moTi - 8:01 am on Jan 6, 2010 (gmt 0)

now that we talk about it, here's my story: end of december i cought one of these mentioned ultra-aggressive backdoor trojans who infected my computer. first time in ten years internet experience. symptoms: the mentioned fake system alerts that trap you into buying their anti-malware malware.
and yes, let's talk openly, i got this trojan by surfing the most popular #*$! site, without warning simply by visiting an infected web page. given that, i wondered how many thousands of people must also be affected by this at the same time.
among other things, it crippled windows defender, disabled antivir and changed registry entries. even though, after a few hours with a few little helpers i finally managed to fully recover my system without a clean install.

my questions to you guys without being studied that much in this topic: how can it technically be in 2009, that a properly standard-protected system is infected simply by visiting a web page without manually downloading anything? why is it impossible to eliminate these occurrences with some simple os/browser patch or tweak of some kind? would this render usual internet browsing impossible? if yes, there must be some serious flaw in software engineering, right? how can this be? why is the only protection in form of obviously incomplete, in other words useless malware warning pages from google of all things to handle the issue? i mean, really.. as long as we have to worry about this kind of crap - this is frightning, isn't it?