This site is currently being attacked by hackers. They’re installing a redirect script, which your anti-virus software or web browser may or may not detect. I am working on solving the problem, but it may involve taking the site down and re-installing it. I’ll keep you posted.
February 5, 20106 CommentsRSS feed for comments on this post. Sorry, the comment form is closed at this time. |
this isn’t good; AVG isn’t detecting JS/Downloader.Agent anymore… i’m going to update everything on this computer whether my parents like it or not.
Comment by linuxlove — February 6, 2010 @ 6:51 am
It’s nasty. On the Mac is merely redirected me to the illegal download site, but on a PC it might just start downloading software. Scary stuff.
So far so good: The site appears to be sound. Changing the passwords and security keys seems to have worked. So far.
Comment by admin — February 6, 2010 @ 7:12 am
I get nothing using a PC or this old iMac G3. I’ve ran across some of the AntiVirus 2009 virus sites using linux and it looked funny: a fake Windows XP shot running in my linux computer with Opera. I let it run since a Windows virus doesn’t have any effect on linux and when it finished, it was trying to download the setup prgromfor the AV 09 virus.
Recently I was stupid enough to use Windows on my server and while I was looking for a torrent of Windows 7 RC, I got hit with AV 09. At first I was like “oh the browser crashed”, then I see that my virtual memory was too low and then I see my desktop had changed to something like “YOUR COMPUTER IS AT RISK” with all the desktop icons hidden, and then I see “Personal AntiVirus” on my screen so I was like “D’OH”. Then another one popped up, calling itself “Advnaced Virus Protection”. Then a third one was running in the backgroud and never showed itself for some reason. Constantly it was popping up with fake virus scans and lots of “Please buy now to protect your computer” messages. It even showed up ads from IE (unsuprising) and said that a remote hacker was trying to hack my computer, even when the network cable was unplugged. Of course, task manager was disabled, regedit was disabled and msconfig was disabled all to keep you from killing the virus. The grand finale? A STOP error. If it was fake or real, I’ll never know but I can say this for sure: AntiVirus 2009 and all its variants are nasty, evil programs that only clog your system up and take your money.
Also, the server at the time was a 400MHz Pentium II computer with 168MB of RAM. With the multi-gigaherz computers of today with all that RAM, you wouldn’t notice much slowdown. My server is running on an 866MHz Pentium III with 512MB RAM and Debian 5 “Lenny”.
Comment by linuxlove — February 6, 2010 @ 10:29 am
When my youngest son was 9, he clicked on one of those “Your computer is at risk” things. Downloaded some rootkit that nested itself on his hard drive in a way I could not remove. I finally replaced the entire hard drive. It was an amazing piece of software; I kept watching it re-appear after I deleted it. That was Windows 98 I believe.
Comment by admin — February 6, 2010 @ 4:50 pm
You don’t think even a DBAN would have kiled the rootkit? Or “dd of=/dev/urandom if=/dev/hda”?
Comment by linuxlove — February 6, 2010 @ 6:56 pm
I would have had to reformat the HD and install Linux. It was my son’s PC and he used it to play Warcraft and other games. The HD was under-sized anyway, so it was just easier to buy a replacement. And I shot the old one.
Comment by admin — February 6, 2010 @ 7:03 pm