core.insightexpressai.com trojan

cradom · Dec 12, 2013

Has anyone else noticed that all these people with 'viruses' joined the forum on Dec 10 and had less than 6 posts?
Just saying.

bobtomay · Dec 12, 2013

Yeah - we noticed - count on it - and all of them having the problem "only" with AOL - all on the same day... at the same time...

I find it hard to believe that company is still in business.
Why are folks still using that?
Think that thing got pulled from my computers around '97.
Then a couple years later while doing tech support for MS and getting the phone calls where AOL was passing the buck instead of fixing their own crap, swore their junk would never touch a computer in my house again.

Also an extremely strong indicator the problem is with an ad server at AOL.
No virus... nor trojan... nor anything else more malicious than the other few hundred cookies likely already on their machines.

mrplow · Dec 12, 2013

bobtomay said:
Yeah - we noticed - count on it - and all of them having the problem "only" with AOL - all on the same day... at the same time...

I find it hard to believe that company is still in business.
Why are folks still using that?
Think that thing got pulled from my computers around '97.
Then a couple years later while doing tech support for MS and getting the phone calls where AOL was passing the buck instead of fixing their own crap, swore their junk would never touch a computer in my house again.

Also an extremely strong indicator the problem is with an ad server at AOL.
No virus... nor trojan... nor anything else more malicious than the other few hundred cookies likely already on their machines.

The only reason people still use AOL is because Compuserve is no more

Corvette63 · Dec 12, 2013

vansmith said:
I didn't say that it popped up at the BBB site - I included that to reaffirm what has been said here which is that Insight Express is a normal company, not some malevolent entity.

This is all tangential and while you make an important point, none of this is directly relevant to something that happens normally with certificates.

As for the "evidence" online, it's all of questionable quality. This website seems to equate a domain name with malware which is just laughable (that's like me saying that the Ford factory is responsible for how people use their cars) and the second result I found is Yahoo Answers which is, well, Yahoo Answers.

Let's deconstruct this. The core.insightexpressai.com domain is owned by Insight Express (source), "an advertising company that is part of a network of sites, cookies, and other technologies used to track you, what you do and what you click on, as you go from site to site, surfing the Web" (source). Sounds bad and shady until you realize that many companies do this including Google. Returning for a moment to the root of the supposed "malware," most complaints say that the "malware" redirects you to that website suggesting, as many websites do, that this changes your DNS settings. I'm willing to bet that this isn't actually the case. If you go to System Preferences > Network > click your adapter > Advanced > DNS, what does it list?

I was not claiming that you said the popup appeared on the BBB site. I was referring to the site that was given an "A+" by the BBB site.

Corvette63 · Dec 12, 2013

lifeisabeach said:
So if it's on the internet, it must be true...

No, but when DOZENS of sites, including long-standing, credible forums - largely populated by myopic technophobs, whose entire lives are bereft of any and all social interaction, while sitting in front of their monitors 19 hours a day, clad in boxer shorts, in their mothers' basements - say something is harmful malware, it's a pretty good bet there's something to it.

Nice photo. You and your prom date? Aqua blue is your color.

Corvette63 · Dec 12, 2013

cradom said:
Has anyone else noticed that all these people with 'viruses' joined the forum on Dec 10 and had less than 6 posts?
Just saying.

Yeah, well, I may going out on the proverbial limb here.....but "all these people" probably joined on the 10th, because that's when the issue started. Just an outlandish theory, mind you.

mrplow · Dec 12, 2013

Corvette63 said:
No, but when DOZENS of sites, including long-standing, credible forums - largely populated by myopic technophobs, whose entire lives are bereft of any and all social interaction, while sitting in front of their monitors 19 hours a day, clad in boxer shorts, in their mothers' basements - say something is harmful malware, it's a pretty good bet there's something to it.

Nice photo. You and your prom date? Aqua blue is your color.

Sorry but there's no way you can know those things or indeed vouch for the validity of the information. In fact, if they were that certain, they'd surely have a resolution for it.

There are thousands of sites claiming the existence of UFOs and aliens but I still can't get a cheap city break on mars.

If you want to post the single most reputable link from those dozens of sites I'll look into this malware and then I'd be happy to head out and get one of my test rigs 'infected'.

Maybe then I can find some removal instructions. Something none of these dozens of sites seem to have come up with.
Alternatively all the poor people being abused by AOLs terrible business practises could maybe start getting on the phone and complaining and or leaving the 'service'. I'm betting that'll cure it but in the interim if you post further info I'd be happy to take one for the team

Lifeisabeach · Dec 12, 2013

Corvette63 said:
Nice photo. You and your prom date? Aqua blue is your color.

He's a French model. "Uh, Bonjour!"

You don't get that, do you?

Corvette63 · Dec 12, 2013

mrplow said:
Sorry but there's no way you can know those things or indeed vouch for the validity of the information. In fact, if they were that certain, they'd surely have a resolution for it.

There are thousands of sites claiming the existence of UFOs and aliens but I still can't get a cheap city break on mars.

If you want to post the single most reputable link from those dozens of sites I'll look into this malware and then I'd be happy to head out and get one of my test rigs 'infected'.

Maybe then I can find some removal instructions. Something none of these dozens of sites seem to have come up with.
Alternatively all the poor people being abused by AOLs terrible business practises could maybe start getting on the phone and complaining and or leaving the 'service'. I'm betting that'll cure it but in the interim if you post further info I'd be happy to take one for the team

Hmmmm.....I think invoking "UFO'S" when discussing malware, weakens your argument, but your point about AOL's chitty services is both accurate and well taken In any event, thanks.

bobtomay · Dec 12, 2013

And we're done here...