Oh no, you're thinking, yet another cookie pop-up. Well, sorry, it's the law. We measure how many people read us, and ensure you see relevant ads, by storing cookies on your device. If you're cool with that, hit “Accept all Cookies”. For more info and to customise your settings, hit “Customise Settings”.

Review and manage your consent

Here's an overview of our use of cookies, similar technologies and how to manage them. You can also change your choices at any time, by hitting the “Your Consent Options” link on the site's footer.

Manage Cookie Preferences

Necessary. Always active Read more

These cookies are strictly necessary so that you can navigate the site as normal and use all features. Without these cookies we cannot provide you with the service that you expect.
Tailored Advertising. Read more

These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.
Analytics. Read more

These cookies collect information in aggregate form to help us understand how our websites are being used. They allow us to count visits and traffic sources so that we can measure and improve the performance of our sites. If people say no to these cookies, we do not know how many people have visited and we cannot monitor performance.

See also our Cookie policy and Privacy policy.

Customise Settings

Security

Trojan serves porn off home PCs, not many dead

AOLers chief victims

Thomas C Greene Sat 12 Jul 2003 // 09:28 UTC

A new Trojan is turning Windows PCs into porn and spam relays, possibly as a means of harvesting credit card details, researcher Richard M. Smith has discovered.

At first it was suspected that the Trojan installs a Web server on the victim's machine from which the porn is served, but research by LURHQ indicates that it sets up a proxy which forwards the porn and x-rated spam and so keeps the originating server hidden.

Machines hosting the Trojan are not harmed in any way, but spam recipients who check out the porn on offer may become victims of fraud if they sign up for access using their credit cards.

The overall purpose appears to be establishing a semi-anonymous, distributed hosting scheme for malicious sites or for material that might invite retaliation from a Web host or the authorities, such as warez or child porn.

Only about two thousand home machines have been infected, but among them is a high proportion of AOL subscribers, implying that it may be spread via instant messaging. According to LURHQ it is easy to detect and defeat.

First, remove this registry key:

Software\Microsoft\Windows\CurrentVersion\Run\Login Service = wingate.exe

Then reboot the computer and remove this file:

%windir%\system32\wingate.exe.

The spam ads direct users to Russian porn sites chiefly, sometimes using servers that were involved in a recent Paypal scam, Smith notes. ®

Related Stories

Rise of the Spam Zombies
Trojan defence clears man of child porn charges
What's the difference between a viral attack and a scan?
Windows Root kits a stealthy threat
Mindjail worms way through IRC
Fizzer stealth worm spreads via KaZaA

Corrections Send us news

Other stories you might like

Outlook bombards Safari users with endless downloads

Mystery zero-byte file deluge makes site unusable, hundreds of netizens complain

Brandon Vigliarolo Wed 4 May 2022 // 20:26 UTC

Attention, Mac users who access Outlook with Safari: something's broken, and it's causing an empty TokenFactoryIFrame file to be downloaded every few seconds for as long as you remain there.
Microsoft hasn't said what's causing the problem, though it did acknowledge the ongoing blunder in this support message-board thread on Microsoft Answers. We understand this flood of downloads affects Safari on desktop Macs; it may also affect browsers on iOS using Safari's WebKit engine, such as Microsoft Edge on iPads.
The Redmond giant noted in a post dated May 3, "We have recently received several reports that customers have the issue when they visit Outlook in a Safari browser on Mac it keeps downloading token factory iframe. We are doing research on our side to see if we can find any relevant information about the issue." Microsoft has not responded to questions from The Register.

Continue reading
Cisco says its AI crystal ball can predict network errors

Now all we need is a model to predict where and when and how this will be used

Brandon Vigliarolo Wed 4 May 2022 // 17:51 UTC

Wish your network could predict its own problems and fix them automatically? Cisco believes it has the technology you need.
The networking tech giant announced today what it said is the culmination of two years of work: an analytics engine that can predict network issues before they happen, and with enough integration and training even fix problems itself, Cisco said.
Citing data from an in-house study, Cisco said that 45 percent of IT leaders it surveyed cited responding to disruptions as their biggest networking challenge of 2021. Predictive analytics technology, coupled with "enormous amounts of historical [networking] data," is a potential solution, Cisco said.

Continue reading
Qualcomm sampling Wi-Fi 7 silicon for next-gen access points

OEMs able to develop new products with aim of 10Gbps-plus throughput

Dan Robinson Wed 4 May 2022 // 16:30 UTC

Qualcomm is sampling its Wi-Fi 7 Networking Pro Series chips aimed at throughput of more than 10Gbps for enterprise access points, gateways, and premium home routers.
The third generation of the chipmaker's Networking Pro Series platforms is set to "initiate a new era" of 10Gbps Wi-Fi, Qualcomm claimed, stating that the new portfolio is optimized for multi-user environments and low CPU utilization to power collaboration, telepresence, and metaverse applications for both home and enterprise environments.
Sampling means that the Networking Pro silicon is available to Qualcomm's OEM customers so they can develop and test the Wi-Fi 7 products that will ship to end users at some point. It isn't clear when buyers will actually be able to get their hands on kit to deploy, although Qualcomm previously said it expects to see Wi-Fi 7 products hit the market in 2023.

Continue reading

Unity and Trinity: New releases for forks of abandoned Linux desktops

True believers really can bring about resurrections, it seems

Liam Proven in Prague Wed 4 May 2022 // 16:00 UTC

Two minority Linux desktop environments were updated this week. Coincidentally named Unity and Trinity, both are forks that continue projects long ago abandoned by their creators.
With public testing announced, 7.6, which is the first update to Unity in six years, starts the process of modernizing Ubuntu's former desktop.
When it was still part of the Ubuntu distro, there were three separate branches of the Unity desktop. The original Unity desktop derived from Ubuntu's special launcher for netbooks, and was implemented as a plug-in for the Compiz compositing window manager – itself now discontinued.

Continue reading
Communication around Heroku security incident dubbed 'train wreck'

Users claim lack of transparency following compromise of Github tokens

Lindsay Clark Wed 4 May 2022 // 15:30 UTC

Efforts by Salesforce-owned cloud platform Heroku to manage a recent security incident are turning into a bit of a disaster, according to some users.
Heroku has run security incident notifications for 18 days and appears to have upset several of its customers due to a perceived lack of openness and communication.
The most recent status update from just prior to midnight UTC on 3 May read: "A subset of Heroku customers will receive email notifications directly from Salesforce Incident Alerts (incidentalerts@msg.salesforce.com) regarding our continuous efforts to enhance security."

Continue reading
Engineer gets Windows 11 working on a Surface Duo

So those hardware requirements for Microsoft's OS really are arbitrary

Richard Speed Wed 4 May 2022 // 15:00 UTC

Arch tinkerer Gustave Monce has demonstrated Windows 11 running on a first-generation Surface Duo.
The Duo is famously an Android device but, fresh from showing that Windows 11 could be coaxed into running on a Lumia Windows Phone, Monce has worked his magic on Redmond's first effort at a foldable handset.
While Monce's work on the Lumia 950XL was more of an intellectual exercise, getting both screens working on the Duo is undeniably impressive. His adventures have been well documented on Twitter, with the engineer observing: "I think there might be a performance ~~gap~~ ocean between this and the Lumia 950 XL. Crazy what 4 years did in terms of SoC performance. Oh and thermals are very good."

Continue reading

FAA to airlines: 5G-sensitive radio altimeters have to go

Affected jet equipment will need retrofitting and eventual replacement, agency warns

Brandon Vigliarolo Wed 4 May 2022 // 14:31 UTC

The US Federal Aviation Administration (FAA) met with airline and telecom officials yesterday to present its latest solution to the instrument interference problem presented by C-band 5G: replace the affected equipment.
A letter from the FAA's head of aviation safety, Chris Rocheleau, proposed the meeting to establish a timeline for retrofitting or replacing radar altimeters in US airliners that are affected by 5G C-band signals, Reuters reported.
5G C-band was expected to roll out in the beginning of 2022, but was put on hold until July while the FAA, airlines, and jet manufacturers seek a resolution. A number of different planes were affected, including most of the Boeing 737 family, due to their use of radio altimeters, which use radio signals to determine the plane's distance from the ground.

Continue reading
Logitech's sales plunge 20% as demand for PCs slows

Peripherals-maker CEO lowers forecast, citing ongoing war in Ukraine as cause of uncertainty

Paul Kunert Wed 4 May 2022 // 14:30 UTC

Peripheral maker Logitech is ending its fiscal 2022 on something of a low point, with the pandemic-induced sales growth extravaganza coming to an abrupt end, and forecasts for business this year lowered due to the conflict in Ukraine.
The Swiss-based organization was in the right place at the right time when citizens across swathes of the world were forced to work, study and play at home: demand for mice, keyboards, headsets, etc went through the roof.
Growth rates Logitech achieved during those lockdown years, when the PC became the centre of most people’s universe, were impressive but seemingly impossible to sustain. For its Q4 ended 31 March [PDF], company revenues plunged by a fifth year-on-year to $1.23 billion and operating profit dived 52 percent to $108.2 million.

Continue reading
Chinese ride-hailing company Didi Global reveals SEC probing its IPO

US regulator looking into alleged 'misstatements' and 'omissions' related to June 2021 USA float

Laura Dobberstein Wed 4 May 2022 // 14:00 UTC

Chinese ride-hailing company Didi Global is under a Securities and Exchange Commission (SEC) investigation regarding its $4.4 billion June 2021 initial public offering (IPO) in the United States.
Details of the investigation were revealed in the company’s annual SEC filings on Monday. The document showed Didi Global had been named as a defendant in several putative securities class action cases in both federal and New York state courts. The alleged offense was material misstatements and omissions in IPO-related registration statements and prospectus that were in violation of various laws.
Didi Global has asked for a stay in state court action pending the outcome of a dismissal motion in federal court that is still pending. Both actions are in preliminary stages, said the company, which also intends to "vigorously defend [itself] against these claims."

Continue reading
SAP to divest CRM education software in bid to streamline

Area no longer a priority as cloud migration takes center stage, deal of around $1b in the offing, reports say

Lindsay Clark Wed 4 May 2022 // 13:30 UTC

SAP is to sell a chunk of its business known as Litmos in a deal reputed to be worth $1 billion.
The German analytics giant has engaged bank Moelis & Co to sell the corporate education software unit to slim down its operations and prioritize cloud-based products.
According to Reuters, the sale of the California-based SaaS company could achieve a price of around $1 billion. An auction process is set to begin in the next couple of weeks with plans to target private-equity funds in the US and Europe.

Continue reading
Datacenters in Ireland draw more power than all rural homes put together

Bit barns consumed 14% of all energy for 2021 – a significant rise over just a few years

Dan Robinson Wed 4 May 2022 // 13:00 UTC

Datacenter energy use has eclipsed power consumption among all rural homes in Ireland, according to figures from the country's Central Statistics Office (CSO). The trend is set to continue if 2020-2021 data holds with datacenter power draw growing by nearly one-third between 2020 and 2021.

Continue reading

ABOUT US

MORE CONTENT

SITUATION PUBLISHING

The Register - Independent news and views for the tech community. Part of Situation Publishing

SIGN UP TO OUR DAILY NEWSLETTER

Security Scorecard

Biting the hand that feeds IT © 1998–2022

Your Consent Options Cookies Privacy Ts&Cs