Wednesday, March 21, 2007 10:57 AM sandi

Another Winfixer outbreak

It has been reported on a spyware mailing list that I subsdribe to that a winfixer outbreak has been detected at the following URL:

hxxp://money.aol.com/news/articles/_a/technical-goof-wipes-out-38-billion/20070320140609990001

I visited the above URL and was immediately redirected to www.systemdoctor.com and I also saw the classic winfixer false alarms.  It has only happened once, but once is enough.

I will be grateful if any computer professional who reading this and who is using a fully patched computer running IE7 could check the above URL to see if they can reproduce the incident.  You may need to refresh the page many times, depending on what advertisement cycle you hit.

The ads may be IP/region specific.

# re: Another Winfixer outbreak

Tuesday, March 20, 2007 9:46 PM by Steve

Sandi,

I have gone to the site and refreshed many times but did not get redirected. I am using IE7 with Vista and I hail from the far west of Europe,

regards

Steve

# re: Another Winfixer outbreak

Tuesday, March 20, 2007 11:42 PM by J.C.

AOL took down all ads on the site.

# re: Another Winfixer outbreak

Wednesday, March 21, 2007 12:13 AM by sandi

@J.C.:  I'm still seeing adverts at the URL, what are you seeing?

I'm kicking myself I didn't set up some video capture or logging before checking that site; from the description I saw I was expecting the typical activex download attempt and was set up to only grab some screenshots - instead I saw a redirect away from the AOL page before it had even completed loading.

# GOTCHA! Winfixer and AOL

Friday, March 23, 2007 7:14 PM by Spyware Sucks

I've posted a couple of times on this blog about how visits to AOL pages were redirecting at random to

# GOTCHA! Winfixer and AOL

Friday, March 23, 2007 7:17 PM by Spyware Sucks

I've posted a couple of times on this blog about how visits to AOL pages were redirecting at random to

Leave a Comment

(required) 
(required) 
(optional)
(required)