My downloader wants me to dl trojans

Discussion in 'NZ Computing' started by Fishb8, Mar 19, 2006.

  1. Fishb8

    Fishb8 Guest

    Fishb8, Mar 19, 2006
    #1
    1. Advertising

  2. On Sun, 19 Mar 2006 16:02:50 +1200, Fishb8 wrote:

    > My download manager keeps popping up with a download request for a dodgy
    > file from
    > http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    > the file is:-
    > wdinit64.exe. Done a Google and got no info.
    > How do I identify and remove the source of the requester?


    If you are running M$ Windows this sort of thing is normal. If you wish to
    avoid that sort of stuff, then dump M$ Windows and install Linux.


    Cheers

    Have A Nice Cup of Tea

    --
    1/ Migration to Linux only costs money once. Higher Windows TCO is forever.
    2/ "Shared source" is a poison pill. Open Source is freedom.
    3/ Only the Windows boxes get the worms.
    Have A Nice Cup of Tea, Mar 19, 2006
    #2
    1. Advertising

  3. Fishb8

    Fred Dagg Guest

    On Sun, 19 Mar 2006 17:01:40 +1200, Have A Nice Cup of Tea <>
    exclaimed:

    >On Sun, 19 Mar 2006 16:02:50 +1200, Fishb8 wrote:
    >
    >> My download manager keeps popping up with a download request for a dodgy
    >> file from
    >> http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    >> the file is:-
    >> wdinit64.exe. Done a Google and got no info.
    >> How do I identify and remove the source of the requester?

    >
    >If you are running M$ Windows this sort of thing is normal. If you wish to
    >avoid that sort of stuff, then dump M$ Windows and install Linux.
    >

    Oh, piss off you unhelpful fool.

    These sort of posts just really prove your immaturity.
    Fred Dagg, Mar 19, 2006
    #3
  4. Fishb8

    Philip Guest

    Have A Nice Cup of Tea wrote:
    > On Sun, 19 Mar 2006 16:02:50 +1200, Fishb8 wrote:
    >
    >> My download manager keeps popping up with a download request for a dodgy
    >> file from
    >> http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    >> the file is:-
    >> wdinit64.exe. Done a Google and got no info.
    >> How do I identify and remove the source of the requester?

    >
    > If you are running M$ Windows this sort of thing is normal. If you wish to
    > avoid that sort of stuff, then dump M$ Windows and install Linux.
    >
    >
    > Cheers
    >
    > Have A Nice Cup of Tea
    >

    That may be a bigger change than the OP is willing to make.

    If I were me and this started to happen, I would run a spyware and
    adware detector, and I would make sure that the impotato.com site, which
    I see is registered to a pseudonym that lives in a PO box in Sweden,
    was redirected to 10.0.0.0 in my Hosts file. If I didn't know what a
    Hosts file is, I would google it, and then go to
    http://everythingisnt.com/hosts.html
    and download the installer found there.

    I admire the work of the FOSS community, and I run Ubuntu on several of
    my computers. I'm busy installing it on a Psion NetBook which I hope
    will revive that once-innovative notebook, with its 8-hour battery life.
    I also admire much of what Microsoft produces - for its functionality
    and ubiquity.

    But until the FOSS community gets its act together and produces
    documentation and help files that don't require the reader to have a
    Ph.D, and starts to address the fact that there are no support drivers
    for a whole range of stuff, and recognises that the command line some of
    us grew up with is seen as hostile by many users who just want to write
    their thesis or run their business, it will struggle to make an impact
    on the desktop.

    For starters: there needs to be a help website where questions get
    answered in plain English, without sneering and jeering, without
    constantly slagging off the Redmond products, and without getting into
    religious debates about different distros and versions of the software
    licences.

    One of the most off-putting things about the Mac community has been its
    evangelical belief in the doctrine that My Computer is Better Than Your
    Computer. Maybe it is, maybe it isn't, but just like the overkill from
    devotees of Mac, Linux zealotry hurts, doesn't help, the case.

    Philip

    (and by the way, my computer IS better than your computer)
    Philip, Mar 19, 2006
    #4
  5. Fishb8

    Invisible Guest

    On Sun, 19 Mar 2006 17:01:40 +1200, Have A Nice Cup of Tea <> wrote:

    >If you are running M$ Windows this sort of thing is normal


    Never happened to me.
    Invisible, Mar 19, 2006
    #5
  6. Fishb8

    Dave Taylor Guest

    "Fishb8" <> wrote in news:JJ4Tf.7082$JZ1.248853
    @news.xtra.co.nz:

    > My download manager keeps popping up with a download request for a dodgy
    > file from
    > http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    > the file is:-
    > wdinit64.exe. Done a Google and got no info.
    > How do I identify and remove the source of the requester?
    >
    >



    Your machine is likely infected with a trojan.
    http://www.emsisoft.com/en/software/free/
    a-squared (a-squared) is a complementary product to antivirus software and
    desktop firewalls on MS Windows computers. Antivirus software specializes
    in detecting classic viruses. Many available products have weaknesses in
    detecting other malicious software (Malware) like Trojans, Dialers, Worms
    and Spyware (Adware). a-squared fills the gap that malware writers exploit.

    You have up to date and working antivirus right?
    No, then get Avast.
    http://www.avast.com/eng/avast_4_home.html


    --
    Ciao, Dave
    Dave Taylor, Mar 19, 2006
    #6
  7. Fishb8

    Fishb8 Guest

    "Dave Taylor" <> wrote in message
    news:Xns978BBA05E65D8daveytaynospamplshot@203.97.37.6...
    > "Fishb8" <> wrote in news:JJ4Tf.7082$JZ1.248853
    > @news.xtra.co.nz:
    >
    >> My download manager keeps popping up with a download request for a dodgy
    >> file from
    >> http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    >> the file is:-
    >> wdinit64.exe. Done a Google and got no info.
    >> How do I identify and remove the source of the requester?
    >>
    >>

    >
    >
    > Your machine is likely infected with a trojan.
    > http://www.emsisoft.com/en/software/free/
    > a-squared (a-squared) is a complementary product to antivirus software and
    > desktop firewalls on MS Windows computers. Antivirus software specializes
    > in detecting classic viruses. Many available products have weaknesses in
    > detecting other malicious software (Malware) like Trojans, Dialers, Worms
    > and Spyware (Adware). a-squared fills the gap that malware writers
    > exploit.
    >
    > You have up to date and working antivirus right?
    > No, then get Avast.
    > http://www.avast.com/eng/avast_4_home.html
    >
    >
    > --
    > Ciao, Dave

    Thanks everyone, especially Dave.
    Installed A Squared and found a Trojan that my AV and Spyware missed. Teach
    me to visit dodgy sites and try to find serials!
    Fishb8, Mar 19, 2006
    #7
  8. T'was the Mon, 20 Mar 2006 06:14:14 +1200 when I remembered "Fishb8"
    <> saying something like this:

    >Installed A Squared and found a Trojan that my AV and Spyware missed. Teach
    >me to visit dodgy sites and try to find serials!


    Wouldn't recommend it. However, I would also switch to Firefox if
    you're not already using it, which seems to reduce the number of
    drive-by installs. Bare in mind it doesn't stop all, that's where your
    anti-virus software comes in handy.
    --
    Cheers,

    Waylon Kenning.
    See my blog at http://spaces.msn.com/WaylonKenning/
    Waylon Kenning, Mar 19, 2006
    #8
  9. On Mon, 20 Mar 2006 06:14:14 +1200, Fishb8 wrote:

    > Installed A Squared and found a Trojan that my AV and Spyware missed. Teach
    > me to visit dodgy sites and try to find serials!


    That's what you get for using Micro$oft Windows, and Micro$oft Internet
    Explorer and Micro$oft Outlook/Express.

    Have you considered using alternatives?


    Have A Nice Cup of Tea

    --
    One Unix to rule them all,
    One Resolver to find them,
    One IP to bring them all
    And in the Zone to Bind them.
    Have A Nice Cup of Tea, Mar 19, 2006
    #9
  10. On Mon, 20 Mar 2006 08:11:59 +1200, Waylon Kenning wrote:

    > Bare in mind it doesn't stop all, that's where your
    > anti-virus software comes in handy.


    Firefox will only automatically install software if you have explicitly
    told it to do so.

    And we all know that having it set like that is a very microsoft thing to
    do.


    Have A Nice Cup of Tea

    --
    One Unix to rule them all,
    One Resolver to find them,
    One IP to bring them all
    And in the Zone to Bind them.
    Have A Nice Cup of Tea, Mar 19, 2006
    #10
  11. Fishb8

    SchoolTech Guest

    Have A Nice Cup of Tea wrote:
    > On Sun, 19 Mar 2006 16:02:50 +1200, Fishb8 wrote:
    >
    >> My download manager keeps popping up with a download request for a dodgy
    >> file from
    >> http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    >> the file is:-
    >> wdinit64.exe. Done a Google and got no info.
    >> How do I identify and remove the source of the requester?

    >
    > If you are running M$ Windows this sort of thing is normal.


    Rubbish!
    SchoolTech, Mar 20, 2006
    #11
  12. Fishb8

    SchoolTech Guest

    Fishb8 wrote:
    > "Dave Taylor" <> wrote in message
    > news:Xns978BBA05E65D8daveytaynospamplshot@203.97.37.6...
    >> "Fishb8" <> wrote in news:JJ4Tf.7082$JZ1.248853
    >> @news.xtra.co.nz:
    >>
    >>> My download manager keeps popping up with a download request for a dodgy
    >>> file from
    >>> http://www.impotato.com/a412/shed1.php?m=1&b=779&c=1
    >>> the file is:-
    >>> wdinit64.exe. Done a Google and got no info.
    >>> How do I identify and remove the source of the requester?
    >>>
    >>>

    >>
    >> Your machine is likely infected with a trojan.
    >> http://www.emsisoft.com/en/software/free/
    >> a-squared (a-squared) is a complementary product to antivirus software and
    >> desktop firewalls on MS Windows computers. Antivirus software specializes
    >> in detecting classic viruses. Many available products have weaknesses in
    >> detecting other malicious software (Malware) like Trojans, Dialers, Worms
    >> and Spyware (Adware). a-squared fills the gap that malware writers
    >> exploit.
    >>
    >> You have up to date and working antivirus right?
    >> No, then get Avast.
    >> http://www.avast.com/eng/avast_4_home.html
    >>
    >>
    >> --
    >> Ciao, Dave

    > Thanks everyone, especially Dave.
    > Installed A Squared and found a Trojan that my AV and Spyware missed. Teach
    > me to visit dodgy sites and try to find serials!


    Or to keep Windows up to date.
    SchoolTech, Mar 20, 2006
    #12
  13. Fishb8

    SchoolTech Guest

    Have A Nice Cup of Tea wrote:
    > On Mon, 20 Mar 2006 08:11:59 +1200, Waylon Kenning wrote:
    >
    >> Bare in mind it doesn't stop all, that's where your
    >> anti-virus software comes in handy.

    >
    > Firefox will only automatically install software if you have explicitly
    > told it to do so.
    >
    > And we all know that having it set like that is a very microsoft thing to
    > do.


    That switch has to be enabled to install any updates or extensions
    including links you click on in Mozilla's own website.

    Otherwise they can't be installed at all.
    SchoolTech, Mar 20, 2006
    #13
  14. Fishb8

    SchoolTech Guest

    Have A Nice Cup of Tea wrote:
    > On Mon, 20 Mar 2006 06:14:14 +1200, Fishb8 wrote:
    >
    >> Installed A Squared and found a Trojan that my AV and Spyware missed. Teach
    >> me to visit dodgy sites and try to find serials!

    >
    > That's what you get for using Micro$oft Windows, and Micro$oft Internet
    > Explorer and Micro$oft Outlook/Express.


    No, it's what you get on ANY OPERATING SYSTEM when security holes are
    not patched.

    Since Windows will update itself automatically, it is strange that
    people don't make use of this capability.
    SchoolTech, Mar 20, 2006
    #14
  15. On Mon, 20 Mar 2006 09:58:24 +1200, Have A Nice Cup of Tea wrote:

    > Firefox will only automatically install software if you have explicitly
    > told it to do so.


    Dude, last time I checked Firefox also uses Javascript. Been plenty of
    times I've visited a website with FF and the Javascript on the page
    attempted to do nasty things. Luckily, AntiVir caught said JS, and gave me
    the option to delete it.

    While not the drive by install you were thinking of, same end result.
    Waylon Kenning, Mar 20, 2006
    #15
  16. On Mon, 20 Mar 2006 17:44:37 +1200, SchoolTech wrote:

    >> Firefox will only automatically install software if you have explicitly
    >> told it to do so.
    >>
    >> And we all know that having it set like that is a very microsoft thing to
    >> do.

    >
    > That switch has to be enabled to install any updates or extensions
    > including links you click on in Mozilla's own website.
    >
    > Otherwise they can't be installed at all.


    Rubbish!

    All you have to do is to download the update to your computer, and open it
    from within firefox.

    That switch prevents AUTOMATIC installations.


    Have A Nice Cup of Tea

    --
    One Unix to rule them all,
    One Resolver to find them,
    One IP to bring them all
    And in the Zone to Bind them.
    Have A Nice Cup of Tea, Mar 20, 2006
    #16
  17. On Mon, 20 Mar 2006 17:45:37 +1200, SchoolTech wrote:

    >>> Installed A Squared and found a Trojan that my AV and Spyware missed.
    >>> Teach me to visit dodgy sites and try to find serials!

    >>
    >> That's what you get for using Micro$oft Windows, and Micro$oft Internet
    >> Explorer and Micro$oft Outlook/Express.

    >
    > No, it's what you get on ANY OPERATING SYSTEM when security holes are
    > not patched.


    That is what you can get on Micro$oft Windows even when it has been fully
    patched!


    > Since Windows will update itself automatically, it is strange that
    > people don't make use of this capability.


    But people DO use that security hole to give the most untrustworthy of all
    IT companies complete carte blanche.

    Remember - a M$ Windows computer with automatic updating enabled is
    owned by Micro$oft, and it can install whatever it likes on "your"
    computer!

    If you want a computer that does not automatically installing stuff behind
    your back then you will use any variety of *nix.


    Have A Nice Cup of Tea

    --
    One Unix to rule them all,
    One Resolver to find them,
    One IP to bring them all
    And in the Zone to Bind them.
    Have A Nice Cup of Tea, Mar 20, 2006
    #17
  18. On Mon, 20 Mar 2006 19:01:36 +1200, Waylon Kenning wrote:

    > Dude, last time I checked Firefox also uses Javascript. Been plenty of
    > times I've visited a website with FF and the Javascript on the page
    > attempted to do nasty things. Luckily, AntiVir caught said JS, and gave me
    > the option to delete it.


    Facinating!

    Which websites would these be?


    Have A Nice Cup of Tea

    --
    One Unix to rule them all,
    One Resolver to find them,
    One IP to bring them all
    And in the Zone to Bind them.
    Have A Nice Cup of Tea, Mar 20, 2006
    #18
  19. On Mon, 20 Mar 2006 20:18:31 +1200, Have A Nice Cup of Tea wrote:

    > On Mon, 20 Mar 2006 19:01:36 +1200, Waylon Kenning wrote:
    >
    >> Dude, last time I checked Firefox also uses Javascript. Been plenty of
    >> times I've visited a website with FF and the Javascript on the page
    >> attempted to do nasty things. Luckily, AntiVir caught said JS, and gave me
    >> the option to delete it.

    >
    > Facinating!
    >
    > Which websites would these be?
    >


    From what I read in magazines, the only sites that try to install crap
    like that are porn and pirate sites...Stay away from them and you won't
    have the problem whatever the software.
    David A' Rebel, Mar 20, 2006
    #19
  20. Fishb8

    David Guest

    Have A Nice Cup of Tea wrote:
    > On Mon, 20 Mar 2006 17:45:37 +1200, SchoolTech wrote:
    >
    >>>> Installed A Squared and found a Trojan that my AV and Spyware missed.
    >>>> Teach me to visit dodgy sites and try to find serials!
    >>> That's what you get for using Micro$oft Windows, and Micro$oft Internet
    >>> Explorer and Micro$oft Outlook/Express.

    >> No, it's what you get on ANY OPERATING SYSTEM when security holes are
    >> not patched.

    >
    > That is what you can get on Micro$oft Windows even when it has been fully
    > patched!
    >

    Nonsense. He mentioned finding serials, I'm willing to bet he downloaded
    some sort of executable and WILLINGLY executed it thinking it was a
    crack/keygen/whatever. If it had been a linux-compatible executable, you
    could have done exactly the same. The only reason it wasn't is because
    noone uses linux so there would have been no point. And you can go on
    about using not running as administrator etc etc, but to me my files are
    much more valuable than the system; that can be reinstalled (of course I
    back my files up, but I'm more worried that someone else might obtain
    them through a trojan or whatever). The only way to prevent this would
    be to block execution of any program outside the system directory (ie.
    not pre-approved by the administrator) and maybe that is practical for a
    business machine (where they want to control what employees can do), but
    definitely not for a home machine used by one person.
    >
    >> Since Windows will update itself automatically, it is strange that
    >> people don't make use of this capability.

    >
    > But people DO use that security hole to give the most untrustworthy of all
    > IT companies complete carte blanche.
    >
    > Remember - a M$ Windows computer with automatic updating enabled is
    > owned by Micro$oft, and it can install whatever it likes on "your"
    > computer!


    Umm, you paid Microsoft for the privilege of installing windows on your
    machine. Chances are you also want the updates they offer.
    >
    > If you want a computer that does not automatically installing stuff behind
    > your back then you will use any variety of *nix.
    >

    I set windows update to prompt me when new updates are available. This
    way I can look through a list, tick the ones I want and hit install,
    when I want. Windows Update is in no way compulsory or even enabled by
    default.
    >
    > Have A Nice Cup of Tea
    >
    David, Mar 20, 2006
    #20
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Barry Vee

    Re: eTrust EZ Antivirus and Trojans

    Barry Vee, Aug 4, 2003, in forum: Computer Support
    Replies:
    14
    Views:
    721
    Robert de Brus
    Aug 5, 2003
  2. @}-}-------Rosee

    Re: eTrust EZ Antivirus and Trojans

    @}-}-------Rosee, Aug 4, 2003, in forum: Computer Support
    Replies:
    0
    Views:
    447
    @}-}-------Rosee
    Aug 4, 2003
  3. °Mike°

    Re: eTrust EZ Antivirus and Trojans

    °Mike°, Aug 4, 2003, in forum: Computer Support
    Replies:
    0
    Views:
    451
    °Mike°
    Aug 4, 2003
  4. Mike
    Replies:
    3
    Views:
    498
    S.Heenan
    Aug 23, 2003
  5. Frank Clement-Lorford

    Bloody Trojans and their wooden horse!!!

    Frank Clement-Lorford, Sep 2, 2003, in forum: Computer Support
    Replies:
    4
    Views:
    515
    John and Pat Ochenduszko
    Sep 3, 2003
Loading...

Share This Page