MSN virus

[YoJimbO]

Yeah weird thing about this one is the URL you see as a link is actually labelled as a .jpg so watch out for that!

[Wraith]

A good AV program should include some type of try file type protection so that if you click on a link like that it notifies you that the file is actually of a different type.. also a good AV should realize it is a batch file and prompt you to accept it. Pretty much if you use good judgement you shouldn't get dumb ass viruses like this...

[Cl0n1x]

Quote:

Originally Posted by [R-DEV]Wraith

A good AV program should include some type of try file type protection so that if you click on a link like that it notifies you that the file is actually of a different type.. also a good AV should realize it is a batch file and prompt you to accept it. Pretty much if you use good judgement you shouldn't get dumb ass viruses like this...

Thats not exactly true, AFAIK not even Norton warns you about this (fair enough norton isnt the best AV out there) and if it so happens you dnt have the latest AV or an inteligent one, ur prettu much screwed. The virus is convincing and instantaneous, its like ''Wow is this you link which ends in jpg.'' complete with smily and everything. As soon as you click on it thats it.

[[T]BludShoT]

I got the same message. If you look at the link it says something like whateverdomain.com/trickyvirus.php?thisIsNotAjpegThisIsAphpArgumentLO L.jpg

So, to those who know about the web and actually read the whole string, they will immediately spot that it's not necessarily a jpg, because some string being passed to a php page could end up doing any number of things - although admittedly some sites might pass jpg filenames this way for legitimate reasons.

My question for you guys who got the virus is, how did that happen? On my computer I did actually click the link because I, like many, just looked straight over at the end of the url and saw the "jpg" and thought ***"ok it's a safe link" and then it brought up FireFox and firefox immediately presented a box asking if I wanted to download the .pif file, so of course I was like DUH no I don't want this obvious virus.

Did you guys get that box as well and just not realise that .pif files were dangerous so you clicked to download it? Or do you use Internet Explorer, and does IE not give you a chance to accept the file or not, and just automatically downloads it?? I'd love to know, thanks.



***note: (This was STUPID thinking that even I should have known because people have been sending bad gif and jpg urls on IRC for years, and those urls are actually perfect unlike this php one (they use this thing called mod rewrite, i think, to re-interpret the link when you get to the site, but anyways I digress))

[Hitperson]

My bro does not have AVG hooked up to his MSN Downloads so it wouldn't have come up.

[Cl0n1x]

With my experience, Opera didnt ask for a download of any file, it just opened the link, then the pc shut down.... and then it was a headache to get it unistaled and even get it off my msn... my friends that use IE say the same happened with them, no download, nothing, its click and ciao

[[T]BludShoT]

Reason number 2 billion to switch to Firefox! Why are people still using anything else, I can't believe it! I've even talked to guys who consciously decided they don't want to switch to Firefox because they argue that IE is better, or just fine, and they "never have any problems with it".

Bottom line is, over the last couple years and up until today (in 1 way or another) with IE you can get viruses or nasty hijackers just by simply visiting a website or clicking on a link! This does not happen with Firefox! (because it doesn't suck)

Sigh, but anyways, if those non-firefox people out there want to just wait around until the next piece of malware magically gets onto their computer because IE offers them no protection, then I guess let them have fun with that...

[huleboeren]

Quote:

Originally Posted by [R-DEV]Fullforce

Old, like 3 weeks.


I clicked it and lo and behold, firefox tells me its a .pif file. No thanks.

<3 Firefox

Since when could firefox do MSN? :S
What site?

[[R-CON]Pantera]

Quote:

Since when could firefox do MSN? :S
What site?

When you click a link it in the convo screen, it opens it up in FireFox

[Xizor]

Quote:

Originally Posted by [R-DEV]Fullforce

Old, like 3 weeks.


I clicked it and lo and behold, firefox tells me its a .pif file. No thanks.

<3 Firefox

What he said. Firefox was like "Would you like to download this file?" which was very kind, because I gladly declined.