A friend of mine opened a site he thought was safe the other day and was infected with about 5 different trojans and such. Had to get a new computer. I’m idly curious if it was the site, as he claimed, or something else he was actually doing. Is there any way to tell if that site really is infested without risking my own computer?
Web of Trust. Stops you before you go to site with a really bad rep. Says there’s a version for all the browsers.
Malware Bytes has an online feature that tries to detect suspicious behavior. They also have a list of known bad sites.
That list has already saved me one time. I clicked on the link and Malware Byte blocked it before it loaded. I got a message telling me why it blocked the site.
You have to register to turn on these features.
He went to a website and a couple of days later bought a new computer?
Sounds like he wanted a new computer. Does he have to justify the expense to a partner or something?
A new computer? That is a bit of overkill isn’t it? At the very worst a full reformat would take care of the problem.:smack:
I’ve had a couple of very nasty viruses (two in the last decade), but nothing that necessitated buying a new computer. As stated, un- and re-installing everything, done by someone who knows what they’re doing, does the trick for qa fraction of the cost of a new computer.
I have the paid version of AVG; it warns me if I’m about to open a dodgy website. IIRC, the free version did the same thing.
Really? A virus works on the software. It does not damage the hardware (unless you are Iranian and building a bomb). People need to learn how to avoid problems and fix those that happen.
No, no. He had to get it the same day. Well, it was due soon anyway, he just had to speed it up a bit.
I had a computer virus so virulent that I not only had to buy a new computer, but also a new dog, cat and set of kids. The wife? She left with the computer repair guy. But, I’m not complaining…
Web of Trust is great software.
http://www.google.com/safebrowsing/diagnostic?site=www.example.com
Change www.example.com to the site address.
I’m still sneezing from the computer virus I got.
Firefox has an option (on the Security tab of Options) to “Block Reported Attack Sites”. I believe it is based on a list maintained, and frequently updated, by Google of sites that have such problems. It automatically warns you if you try to go to a bad site. I believe most other modern browsers have a similar built in facility. I have used Web of Trust, but found it far too intrusive. It was always warning me of stuff that was actually quite harmless. Firefox’s built in protection, on the other hand, has worked well for me.
If you are among the first few people to visit a bad site (or one that has recently been hacked and had malware put on it), then yo are out of luck, as it will not have been reported yet. Unfortunately, no-one has any way of knowing what sites ae bad before someone gets hit by it.
There are three other simple precautions against attack sites that I have found helpful. Prevent flash apps from playing automatically (I use the FF addon Flashblock, although it has lost some of its effectiveness recently), do not use Adobe Reader as your default PDF reader, and make sure you set your browser to download PDFs instead of displaying them automatically in the browser window. If your browser downloads a PDF or similar file when you are not expecting it to, do not attempt to view the file, but delete it immediately.
I look for redness, swelling, warmth, or fluctuance at the site. Also, if the patient has sweats or chills or myalgias, infection is very possible.
If the site seems ripe enough, I open it and release the infection, and sometimes leave a wick in to ensure adequate drainage.
What?
:smack:
You didn’t say but I can only assume he wasn’t running any antivirus software which, unless you’re not connected to the internet at all, is simply not viable. Even the free version of AVG has a ‘link scanner’ which will do what you need.
Simply looking at the TLD can be a good habit. Obviously “thought it was safe” or even “was safe until site was infected” doesn’t stop that, but staying out, for instance, the Russian websites helps.
Running things like Noscript and Ghostery can help. Stopping scripts helps with some vectors.
ClearCloud DNS does a good job of blocking bad sites.
Sorry, looks like they stopped ClearCloud.
A lot of programs like Avast and AVG will do link protection. The problem is, that it slows your computer down a lot, because the antivirus is going to check all the links on a page before letting you see it.
Spybot also has an immunity feature but it only works with IE.