Updating my address book - Virus alert

Computer | March 3, 2005 | wai-ming

[wai-ming]

If you receive an e-mail message entitled "Updating my address book," even from someone you know, Beware! Don't click on the link. It may be a virus.

I recently received such a message from a former business contact, and thinking it was okay, clicked on the link. Bad news. It appears to have infected my home page to the point that the page doesn't even load on my screen anymore--not even from other computers.

I checked a few computer message boards, and sure enough, it's some kind of new virus.

Does anyone out there know anything about this virus? What is it, what kind of damage does it do, and how can I get rid of it and restore my home page?

[wai-ming]

Thanks for any help and information you can provide.

[Bahbah]

I don't have any information, but I wanted to thank you for the warning.

[TomGuy]

I just did an auto update 30 minutes ago from Trend Micro. Their new update shows 724 new virus patterns, mostly trogans and worms.

Have you run a virus program?

When you say you can't access your webpage, do you mean your home/start up page? If so, your page may have been hijacked. But hijackers usually send you to another website (of their choosing).

What is your start/home page? Maybe that server is down.

[Not sure what else to tell you with the little info you provided.]

[TheHound]

Just wondering, was the link in the body of the message or an attachment?

[TheMightyQuinn]

A flurry of these have been coming out from a site called bebo.com. I haven't really investigated it, but it appears "legit". But I'm still hesitant to put my info on this website, since it looks like a great tool for marketers to sell your info--which is probably how they plan to make money.

[wai-ming]

Thanks for your help.

When you say you can't access your webpage, do you mean your home/start up page?

Yes, my home/startup page.

I noticed that things started going haywire, almost immediately after I had clicked on the link. (Too much of a coincidence.) First, the page started double-loading, then loading very slowwwwly. Now nothing at all. I changed to another "home page" on the Tools menu. Now, that one is loading more slowly too.

I went to another computer and can't get the (first) website to come up at all.

I wonder if something may have gotten into the server. I contacted my server administrator, but so far no information.

[Disambiguator]

If you're in a corporate enviromnent, by all means get your IT dept. involved with your problem. That's what they do!

[wai-ming]

Just wondering, was the link in the body of the message or an attachment?

It was in the body of the message.

[Yo-Yo]

You have had your browser hijacked by an errant BHO (browser helper object.)

Go and download Microsoft Antispyware, then run it, and it should be able to remove the offending helper objects from your browser.

Antispyware will also protect you (or at least warn you and ask permission) the next time an errant web site tries to do this again.

And for goodness sake, turn OFF all Java, and ActiveX controls, or at least set them to "prompt" and then only say YES to sites you KNOW you want to run things on.

[TheHound]

Whoo, now thats new to me, thanks, I be even more careful now.

[feefee]

Do these things infect all types of computers (PC and Mac)? I went to that site as well and my browsers have been acting up.

[Brad’s Gramma]

BTTT!!!!

[wai-ming]

Thanks for the advice.

Unfortunately, I'm a small business. I have to outsource my computer work. They're looking into it--but who knows how long that will take.

[wai-ming]

Thanks!

Can you tell give me any more information about "browser hijacking"?

I'm learning a lot here today. Appreciate it.

[Conservatrix]

Love that tagline.

[backhoe]

 

Things you need--(all FREE)
Anti-Virus
AVG Anti-Virus version 7 (free) release available...

 Avast
Firewall
Kerio(Direct Download) Zone Alarm

 If are using zone alarm it may slow your PC. Try Outpost Firewall http://www.agnitum.com/products/outpost or Sygate Firewall http://www.sygate.com/ both have FREE and Pro versions and are heads above ZA.
Misc.
IE Spyads SpywareBlaster Spyware Guard
Windows Update- you must keep updated, it is the start of a secure system-
get all CRITICAL Updates

Things you want(Still Free)
 

  I use Firefox. Click the link and give it a try.

 

 

Ad-Aware
Spybot S&D

SpywareBlaster
MS MVP Hosts file

Mike Lin's Homepage and get the Startup Control Panel and Startup Monitor tools.

 

The best forum for malware removal:

-SWI Forums-

 

 
http://www.freerepublic.com/focus/f-news/1315720/posts

 Microsoft Releases Anti-Spyware Beta 1 To Public Today.
Microsoft.com ^

 

=================================================

 

 

Browser Wars, take two various FR links | 12-22-04 | The Heavy Equipment Guy http://www.freerepublic.com/focus/f-news/1306815/posts ...and let your compiler of links drop out of Lurk & Link mode for comment and advice: Ditch IE. Honest to God, almost anything else will give you fewer problems. Try and compare- use IE, then run Ad-Aware and Spybot Search & Destroy... then try another browser and repeat. You will be stunned at the garbage IE attracts. Keep your OS updated & patched. Run a hardware firewall-- with today's LAN's, it's easy. You need a hardware firewall. Use a software firewall, too-- if you don't, you'll never know how many times your PC is trying to "phone home" and send your info across the web.

[wai-ming]

Thanks.

I have some, but not all, of the things that you mentioned.

Time for another update.

Seems like everytime I get a new virus "shield," they invent a new spear that can pierce it.

[wai-ming]

My home page has been restored.

Thanks to all who have contributed information.

I've gotten quite an education today about spyware, viruses, browser hijacking, and the like.

Will definitely be more careful in the future.

[wai-ming]

My home page has been restored.

Thanks to all who have contributed information.

I've gotten quite an education today about spyware, viruses, browser hijacking, and the like.

Will definitely be more careful in the future.

[backhoe]

Seems like everytime I get a new virus "shield," they invent a new spear that can pierce it.

In trying to get info on programming my antique Motorola bag phone that I keep in the SUV, I ran across an honest-to-God hacker & cracker website, and they claimed that they routinely write viruses just to see how easily they can evade commercial antivirus software.

Their claim was that they could always get one out of five to escape detection or fixing.