The Techinator Blog » Malware http://thetechinator.com/blog Thompson Computer Services Tech Blog Thu, 12 Jul 2012 00:09:34 +0000 en hourly 1 http://wordpress.org/?v=3.1.4 DNS Changer Trojan http://thetechinator.com/blog/2012/07/dns-changer-trojan/ http://thetechinator.com/blog/2012/07/dns-changer-trojan/#comments Wed, 11 Jul 2012 21:40:00 +0000 Kelly http://thetechinator.com/blog/2012/07/dns-changer-trojan/ On Friday, July 6th, 2012 Kelly Thompson was interviewed by David Bach on Bach Talk about the DNS Changer Trojan and how to best protect your computer from it and all other malware.

Listen here:

Or, download to your MP3 player or smartphone using these links:

Notes and Links:

The DNS Changer Trojan may have ended up as more hype than anything, but it did apparently affect thousands of computers.

More information at http://dcwg.org/

More information about our Western Slope Computer Club and how we can help you keep your computer malware free at http://www.westernslope.cc

As always, Contact Us at TCS if you have any technology issues.  Thanks for listening!

]]> http://thetechinator.com/blog/2012/07/dns-changer-trojan/feed/ 0 Drive-By and Rogue Malware Infections http://thetechinator.com/blog/2011/01/drive-by-and-rogue-malware-infections/ http://thetechinator.com/blog/2011/01/drive-by-and-rogue-malware-infections/#comments Mon, 10 Jan 2011 21:28:12 +0000 Kelly http://thetechinator.com/blog/2011/01/drive-by-and-rogue-malware-infections/ What are Drive-By and Rogue Malware Infections and how do you protect against them?  For the answers, watch the video below:

We’re seeing more Rogue malware infections from Drive-By Downloads and Fake Alerts. Find out what they are and how to protect against them by watching this video.

Here are the notes and links discussed in the video above:

Drive-By:

The “AdShufffle” (with 3 f’s instead of 2) attack aimed at ad networks from Google and Microsoft to spread the “HDD Plus” malware.  More information from Security News Daily.  AdShuffle is a legitimate advertising network, the perpetrators of this attack added an “f” to their domain name and fooled the Google and Microsoft ad networks into allowing the ads.  Users who visited pages that displayed the malicious ad would have their computers infected if Internet Explorer, Java, or Adobe Reader products were not up to date with patches.

Fake Alert:

Here are some examples of an actual Fake Alert that I observed recently:

The first pop-up looked like this (Click on the picture to see the full-size image, which is easier to see):

01 Drive by 1

After clicking the red close box, I received this second pop-up:

02 Drive by 2

Even after closing that, this window popped up:

03 Drive by 3

Notice how the “Windows Security Alert” looks very legitimate.  If you look closely at the screen, however, there are a few typos.

What to do if your computer does get infected

We highly recommend scanning with a product called Malwarebytes.  Download the free version here.  You may want to reboot into safe mode with networking to run your first scan, if you need assistance with that, let us know.  You may want to run another scan after rebooting normally, and then scan with your antivirus software as well.  Be sure to update Malwarebytes and your anti-malware software prior to running the scans.

]]> http://thetechinator.com/blog/2011/01/drive-by-and-rogue-malware-infections/feed/ 0