Go Back   Two Wheel Fix > General > Off Topic

Reply
 
Thread Tools Display Modes
Old 06-08-2011, 09:06 AM   #1
Papa_Complex
Nomadic Tribesman
 
Papa_Complex's Avatar
 
Join Date: Nov 2008
Location: Brampton, Canada
Moto: '09 ER-6n
Posts: 11,150
Default Why you keep getting fake antivirus warnings

It's called "Google Image Poisoning", and it's pretty damned widespread. I've been dealing with up to 10 of these damned things, per week, with an average of about 6.

http://isc.sans.edu/diary/More+on+Go...oisoning/10822

So stop doing Google Image searches for porn and you'll be OK.
__________________
"Everything's better with pirates." - Lodge, "Dorkness Rising"

http://www.morallyambiguous.net/
Papa_Complex is offline   Reply With Quote
Old 06-08-2011, 09:18 AM   #2
Flexin
AMA Supersport
 
Flexin's Avatar
 
Join Date: Nov 2008
Location: Halifax, Nova Scotia
Posts: 2,698
Default

Quote:
Originally Posted by Papa_Complex View Post
It's called "Google Image Poisoning", and it's pretty damned widespread. I've been dealing with up to 10 of these damned things, per week, with an average of about 6.

http://isc.sans.edu/diary/More+on+Go...oisoning/10822

So stop doing Google Image searches for porn and you'll be OK.
Ok I was with you to I read Stop and Porn. So your saying get off the internet?

James
__________________
"Bust a nut inside your eye, to show you where I come from"
"f youre horny, lets do it, Ride it, my pony, My saddles waitin, Come and jump on it, If youre horny, lets do it"
"I'm not a playa I just fuck a lot"
"Round two, I'm down to Do, what it takes to make you
Understand I'm the Candyman And I melt in your mouth, not in your hands Hard as rock, yes I'm no sucka The boots I knock make me one bad mutha"
Flexin is offline   Reply With Quote
Old 06-08-2011, 09:32 AM   #3
Papa_Complex
Nomadic Tribesman
 
Papa_Complex's Avatar
 
Join Date: Nov 2008
Location: Brampton, Canada
Moto: '09 ER-6n
Posts: 11,150
Default

Quote:
Originally Posted by Flexin View Post
Ok I was with you to I read Stop and Porn. So your saying get off the internet?

James
Stop doing Google IMAGE searches for porn. Use text searches.
__________________
"Everything's better with pirates." - Lodge, "Dorkness Rising"

http://www.morallyambiguous.net/
Papa_Complex is offline   Reply With Quote
Old 06-08-2011, 10:33 AM   #4
Flexin
AMA Supersport
 
Flexin's Avatar
 
Join Date: Nov 2008
Location: Halifax, Nova Scotia
Posts: 2,698
Default

Quote:
Originally Posted by Papa_Complex View Post
Stop doing Google IMAGE searches for porn. Use text searches.
Yeah I know how back the google images can be.

James
__________________
"Bust a nut inside your eye, to show you where I come from"
"f youre horny, lets do it, Ride it, my pony, My saddles waitin, Come and jump on it, If youre horny, lets do it"
"I'm not a playa I just fuck a lot"
"Round two, I'm down to Do, what it takes to make you
Understand I'm the Candyman And I melt in your mouth, not in your hands Hard as rock, yes I'm no sucka The boots I knock make me one bad mutha"
Flexin is offline   Reply With Quote
Old 06-08-2011, 01:50 PM   #5
njchopper87
Bored
 
njchopper87's Avatar
 
Join Date: Dec 2008
Location: Sumter, SC
Moto: '01 Spirit 750
Posts: 1,535
Default

NoScript ftw!
__________________
Quote:
The closer you get to something, the tougher it is to see it.
El psy congroo.
njchopper87 is offline   Reply With Quote
Old 06-08-2011, 03:49 PM   #6
Particle Man
Custom User Title
 
Particle Man's Avatar
 
Join Date: Nov 2008
Location: Central NY
Moto: 2003 SV650S
Posts: 14,959
Default

Quote:
Originally Posted by Flexin View Post
Ok I was with you to I read Stop and Porn. So your saying get off the internet?

James
__________________
I'm not "fat."
I'm "Enlarged to show texture."


Handle every stressful situation like a DOG: If you can't eat it or hump it, pi$$ on it & walk away.
Particle Man is offline   Reply With Quote
Old 06-08-2011, 03:53 PM   #7
Porkchop
125GP Champion
 
Porkchop's Avatar
 
Join Date: Aug 2008
Location: Worthington, OH
Moto: Empty Garage
Posts: 3,418
Default

I deal with a couple of these a year. Most of them are easy to get rid of, but every so often one can be a little bitch. The one I got most recently from the Tosh.0 link from a thread in here was a monster.
__________________
*Coming soon?
2010 Ducati Monster 696 - Sold
1984 Honda VF500F - Sold
1999 Yamaha R6 - Sold
Porkchop is offline   Reply With Quote
Old 06-08-2011, 03:55 PM   #8
Papa_Complex
Nomadic Tribesman
 
Papa_Complex's Avatar
 
Join Date: Nov 2008
Location: Brampton, Canada
Moto: '09 ER-6n
Posts: 11,150
Default

Quote:
Originally Posted by Porkchop View Post
I deal with a couple of these a year. Most of them are easy to get rid of, but every so often one can be a little bitch. The one I got most recently from the Tosh.0 link from a thread in here was a monster.
I've worked on maybe a dozen different flavours, of this thing, and you simply can't reliably recover from some of them.
__________________
"Everything's better with pirates." - Lodge, "Dorkness Rising"

http://www.morallyambiguous.net/
Papa_Complex is offline   Reply With Quote
Old 06-08-2011, 09:46 PM   #9
dubbs
Multistrada
 
dubbs's Avatar
 
Join Date: Mar 2008
Location: Manorville, NY
Posts: 652
Default

Quote:
Originally Posted by Papa_Complex View Post
I've worked on maybe a dozen different flavours, of this thing, and you simply can't reliably recover from some of them.
They're all pretty easy and just sit in the user's profile or the all users folder..

I can't even count how many I've gotten rid of maybe 50+.. shouldn't take longer than 20 mins to get rid of it even with roaming profiles with the virus files getting in multiple places..

I'm actually surprised how easy these new forms of virus/spyware are to get rid of, it's actually making my job a lot easier. Seems like they're getting lazy..
__________________
Sportbike - 2013 Ducati Multistrada S Touring - Red
Luxury Car - 2013 Cadillac ATS 2.0 Turbo - Black
Weekend Car - 2003 Honda S2000 - Black
Daily Driver - 2011 Toyota Prius - Black
Beater - 2005 Honda Civic Hybrid - Dust Colored
dubbs is offline   Reply With Quote
Old 06-08-2011, 10:33 PM   #10
Papa_Complex
Nomadic Tribesman
 
Papa_Complex's Avatar
 
Join Date: Nov 2008
Location: Brampton, Canada
Moto: '09 ER-6n
Posts: 11,150
Default

Quote:
Originally Posted by dubbs View Post
They're all pretty easy and just sit in the user's profile or the all users folder..

I can't even count how many I've gotten rid of maybe 50+.. shouldn't take longer than 20 mins to get rid of it even with roaming profiles with the virus files getting in multiple places..

I'm actually surprised how easy these new forms of virus/spyware are to get rid of, it's actually making my job a lot easier. Seems like they're getting lazy..
Then you haven't seen a fraction of the stuff that i have. This thing has been coming down various forms, for the last year and a half. I've been doing no less than 4 of them, per week, over that time period and as many as a dozen. If you're cleaning it up in 20 minutes, then you're leaving some of it behind.

It lives in program files, user temp, internet temp, windows temp, all users appdata, system32, recycle bin, system dir, it's own directory under system dir, windows restore, the Java applets store, HCCR\exefile, HCLM\Software\Microsoft\WindowsNT\Winlogon, and I've seen as many as 32 separate entries in the Tasks list all set to reinfect the system, on a schedule. None of that includes the rootkits that they've pushed up, after the system was infected.
__________________
"Everything's better with pirates." - Lodge, "Dorkness Rising"

http://www.morallyambiguous.net/

Last edited by Papa_Complex; 06-08-2011 at 10:41 PM..
Papa_Complex is offline   Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 11:35 PM.

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.