|
Oh well, I tried...
|
View this Thread in Original format
| FogJuice |
If anyone needs help cleaning the spyware/adware installed by the current round of ads coming from paypopup.com/clicksor.com, send me a PM.
If you visited this site within the last day or so using IE then there is a good chance you've been infected. |
|
|
| Frenchie |
Just kidding!!! LOL!!
Ya I had some people mention the infection...good luck with that |
|
|
| Omega_M |
| please give us a good deal. |
|
|
| idoru |
Kinda interesting that the thread has been deleted rather than adressed.
Swamper, elaborate plzk? |
|
|
| FogJuice |
nah... I'm not trying to be a dick about it, I'm just trying to save someone the hardship of having to re-install their OS to clean up the mess.
I watched it install at least 20+ spyware programs on a Virtual PC instance. Luckily for me, I could just delete the instance and start over with an archive copy. If it had been my host OS, I would be looking at a couple hours of cleaning, scrubing and general disinfection. From the damage it did, I'd probably just recommend someone start with a fresh install.
I'm not looking to make any money or enemies. I'm just looking out for the next poor sap that gets hit.
A lot of web sites use paypopup.com and clicksor.com to generate advertising revenue. Paypopup.com argues that they don't knowingly accept 3rd party ads that use browser exploits to install spyware/adware, but it does happen:
http://www.youngentrepreneur.com/fo...ead.php?t=10527
http://www.astahost.com/info.php/ea...com_t12066.html
http://www.blockpaypopup.com/
I'm tracking down the actual ad so that I can report it, but it won't be removed immediately so I thought I'd give people a heads up warning. |
|
|
| FogJuice |
After a bit of research, the offending ad appears to have used the WML exploit that was just discovered a few days ago.
Microsoft has released a patch (Security Update for Windows XP - KB925486) that fixes the issue. You can now go back to using IE until the next 0 day exploit is found. :)
Being the guinea pig that I am, I visited TA with the update installed (once again using Virtual PC) and was immune from the trojan that hit me the other day. |
|
|
| nchs09 |
 |
|
|
| Swamper |
Your thread was moved to the Site Suggestions area (from Music Discussion). Now you post another one in here? :rolleyes:
You don't just come on here and make it sound like TA is behind infecting people's computers. Titles like "So noone cares that TA installs adware?" are a bit of a stretch.
You're also exaggerating the chance of infection - especially since the popups in question only have a chance to show up if you click a link within the forums and are not logged in.
Anyways, paypopup ads were disabled soon after your thread got moved. Thanks for bringing it up but you totally went about it the wrong way. |
|
|
|
|
