Has This Happened to You Yet?
Published February 05, 2003
- It's a browser toolbar that some swear is doing "drive-by downloads" — installing itself without users' permission — then taking over their systems and making it impossible to uninstall.
"When I find the bastards who programmed this thing I'd be happy to castrate them with a pair of dull pinking shears," fumed one of Xupiter's many unhappy victims in a newsgroup posting.
Xupiter is an Internet Explorer toolbar program. Once active in a system, it periodically changes users' designated homepages to xupiter.com, redirects all searches to Xupiter's site, and blocks any attempts to restore the original browser settings.
The program attempts to download updates each time an affected computer boots up, and has been blamed for causing system crashes. Several versions of Xupiter also appear to download other programs, such as gambling games, which later appear in pop-up windows.
Some said that Xupiter has taken over their browsers.
"Random words and characters now appear when I attempt to enter info on search sites or other forms. It's as if there's a ghost in my machine," New York resident Beth Vanesky said.
...."Xupiter is the worst thing I've ever personally encountered on the Internet," said Ed Olexa. "You only realize that it has been installed when you start your browser and see that Xupiter's search page is now your homepage."
Olexa had to manually edit his system registry to remove Xupiter.
"Xupiter seems to have the ability to reinstall itself if each and every component is not removed," Olexa said. "Computer novices might never really get rid of it."
Healan recommended Spybot Search & Destroy to eradicate the program. [Wired]
- Has This Happened to You Yet?
- Published: February 05, 2003
- Type:
- Section: Culture
- Writer: Eric Olsen
- Eric Olsen's BC Writer page
- Eric Olsen's personal site
- Spread the Word
- Like this article?
- Email this
Save to del.icio.us
Comments on this articleComments
Sloppy clicking on my part, I'm guessing. Read the Wired articles for their speculation on th various methods by which it gets in, including feeding off of the NY Times and LA Times sites, both of which I visit often.
Eric, thanks for the e-props!
Apparently there is a flaw in some of the older versions of IE that could allow this to install WITHOUT YOUR PERMISSION. Of course, many of the net-heads on Slashdot would tell you to just use Mozilla to be safe... :)
Then again, were all programmed to ignore the little security warnings (I laughed myself silly the fist time I saw "Always trust software from Microsoft Corporation" on one of these) and EULA (license agreements). Most people just blindly click through. Don't feel bad, but be more aware.
I predict that 'personal' computer security is going to become a hot issue in the coming years. Dell, Microsoft, AOL, et al. don't tell their millions of customers how to protect themselves against all of the nasties out there.
Anti-virus and hardware firewall are a good start. They need to be kept up to date. Can 'average' users do this? With more difficulty that necessary. I find that even most small businesses are vulnerable. This process has to become automatic, or most won't do it.
Vendors could go a long way in automating this process for users. Microsoft has their 'Automatic Update' feature on their newer operating systems, and that's a good start. But I need to remember to manually fetch and upload firmware to my firewall. Too hard.
I guess I shouldn't complain too much, it keeps food on the table :).
Kurt Greiner
Add your comment, speak your mind
(Or ping: http://blogcritics.org/mt/tb/3031)
So how exactly does Xupiter get into one's system to begin with? That's the detail I'm not getting here.