active.

G. For heaven's sake, if you think there's a problem with malware on AW Don't Post About It In A Thread I Might Not Even See. Please, tell me or Macallister so we can do something about it.
H. There's a Contact form on every single page of the Water Cooler, on the bottom right where it says "Contact Us". Use it. It goes right to the owner of the site, MacAllister, who always knows how to reach me, or the other Sys Admin, shawkins. Please go through the Contact form, or, email me directly as medievalist AT mac.com. That mail goes to my phone, even.

Have a nice day
 
Status
Not open for further replies.