Viruses from pop-up ads

Serendipity

Would like to let all fellow members know:

I'll have to admit that I thought everything on the web "home theater" related was safe. Until now. A while back I clicked on one of those "My Home Theater" links, which opened up a Webshots window...then some pop-up came up (I never get pop-ups) and offered some download, which I immediately closed. Then 2 seconds later my hard drive keeps making noises and I find out that I have a virus!!

Turns out that by clicking the X (or close) button you are actually clicking on the ad, and then that advertisement loads something else on your computer. I didn't realize it until it was after the fact...

Anyways, just wanted to warn everyone about this potential threat. Not everything "home theater" related is safe. And to make things worse, I worked in network security for 2 years and should have known better!

So be aware of any advertisements that appear on HT related sites, they CAN be harmful!

fatchowmein

Task Manager/End Task is your friend.

Serendipity

Should have thought about that. Really embarassing since I did cybersecurity work a few years ago.

Sansui

Appadv, what anti-virus or no popup ad program(s) are you using? Don't take this wrong but I hope I'm not using it.

So let's say a popup appears when one doesn't get any to begin with? How does one get rid of it safely without clicking on the "surprise X"? Immediately reboot?

Oh, which site did you go to?

BaggedLancer

ALT-F4 will close the selected window.

Alot of times there is actually 2 "X" to click on. The real one and one that looks exactly like it just below it. Pay attention to where your mouse goes

Serendipity

Since I used to work in network security, I have access to corporate editions of software and I have the following installed:

AntiVirus - Symantec AntiVirus Enterprise edition
Spyware Removal - Webroot Spy Sweeper, Ad-Aware, Spybot S&D, HijackThis
Firewall - Netgear ProSafe VPN (hardware firewall)

Serendipity

Sansui wrote: »

Oh, which site did you go to?

I was on Club Polk but apparently navigated away from here by clicking on a "My Home Theater" link.

BaggedLancer

Gotta lay off the porno man.......that stuff is loaded with viruses...

Serendipity

BaggedLancer wrote: »

Gotta lay off the porno man.......that stuff is loaded with viruses...

haha, I'm surprised this happened from clicking on something HT related...

Anyways, as you can see in this screen shot, I'm running both Norton Internet Security and Symantec Enterprise edition together. Aside from using more system resources, is this a problem? Since I have never used a consumer AV product along with Symanted Enterprise edition...

BaggedLancer

I can't see it being a problem as long as you keep both up to date. Are you 100% you have a virus? And if you are, did either of those softwares detect it and ask you what you want to do with it?

Serendipity

Yes, both Symantec Enterprise and Norton Internet Security detected the virus as a Downloader.Trojan (which means nothing, since there are so many variants). However, neither program could remove or quarantine the virus.

So - what Anti-Virus program do you guys use?

BaggedLancer

I use McAffee that comes free from comcast.....so far it's about the only thing that works great from Comcrap. However, I am dumping Comcrap at the end of next month so I will need something else. Probably going to buy the McAffee suite or see what Verizon offers.

Serendipity

I'd recommend the McAfee Enterprise edition, it's a much more efficient software (system resource friendly) and since it's not a resource hog the PC runs much faster.

The only catch is that you have to buy it as a corporate license, you can't get it standalone.

Sansui

appadv wrote: »

I was on Club Polk but apparently navigated away from here by clicking on a "My Home Theater" link.

Thanks for the warning!

Sansui

BaggedLancer wrote: »

ALT-F4 will close the selected window.

Alot of times there is actually 2 "X" to click on. The real one and one that looks exactly like it just below it. Pay attention to where your mouse goes

Thanks for the info!!

Serendipity

Now that I think about it, BaggedLancer is right. You have to be careful of the "X" you are clicking on, making sure that it's not PART OF THE AD!

TheReaper

Sansui wrote: »

So let's say a popup appears when one doesn't get any to begin with? How does one get rid of it safely without clicking on the "surprise X"? Immediately reboot?

Another way, is down on the bottom of your screen where Windows puts a button for each running program. Right click on the IE button(s) and click close/close all, on the pop-menu.

Serendipity

Should have done that. Oh well, too late.

THX 3417

Mate thanks for the heads up on this I’d say this a top priority because I’ve had the same problems if I found out where they live I’d cut there internet line and hook up a few thousands volts with a few crocodile clips and then discharge the voltage into thee pc!:mad:

Anyway the gloves are off now no more Mr. Nice guy, "hacks" beware if I find out where you live within my county expect a few sparks to come smoking from your pc in the dead of night you little buggers!:mad:

Polk65

linux

What is an antivirus? It's been 10 years since I needed a flu shot. Clicking false areas of popups is an old game. It could have been much worse if you were on dialup. The old trick was to hangup your internet connection then call an overseas number with a huge charge back.

THX 3417

I believe the FBI takes this matter seriously I was viewing the web site thee weeks ago about computer fraud etc.

michael_w

Nod32 when I'm on windows (xp pro anyways) and I don't really worry too much about antivirus with ubuntu (for now). Not too many actually contain viruses but with popups come malware and spyware that can be just as much of a drain on your computer.

Face

I'm running Firefox with adblock and don't allow any popups so I don't have to worry about this.

Rivrrat

appadv wrote: »

Yes, both Symantec Enterprise and Norton Internet Security detected the virus as a Downloader.Trojan (which means nothing, since there are so many variants). However, neither program could remove or quarantine the virus.

So - what Anti-Virus program do you guys use?

Try using Ccleaner, so far it's always cleaned trojans like that my Macafee couldn't get.
http://http://ccleaner.com/

Serendipity

I run Knoppix and Red Hat Linux personally.

This happened on my dad's computer.

KrazyMofo24

Running two antiviruses, just slows down your system, and doesn't add much benefit. Kaspersky, and NOD32 are both good antiviruses.

Serendipity

KrazyMofo24 wrote: »

Running two antiviruses, just slows down your system, and doesn't add much benefit. Kaspersky, and NOD32 are both good antiviruses.

Thanks for the advice. The only thing is that usually corporate versions of AV products usually do not slow down the system much. It's products like Norton Internet Security, McAfee Total Protection, etc. that really slow down the system. Just my opinion.