Just finished up the tidying up from being caught out ...
Cause - clicking on a link from a Facebook app that took me to a site that downloads software in return for "Warchips". Long story short, it was a quest to boost my chances in that particular game.
The symptom - clicking on links in Firefox (and presumably other browsers too judging by the folder structure of the Nastie) occasionally caused an extra new Firefox window to open, with an advert in it.
Fix attempt 1 - run a full machine Kaspersky scan. I'm surprised here cos Kaspersky is an AV well recognised for its ability to spot the nasties. Gotta admit, it spotted something suspicious while the installer software was running, which made me immediately cancel the install. But ... it didn't stop the Nastie getting in and it couldn't spot it on a full machine high sensitivity scan. Disappointing.
Fix attempt 2 - and this one is looking successful :-) - MalwareBytes Anti-Malware (search Google for MBAM) is getting a good reputation for being an excellent Nastie Squisher. I found it a couple of months ago when a colleague at work brought a sick laptop in. It had been infected by an adserver like mine. Bit different in its attack vector but same kind of theory.
Three hours later (to be fair to MBAM, this laptop is still operating at half power and Kaspersky was also scanning), the MBAM software had successfully identified all parts of the nastie and removed it.
Good job and thumbs up for MBAM :-)
I guess I probably got away with this one because I spotted the Nastie relatively quickly due to it being so intrusive. I should count myself lucky that it wasn't a keylogger sitting quietly in the background picking up the keystrokes. Although I'm probably not as vulnerable there cos I keep my passwords in (encrypted?) cookies where the keyloggers won't be reading the key taps.
Fingers crossed that this particular nastie (DoubleD) won't come back and big thanks to MalwareBytes for making that excellent piece of software.
Lesson - mind your IT Security ! And listen to your inner voice that says that you shouldn't install non-essential software ...
Subscribe to:
Post Comments (Atom)
Posts
2 comments:
Listen most of these malware & whatever apps are crap designed to market the product more than give you a desire result. I just had a PC sent to my lab that was poping up 15 errors upon loading the desktop (in XP) the errors indicated specific .dll files that were identified by XP as "not a valid XP image. Once I clicked past those & the desktop loaded. I removed malwarebytes and re-booted. None of those "invalid imaged" errors returned. I then ran the FREE AVG which cleaned the remaining crap off the system. In my opinion, the lesson here is; don't go down loading everything people tell you to download or heaven forbid don't be clicking on spyware, malware, anti-virus solutions that "pop up" on your PC's browser when you are on the internet, you'll most certaily end up with a "real" problem after doing so. Windows defender & AVG free are capible of keeping most "normal use" PC's bug free. Defender which is made by Microsoft, they just might know something about keeping bugs out of their OS's. I'll put it to you another way, I've been using those two products and I haven't had a bug in nearly 3 years AND I don't go clicking on whimsical sht. that pops up on my computer.
Post a Comment