On Dec 2, 2007 8:09 PM, Rony gnulinuxist@gmail.com wrote:
This virus does not reach the stage of executing after download. As soon as you click on the download link, instead of the file download beginning, the system goes into a reboot. It has got infected. On reboot, it brings in the bigger payload which causes irreversible damage as it reboots everytime an admin command is run. If the net is shut off just before the system boots again, the bigger payload is kept away and the system can be restored to an earlier clean period. This is something very recent so I was wondering if there has been some major attack on the web servers.
I don't think it's got anything to do with the web servers. I think replacing windows with Linux will solve the problem ;)
Why does Linux save a .exe file as .exe.bin in the vfat partition when downloading directly from Firefox? Is that an indication of the attacks or is it normal?
It's a bug:
https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/77788