Tilted Forum Project Discussion Community  

Go Back   Tilted Forum Project Discussion Community > Interests > Tilted Technology


 
 
LinkBack Thread Tools
Old 01-24-2005, 11:24 PM   #1 (permalink)
Junkie
 
Location: Florida
Help me infect my computer!

I've been given the task of implementing some kind of spyware solution at work. The claim is that people are opening up websites and just randomly becoming infected out of the blue. Well the subject caught my interest and I'm trying to figure out what to do by determining how exactly these people are becoming infected if what they claim is true.

I've never really had a spyware problem. Thinking I've been keeping my computer too up-to-date to be vulnerable, I installed a copy of XP SP1 on a spare hard drive, shut off automatic updates, and went to town opening up every porn site, "win a free big-screen TV!" ad, spyware company, shady-looking search site, etc., etc., etc. that I could think of.

Nothing. It's still totally clean.

So what's the deal? Do sites really exist that will take over Internet Explorer and infect it with spyware with no user intervention, or are these people too embarrassed to admit (or dumb to realize) that the e-mail attachment they opened or the "free screensaver" download is the real culprit? If so I'd love to see a few examples for myself!
irseg is offline  
Old 01-24-2005, 11:37 PM   #2 (permalink)
Go Cardinals
 
soccerchamp76's Avatar
 
Location: St. Louis/Cincinnati
File-sharing apps usually have them.
There are websites that have them, check warez sites and other mischievous sites.
__________________
Brian Griffin: Ah, if my memory serves me, this is the physics department.
Chris Griffin: That would explain all the gravity.
soccerchamp76 is offline  
Old 01-24-2005, 11:55 PM   #3 (permalink)
Crazy
 
phathom's Avatar
 
lots of websites have them, working as a computer repair technician we get about 90% of our clients having spyware issues. having had them before myself, they come from downloads, installed from websites, and also comes bundled with a lot of software you buy as well, including your OS if you bought it from someone like HP, Compaq, Gateway, ect. lots of them come preloaded with spyware right out of the box. Also what program are you using? Ad-aware and spybot PC-cillin, Mcafee or Norton anything, only pick up a fraction of the spyware and some of the spyware removal utilities actually are pieces of spyware themselves, 2 great ones right now are spysweeper (currently running on my computer) and Microsoft antispy currently in beta (yes microsoft actually made a good product.) Anyways just my 2 cents from the trade. BTW Norton and Mcafee are WONDERFUL for antivirus, just not to useful for spyware removal and prevention by anymeans, at least as of yet.
phathom is offline  
Old 01-25-2005, 12:05 AM   #4 (permalink)
Junkie
 
Location: Florida
Well I'm a believer now. I just hadn't looked at sufficiently shady sites.

I went to astalavista.com and then to a bunch of serial/crack search engines from there. Didn't download a thing, clicked no to all the activex installers, etc.

Soon various installers started popping up more and more rapidly. I managed to get most of them closed and then saw some advertisement had taken over active desktop. Shortly thereafter an error message popped up indicating a modem could not be found (a freaking dialer installed itself!!), then a runtime error, then my computer crapped out.

After rebooting, I waited 10 minutes before again rebooting into safe mode. When it came back up 3 more activex installer prompts popped up, I had 10+ porn site icons on my desktop, and it locked up hard. I must say I was quite surprised!
irseg is offline  
Old 01-25-2005, 12:09 AM   #5 (permalink)
Junkie
 
zero2's Avatar
 
There are a lot of sites that can infect your computer with spyware.

Try looking into the CoolWebSearch spyware, it's something that hijacks your browser without your knowledge, just by visiting a webpage, or maybe just typing in the wrong url, and you could be infected.

Then there's the annoying dialer, that won't allow you to not install their crap.

There's also spyware, such as ads in a webpage, similar to the jpg vulnerability, these ads are stored in your cookie file, and have the ability to track your surfing history.

Another technique, involves the messenger service, that system admin's use. With the messenger service, technique, you don't have a choice, since there's only one option, and that's Ok.

Then there's another technique, that involves playing on your fears, while surfing the net, you see a pop-up telling you that, your computer might be infected, click Yes to install xyz application. No matter what you click on something gets installed.

Then there's people, who are just clicking yes to everything, and have no idea what they are installing.
zero2 is offline  
Old 01-25-2005, 06:50 AM   #6 (permalink)
Junkie
 
Location: bedford, tx
spyware and malware gets its biggest boost from the ease of microsoft operating systems. Most of them use the ActiveX components in IE to install without even asking you. MSJava(win2k and older) is also a major contributor to installs without your approval. There are some real tricky malware programs that take alot of time and patience to get rid of.
__________________
"no amount of force can control a free man, a man whose mind is free. No, not the rack, not fission bombs, not anything. You cannot conquer a free man; the most you can do is kill him."
dksuddeth is offline  
Old 01-25-2005, 06:10 PM   #7 (permalink)
Insane
 
Location: Austin, TX
Quote:
Originally Posted by irseg
Well I'm a believer now. I just hadn't looked at sufficiently shady sites.

I went to astalavista.com and then to a bunch of serial/crack search engines from there. Didn't download a thing, clicked no to all the activex installers, etc.

Soon various installers started popping up more and more rapidly. I managed to get most of them closed and then saw some advertisement had taken over active desktop. Shortly thereafter an error message popped up indicating a modem could not be found (a freaking dialer installed itself!!), then a runtime error, then my computer crapped out.

After rebooting, I waited 10 minutes before again rebooting into safe mode. When it came back up 3 more activex installer prompts popped up, I had 10+ porn site icons on my desktop, and it locked up hard. I must say I was quite surprised!
Ha! Yeah Astalavista took me out one time. This was before I discovered the bliss that is Firefox.
skaven is offline  
Old 01-25-2005, 07:56 PM   #8 (permalink)
Upright
 
mmmm here here i'm going to second Skaven's vote on FireFox..
i've pushed it onto most of my friends quite successfully as well.. mostly by saying everynow and then..
Man.. i don't know the last time i saw a pop up.
or
Man.. Adblocker is amazing i don't see advertisements on any of my usaual sites anymore.(save for those whom i want to have revenue from my traffic.)

that got a few of them on the boat, not to mention tabbed browsing...
Boo Radley is offline  
Old 01-25-2005, 09:52 PM   #9 (permalink)
Stereophonic
 
brandon11983's Avatar
 
Location: Chitown!!
The Screen Savers did a report and found out that an unprotected (firewall, antivirus, Firefox, etc) Windows machine will be infected within four minutes of being on the Internet. I found that a tad amusing.
__________________
Well behaved women rarely make history.
brandon11983 is offline  
Old 01-26-2005, 05:59 AM   #10 (permalink)
Mjollnir Incarnate
 
Location: Lost in thought
Something installed the fuckin' Google toolbar on my PC yesterday. I don't know where it came from! And I don't care how useful it is, I don't want stuff randomly showing up on my box.
Slavakion is offline  
Old 01-26-2005, 06:16 AM   #11 (permalink)
Addict
 
Location: Grey Britain
Try lyrics websites, guitar tab websites, flash games websites and anything that turns up when you google "free".
__________________
"No one was behaving from very Buddhist motives. Then, thought Pigsy, he was hardly a Buddha, nor was he a monkey. Presently, he was a pig spirit changed into a little girl pretending to be a little boy to be offered to a water monster. It was all very simple to a pig spirit."
John Henry is offline  
Old 01-26-2005, 06:57 AM   #12 (permalink)
Upright
 
Location: seattle, wa
theres nothing to do to avoid spyware these days. ahving spyware removing agents is great - but until there is some extra control/security out there, there really is no way to avoid it if you're surfing the web. spyware even comes in image formats! you can visit a page like yahoo and voila - spyware has affixed itself to your computer.
projectself is offline  
Old 01-26-2005, 07:19 AM   #13 (permalink)
Tilted
 
Location: NC
CWS is a beast to get off most of the time. Try going to Iwon.com and installing some of their software or installing weatherbug
he_haha is offline  
Old 01-26-2005, 08:56 AM   #14 (permalink)
Upright
 
i had the same problem at work. in my case, the people o work with werent very computer literate. so i knew the problem wasent warez and p2p's. (the just berly knew how to go to the net) this people where going to shady gambling sites and just overall flashy pop ups that would catch their attention. i.e. hotbar.com and wallpapers. yyou know junk like that. i bet your coworkers fall in the same demographic.

I almost got fired because management (who are also a bunch of computer iliterate dumb f***'s) saw there was a computer problem and asumed i knew all about computers so it must be my fault.
minoli is offline  
Old 01-26-2005, 11:04 AM   #15 (permalink)
Insane
 
Location: Austin, TX
Quote:
Originally Posted by brandon11983
The Screen Savers did a report and found out that an unprotected (firewall, antivirus, Firefox, etc) Windows machine will be infected within four minutes of being on the Internet. I found that a tad amusing.
Yeah but it's not so amusing when you're trying to help a friend to reinstall windows, and the damn thing gets infected with three viruses before SP1 can even finish downloading.

Its crap like that that made me give up on Windows altogether. Long live Linux!
skaven is offline  
Old 01-26-2005, 01:59 PM   #16 (permalink)
SiN
strangelove
 
SiN's Avatar
 
Location: ...more here than there...
^ heh.

not sure in such cases whether the blame lies in front of or behind the keyboard ...
I've reinstalled windows many times and have never had 'crap like that' happen ...

(admittedly most of the time I've been securely tucked behind a linux fw) ...
__________________
- + - ° GiRLie GeeK ° - + - °
01110010011011110110111101110100001000000110110101100101
Therell be days/When Ill stray/I may appear to be/Constantly out of reach/I give in to sin/Because I like to practise what I preach
SiN is offline  
Old 01-26-2005, 02:11 PM   #17 (permalink)
In Your Dreams
 
Latch's Avatar
 
Location: City of Lights
I'm a Linux fanboy too.. but I did hear...

Longhorn is going to come out with a mode where no (unasked for) incoming traffic is accepted until the machine has visited WindowsUpdate. Pretty smart and handy.. also could have happened 5 years ago
Latch is offline  
Old 01-26-2005, 06:11 PM   #18 (permalink)
Mine is an evil laugh
 
spindles's Avatar
 
Location: Sydney, Australia
Quote:
Originally Posted by skaven
Yeah but it's not so amusing when you're trying to help a friend to reinstall windows, and the damn thing gets infected with three viruses before SP1 can even finish downloading.

Its crap like that that made me give up on Windows altogether. Long live Linux!
I am much more likely to install Windows off the CD, install a firewall from CD or other device, turn this on, then connect to the net.
__________________
who hid my keyboard's PANIC button?
spindles is offline  
Old 01-26-2005, 08:03 PM   #19 (permalink)
Upright
 
Location: 127.0.0.1
congratulations you just licked the bottom of the internet. do you still have that nasty tingling in your mouth like you just got slapped in the face?

i ran a similar experiment with a windows box in my DMZ. i didnt believe the rumor that in less than a half hour you can get blown out of the water with that stuff.
are you ready to make the jump to linux? nearly impossible for that to happen.
7w17ch is offline  
Old 01-28-2005, 09:34 AM   #20 (permalink)
Nothing
 
k1ng's Avatar
 
Location: Atlanta, GA
Quote:
Originally Posted by skaven
Yeah but it's not so amusing when you're trying to help a friend to reinstall windows, and the damn thing gets infected with three viruses before SP1 can even finish downloading.

Its crap like that that made me give up on Windows altogether. Long live Linux!
I use a copy of Windows that has the service packs steamlined, so I dont have to worry about downloading SPs.
__________________
"Delight in excellence is easily confused with snobbery by the ignorant." -Joseph Epstein
k1ng is offline  
Old 01-28-2005, 12:00 PM   #21 (permalink)
Mjollnir Incarnate
 
Location: Lost in thought
Quote:
Originally Posted by spindles
I am much more likely to install Windows off the CD, install a firewall from CD or other device, turn this on, then connect to the net.
Exactly. I'm behind a router to begin with, then I toss on a firewall from a CD, then I install the drivers for my wireless card.
Slavakion is offline  
Old 01-28-2005, 01:35 PM   #22 (permalink)
Junkie
 
Quote:
Originally Posted by k1ng
I use a copy of Windows that has the service packs steamlined, so I dont have to worry about downloading SPs.
Bingo. There are plenty of guides on the internet on how to slipstream a service pack and burn a new install cd with all the critical updates already integrated. By the time I get a fresh Windows install connected to the internet I'm already in pretty good shape, just have to update antivirus and antispyware definitions.
laconic1 is offline  
 

Tags
computer, infect

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -8. The time now is 10:09 PM.

Tilted Forum Project

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
© 2002-2012 Tilted Forum Project

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360