| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 39600 | 2003-11-11 20:14:00 | unexpected Trojan | win95a (4860) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 191048 | 2003-11-11 20:14:00 | There are no shortage of unpleasant Viruses out there, but I got a shock recently when a Trojan managed to get on my PC and attempt to run just by visiting a Web page, without me having to open any files or attachments. Seems the page contained some Javascript that replaced wmplayer.exe on my harddrive with a trojan, then featured a movie clip on the web-page. As mplayer is my default media player (and my internet settings foolishly allowed such things) Windows then starts up mplayer.exe and bang. Fortunately Norton caught the trojan when it tried to run (or perhaps when it replaced the original file) so the only damage done was loosing Mplayer, but it was a wake up call for me regarding internet security. I've never paid much attention to my IE6 security settings, leaving them on the default (medium security) and trusting norton, zonealarm and adaware to look after my pc, but to avoid Active-Scripting like this you want to look at using the high security with Trusted-Site settings. Walkthrough.... acd.ucar.edu Hope this helps someone avoid a nasty surprise. |
win95a (4860) | ||
| 191049 | 2003-11-11 20:16:00 | Now you can upgrade to wmp9 or go to something like Quick time! |
ilikelinux (1418) | ||
| 191050 | 2003-11-11 20:39:00 | A bit about ASP.-www.coastline.com | mark.p (383) | ||
| 191051 | 2003-11-11 21:10:00 | it most likly useda jvascript exploit to install the trojen. yet another reason to keep up with those patches. i ran into one the other day, fortunatly it was a basic one and nortons found it before it ran. at a guess it use one of the holes in java which i had forgotten to update (sun java). |
tweak'e (174) | ||
| 191052 | 2003-11-11 21:11:00 | There are other web browsers available which are not as prone to the security issues that IE has. IE is full of holes (www.zdnet.com.au) |
Jim B (153) | ||
| 191053 | 2003-11-11 22:14:00 | I use zoomplayer as my default smaller and better also use Opera and avant or firebird as browsers plus run spybot and spyware blaster as well as a few other programs on 98SE | kiwibeat (304) | ||
| 191054 | 2003-11-11 23:32:00 | win95a Thanks for the warning and the links. Great reading! I see you were using IE6 and set to medium security settings (which is probably the norm for most people). As a matter of interest was your IE6 fully patched at the time? Oxie (Lyn) |
Oxie (1318) | ||
| 191055 | 2003-11-11 23:51:00 | Praise to AVG - my brother's system somehow caught the femad.b (aka tooncom.b) trojan, and it was detected by AVG, then nicely cleaned automatically | Greg S (201) | ||
| 191056 | 2003-11-12 01:57:00 | Hi, I'm pretty confident that my IE6 was/is up to date. There are no outstanding updates in windows-update for my PC at the moment. I'm glad Norton was onto it. |
win95a (4860) | ||
| 191057 | 2003-11-12 02:38:00 | win95a Thanks for that . Since my last post here I thought it would be a good idea to change the security settings in IE6 from medium to high . I duly entered 'safe' sites into the Trusted Sites box . However, when testing certain sites I could not access the java pop-up window which is necessary to log on to my bank . So, my IE6 is now all back to Medium Security . What do other users of IE6 do? By the way I use Netscape 99 . 5% of the time, but Java is still enabled and obviously necessary to access banking sites . In IE6 would it be a good idea to disable all the ActiveX controls and plug-ins, and leave the Java related ones enabled? All comments greatly received . Oxie (Lyn_ |
Oxie (1318) | ||
| 1 2 | |||||