Page 10 of 10 FirstFirst ... 678910
Results 136 to 143 of 143
  1. #136
    Joined
    Feb 2001
    Location
    near the sea-port of Antwerp, Belgium
    Posts
    12,856

    Cool Re: [Security] WMF Zero-Day Exploit




    here 's the reply I got from Steve Gibson after I emailed him Ned Slider's link together with the quoted comment ...



    Hi!
    What do you think of this new find; the saga continues ...

    no patch (as yet) available !

    good work M$
    Yep. They're NOT doing one, so I am.

    ______________________________________________________________________
    Steve.








    Fold with what you have, Every Work Unit will make a difference.

  2. #137
    Joined
    Jul 2001
    Location
    UK
    Age
    51
    Posts
    20,229

    Re: [Security] WMF Zero-Day Exploit

    Despite the existance of a patch, this threat continues to burn users:

    http://www.f-secure.com/weblog/archi....html#00000779

    and MS have now released a patch for Vista (beta) too:

    http://www.microsoft.com/downloads/d...displaylang=en

    Ned

  3. #138
    Joined
    Apr 2001
    Location
    New Jersey
    Posts
    7,606

    Re: [Security] WMF Zero-Day Exploit

    This is the ugliest thing I've ever gotten on my PC, worse than the CHC spacefiller virus I got 10 years ago.

    Finally got rid of it; ewido seems to be able to get rid of it and prevent it from coming back once you reboot when you install it, but the popup kept coming up, even in safe mode, so I used kill box to delete the .dll that was doing it and now it's all good.

    The guy who made this should be castrated.
    Rig:

    Athlon 64 X2 7750 Kuma @ 3360 Ghz @ 1.475V (14.5x223)
    (NB: 2240, HT: 2015)
    Gigabyte MA-790X-UD4P
    Sparkle GeForce 9800 GTX+ (755core, 1350 mem)
    Onboard sound (yuck)
    4GBs Mushkin DDR800 (6/6/6/18/24 @ 928mhz)
    2x74GBs RAID 0
    2xWD 1TB HD RAID 1
    Plexter DVD Burner
    Rosewill 530W

  4. #139
    Joined
    Apr 2001
    Location
    Los Angeles
    Posts
    21,104

    Re: [Security] WMF Zero-Day Exploit

    LOL. The spyware itself is pretty much the same stuff you can get anywhere, it is nasty though. I think the thing about it is that the exploit installs the downloader trojan so fast it is a bit shocking to people. Had one guy that went into a panic and pulled the power cord out of the wall. Didn't help.

  5. #140
    Joined
    Jul 2001
    Location
    UK
    Age
    51
    Posts
    20,229

    Re: [Security] WMF Zero-Day Exploit

    Quote Originally Posted by Senor Panadero
    LOL. The spyware itself is pretty much the same stuff you can get anywhere, it is nasty though. I think the thing about it is that the exploit installs the downloader trojan so fast it is a bit shocking to people. Had one guy that went into a panic and pulled the power cord out of the wall. Didn't help.
    Ahh - the joys of broadband. Maybe we should all go back to 28Kbps dialup so we can spot it coming and pull the plug in time

    For sure, this crapware is getting more sofisticated at hiding itself and protecting itself against removal tools. It's way past what Joe Average user is capable of removing with commonly available tools. I hope those poor folks who get infected are all phoning Microsoft's free helpline for removal instructions

  6. #141
    Joined
    Dec 2000
    Location
    myrtle beach,south carolina, U. S. of A.!
    Posts
    12,696

    Re: [Security] WMF Zero-Day Exploit

    Quote Originally Posted by Ned Slider
    Ahh - the joys of broadband. Maybe we should all go back to 28Kbps dialup so we can spot it coming and pull the plug in time

    For sure, this crapware is getting more sofisticated at hiding itself and protecting itself against removal tools. It's way past what Joe Average user is capable of removing with commonly available tools. I hope those poor folks who get infected are all phoning Microsoft's free helpline for removal instructions
    that would be a waste of fifty cents, and about an hour of your time!

    microsofts support is about like aol's..... non-existant!

  7. #142
    Joined
    Mar 2002
    Location
    Sarasota, FL
    Age
    55
    Posts
    2,495

    Re: [Security] WMF Zero-Day Exploit

    oz man, that sucks you got that. I'm glad you got rid of it though.

  8. #143
    Joined
    May 2003
    Location
    Rhode Island, USA
    Age
    72
    Posts
    4,935

    Re: [Security] WMF Zero-Day Exploit

    Just thought I relate something that happened to me.

    I patched my DFI XP os on C drive as soon as Ned first announced the WMF Exploit but I didn't patch the 2K os on E drive until a few days later.
    I only use E drive for testing - no surfing or e-mail and the only time its been online is to go to MS for updates or Futuremark to post 3DMark results.
    Somehow during that time when it wasn't patched I managed to get infected and it showed up last Sunday morning during an AVG virus scan.

    I ran Kaspersky online



    and came up with a total of 4 files so I shut off System Restore and deleted the 4 files then ran Kaspersky again.
    Nothing was detected so I turned on Restore again.

    Since then I've run Kaspersky twice and came up clean both times.
    My HTPC

    ASRock 970 Extreme3
    AMD FX-4100 w/Coolermaster GeminII S cooler
    M Station HT-1100 HTPC Media Center case
    Antec 480 NeoPower PSU
    Kingston HyperX Blu 8GB KHX1600C9D3B1K2/8GX
    Gigabyte GV-R467ZL 4670/1GB video card
    Hitachi HDS721050CLA362 500GB SATA hd
    Windows7 Ultimate x64 & Ubuntu 12.04 LTS (partitioned)
    Pioneer DVR-215D SATA DVD burner
    Samsung 40" 1080p 120Hz LCD HDTV LN40C630


    You can teach an old dog; it just takes longer.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •