cancel
Showing results for 
Search instead for 
Did you mean: 

Trojan Virus here

tag
alocksley
Regular Contributor

Trojan Virus here

FYI Getting the attached popup repeatedly in the credit cards section of this site

.trojan.jpg



...and debt free.
Message 1 of 14
13 REPLIES 13
Gunnerboy
Established Contributor

Re: Trojan Virus here

Curiously, that's the username of one of our members.  My Malwarebytes used to keep detecting it on any page with their posts.



"Not everyone who helps you is a friend, and not everyone who challenges you is an enemy."
Message 2 of 14
ElvisCaprice
Regular Contributor

Re: Trojan Virus here


@alocksley wrote:

FYI Getting the attached popup repeatedly in the credit cards section of this site

.trojan.jpg


What are you using for a browser?  Security software?

I'm getting nothing with the latest Windows Edge which has it's own built in security.  


BofA Platinum Honors:
Citi:

U.S. Bank:

Current Churn For SUB:

Backup Socks:

CB Debit Cards:
Message 3 of 14
Gunnerboy
Established Contributor

Re: Trojan Virus here

Only with Chrome.



"Not everyone who helps you is a friend, and not everyone who challenges you is an enemy."
Message 4 of 14
GZG
Valued Contributor

Re: Trojan Virus here


@Gunnerboy wrote:

Curiously, that's the username of one of our members.  My Malwarebytes used to keep detecting it on any page with their posts.


malwarebytes is picking up on somebody's username, matching them to a suspicious website and labeling myfico as suspicious? 

 

hilarious

Starting FICO 8:
Current FICO 8:



0/6, 2/12, 7/24
Message 5 of 14
Varsity_Lu
Frequent Contributor

Re: Trojan Virus here


@GZG wrote:

@Gunnerboy wrote:

Curiously, that's the username of one of our members.  My Malwarebytes used to keep detecting it on any page with their posts.


malwarebytes is picking up on somebody's username, matching them to a suspicious website and labeling myfico as suspicious? 

 

hilarious


I think Mark Beiser embedded his hyperlink into his signature. That's where the warning is coming from. It's actually his site.

 

Update: it's not a direct hyperlink, but the credit card images in his signature. He is hosting them on his site and the image hyperlink is what is causing the warning.

 

Hey, @markbeiser , you might want to check your server.

Blue Cash PreferredBlue Cash EverydayHilton HonorsSavorQuicksilverVoice Rewards + Perks Checking
Mechanics Savings BankHuntington National BankCapital One, N.A.Fidelity Investments
FICO® 8: 797 (Eq) · 784 (Ex) · 760 (TU)

Message 6 of 14
Minimalist
Established Member

Re: Trojan Virus here

Oddly I ran the same test and got nothing.  Newest version of Firefox on the newest MacOS version.

Message 7 of 14
IsambardPrince
Established Contributor

Re: Trojan Virus here

Malwarebytes is a Windows antivirus program. Windows antivirus programs are often just being stupid and giving false positives, because they'll do that, and then they'll miss ransomware that encrypts all your files, or they'll start deleting parts of Windows, they can do anything. They're a total mess. They hog resources, they slow down the computer. They're mostly useless because they only have "opinions" and no facts.

 

There's so much Windows malware out there that trying to detect specific programs is useless, so they rely on generic behavior detection routines, heuristics, and the entire concept is just trash. Some antivirus programs used by a lot of people have been found to have malicious routines themselves, including some popular "free" ones that are spying on you.

 

A garbage program for a garbage operating system. Security involves processes, it is not a product.

 

With Windows you can never tell what's a virus and what isn't. Not really. It's such a complete disaster. It was written without any concept of security, and with lots of bad code, in a time when they were really concerned with neither security nor quality because they had no serious competitors anyway.

 

Today that's a liability for them, because there's plenty of other operating systems. Windows is sort of a 'remaining value' thing for them, to try to stuff adware and their slopbot "CoPilot" into.

 

The utter lack of security is one reason I haven't touched Windows on any computers I've owned in 20 years. At first I mostly used Linux systems, then eventually moved to a really decked out Chromebook with high end specs. Much of my Linux-ey workloads function fine in Crostini, which is properly walled off from the host in a VM (I have VirGL enabled for accelerated graphics), and there's an Android system and Borealis Steam.

 

I do not require Windows for anything.

 

Lately, Microsoft has been resorting to "slopbot" articles about "Linux" to Googlebomb the news, and really sideways legal attacks on their critics to detract from the fact that little of their stuff actually works right and their Microsoft 365 which freaking dies sometimes for days is having "48% price hikes" in certain regions.

 

Well, I think it's stupid to subscribe to an office program. I run the Flatpak'd version of LibreOffice in Crostini, for free. I don't need to worry about recurring payments and server outages, and data breaches on a server that has my documents. Smiley Happy

 

Anyway, starting over from scratch means that Google could design Chromebooks right, avoiding massive attack surfaces and sources of bugs the PC suffers from, from the moment it boots up, like the Intel UEFI firmware disaster that Windows runs on top of. Chromebooks don't even have that. They have firmware that works right. When I looked at UEFI interfaces, I thought it was bad, when I noticed that to avoid having to pay anyone to start over and do it right, Windows PC vendors were just copying old BIOS code that was glitchy and sometimes 30 years old, I laughed.

 

One of their main arguments was that BIOS was obsolete and buggy, and then they copied it and created modern interfaces that were horrid.

 

Lenovo business PCs with UEFI get firmware updates, and the firmware has tons of bugs and they're always moving things around, and you go to apply the updates and sometimes they're so bad they brick the computer and require shipping it to a service center. Ain't nobody got time for that. The people that didn't know what they were doing and made a firmware that does all sorts of horrible things the first time have messed with it again. Better pass it to find out what's in it, right?

 

If the Chromebook ever "goes bad", I'll probably ditch x86 computers completely and get a Pi. They're getting a lot faster than they used to be and they can run a complete Linux system for $150 plus a monitor and keyboard.

 

ChromeOS has a lot of abstraction layers and those can be good (security) or bad (locking the user out and harming them).

 

Ironically, the Windows system I liked best were the Chicago Kernel ones because they were such a complete hacked up mess that you could extend them however you wanted and they were too stupid to stop you. Before I switched to Linux full time, I always had a Windows 9x box, even to the point where it became comical to most people that I was still using one.

 

The BIOS that came with the computer was typically never updated. Some could be, but anyone who knew better knew to leave it the hell alone unless there was a very serious problem the new version fixed. Today with UEFI you can't do that because it has massive security vulnerabilities.

Message 8 of 14
IsambardPrince
Established Contributor

Re: Trojan Virus here


@ElvisCaprice wrote:


What are you using for a browser?  Security software?

I'm getting nothing with the latest Windows Edge which has it's own built in security.  


Microsoft Edge is just Chromium with Microsoft's "spyware" and ads put in the binary. And yes, "security" software is often a ruse for spying because the data it collects can be used in other ways.

 

They also have patches that degraded the program so much that they were rejected by the Chromium Project. Including one meant to reduce memory paging bloat due to the inefficient memory manager in Windows operating systems, but which can slow down some benchmarks by up to 26%, and is hardest in all the places you don't want stalls.

 

One thing Windows Edge has that other browsers don't is the rotting guts of Internet Explorer inside of it, mostly for corporate Intranet sites that "standardized" on IE's buggy view of the Web circa 1999. These "rotting guts" continue to be the source of security issues in Windows 11 even though Microsoft claims IE 11 is gone. It's in fact possible to even start it as a program, not just the "Trident" engine, the complete browser.

 

In Windows 98, I used some custom setup programs to remove the "webby garbage" from it, including Internet Explorer. It deleted the IE shell, cleared all the registry keys, unregistered the COM objects, and removed them, and put in the Windows 95 OSR 2 shell. I used a setup like this for a long time. There was a similar program for Windows XP.

 

On key theme is everything Microsoft touches is bad. When they get code from someone else and touch it, they'll just make it worse.

 

They almost delayed Linux 6.13 because Microsoft apparently doesn't understand the fundamentals of Control Flow Integrity.

Message 9 of 14
IsambardPrince
Established Contributor

Re: Trojan Virus here


@GZG wrote:

@Gunnerboy wrote:

Curiously, that's the username of one of our members.  My Malwarebytes used to keep detecting it on any page with their posts.


malwarebytes is picking up on somebody's username, matching them to a suspicious website and labeling myfico as suspicious? 

 

hilarious


I suppose I have to be careful with what I say because I angered at least one security charlatan badly enough that he started stalking me a few years ago, but I would not put stock in the "security" industry whereas "stock" is your important data. 

 

Google at least seems to take things seriously andd do as well as can be expected though from what I've seen of my Chromebook.

 

But that's security as a process. Security as a product is usually nothing more than a soothing placebo. Sometimes even counterproductive.

 

Examples of counterproductive security products:

 

The user may believe that "since I have antivirus software" it's safe to run any program they find when it is not.

 

The user may get tired of seeing warnings because they know they're frequently popping up and often wrong, and ignore one when it is serious.

 

(The popup that is the subject of this post is an example of the nonsense that can cause "warning fatigue".)

 

The product itself might end up spying on them.

 

The product itself may interfere with the normal and expected performance and tasks the computer should be doing.

 

Many years ago when I used Windows, I did get infected by a botnet worm.

 

However, I was able to study how it worked and counterattack the ring that was running the network, by infiltrating the C&C server, and bringing their network down by disinfecting many thousands of zombie computers all at once.

 

In my experience with Windows malware:

 

The really bad stuff is almost impossible to detect or remove. It will go to great lengths to hide its presence, and this is aided greatly by the horrendous and sometimes undocumented design of Windows itself, where some parts of the ssytem even exist in a separate context from the antivirus software (as Windows has pluggable API modules, a "Native API", data stream forks in the file system, and other junk), preventing it from helping you at all. In the case of the "Native API", most of it actually has been documented, just not necessarily by Microsoft. Windows has been largely reverse engineered by various people who wrote documentation and open source code themselves, so it's not like it's some great mystery.

 

I would recommend just not using Windows. Literally anything else you're likely to choose is designed better.

Message 10 of 14
Advertiser Disclosure: The offers that appear on this site are from third party advertisers from whom FICO receives compensation.