Scumware, plain and simple.

ByMike McBride Reading Time: 1 minute

One of my users got hit with spyware today. It seems they went to a website that used either an ActiveX or popup javascript to drop an .exe file in their Temp folder at 8:59AM. This .exe then went to work and by 10AM his PC was infected with eZula, eXact search, WhenUsearch, MaxSpeed, Bargain Buddy, and about 10 other spyware/adware programs. I was able to get it clean after a few hours of work, I think, thanks to a combination of a lot of Googling, AdAware, Spybot Search and Destroy, and the background info provided by TrendMicro on the original culprit, WinWildApp, which in turn helped me find the file and process that was restarting itself and downloading new stuff as soon as I tried to put it back on the internet!

Now I have to figure out what IE or other setting let this f#$%^r get downloaded in the first place, and how that setting got overlooked or changed. Needless to say, I am not a happy camper!

By the way, the fact that one of the very first popup ads these wonderful little programs brought up on his PC was a warning that he had been infected with spyware and a link to a cleaner made me even angrier!

Share with your friends!
LinkedInBlueskyMastodonThreadsRedditBuffer

Similar Posts

  • Was the stock market drop the first sign of an AI market disappointment?

    ByMike McBride Reading Time: 3 minutes

    The question is, can the large tech companies come up with a clear explanation of where AI is going that will convince shareholders that there is long-term value? So far, I don’t think they have, and I say that as someone who generally likes some of the AI tools out there. I think they are reasonably helpful around the edges of my work. They cut time out of my research efforts and helped me with writing. They haven’t changed the world, and it’s not clear that they can do that in their present form. Without that, what are the billions in investment and all the electricity usage for? 

    Big tech will need a better answer to that question than it has, or investors will walk away even more than they did last week. 

  • Well, nevermind then..

    ByMike McBride Reading Time: 1 minute

    I was able to run in those two conference rooms in between meetings this afternoon, only to discover that they both seem to work fine now. Figures! I’m still going to try and take advantage of the mystery network problem to put together a proposal on using a router with DHCP to give easy internet…

  • Problems, problems

    ByMike McBride Reading Time: 1 minute

    What’s going on today, all of our connections to the internet have been rather flaky, both through the cable modem and dial-up with a different ISP? Some sites I can’t get to at all, others are SLOW, and others I can access some parts one time, other parts another time. Maybe the strong winds outside…

  • Amen!

    ByMike McBride Reading Time: 1 minute

    I was reading an interesting article from InfoWorld this afternoon about the coming Office 12 version. I’m going to remain uneasy about backwards compatibility until I have the chance to see Office 12 in action, despite what others might say about it, but just seeing that other people are aware that most end users don’t…

  • Solutions..

    ByMike McBride Reading Time: 1 minute

    It was some combination of not eating and not having the right environment that led to my brain fade, I’m convinced of it. I went and grabbed some lunch, came back to the office, popped in an appropriate Clash CD to get the mind moving, and voila! The answer hit me. I was doing two…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)