I clicked on yahoo weather yesterday and got this nasty bit of scamware that overran my system.

It marks just about every file and program on your computer as ‘hidden’ and ‘read only’ then tells you your hard drive has failed… and then tries to sell you a $79 ‘fix’
It co-opts Microsoft Essentials AND won’t let you dump it without a LOT of work
It causes the computer to shut down if you try to run most antivirus progs
It locks you out of task manager
It corrupts your wireless connection
It switches your browser to a corrupted version of exploder
Plus other little tricks I’m still finding
It’s FAST, as in by the time you realize you’ve got it, you’re pretty much screwed.

It takes combofix PLUS another high powered antivirus (Kaspersky) to contain it. Then you STILL have to reset all the files and programs manually.

Then, when it was finally gone, I accidentally opened yahoo again… It seems to learn and it’s harder and faster for round 2

If I didn’t know better, I’d swear it was made by microsoft to push folks to upgrade

Mik,

Thanks for the warning.

I have used the “restore” function to fix attacks by fake anti-virus malware trying to extort similar amounts.

Sincerely,

Joe Satnik

I usually keep everything that I need on back up.
If I get a pesky virus I just zero the HD and reload the OS put in my last good up dates and I’m set. I can do that in 1 1/2 hrs max.
I stopped fighting viruses I just clean every thing.

I’m young/dumb/stupid, and run without antivirus, a firewall, anything–though I refuse to use IE, I use Firefox.

I’ll typically get MAYBE one virus a year, and clean it within 30 minutes. Admittedly I’m a lot more adept than most people (total geek, plus majoring in computer science), but still–I find it hard to believe that it’s -that- hard. Mik, what browser do you use? Please tell me FF or Chrome?

Robbie. I’m using Firefox 4 with BOTH Spybot AND MS Security essentials running and current… and it still got past. Within 5 seconds or so of opening the yahoo page, the warning from Spybot went off, but stuff had already started shutting down… As I said, it co-opted Security Essentials to help hide itself…

I also had to reload firefox both times. It hides the operating files for that browser where you can’t unhide them.

Dwight on the other board said it got past a co-worker’s running and current AVG Internet Security 2011 Business Edition that he had to disinfect… He suggested setting up a limited user account for everyday browsing, but didn’t sound certain that it would totally contain this one.

The ONLY plus to this virus seems to be that it doesn’t destroy your data, image and most program files… it just makes the computer unable to find them.

Total Geek or not, I suspect there is a LOT more crap on your machine than you know about. AND, when you get this one, you can tell us all the easy way to reset everything. For now, I’d suggest not bragging and tempting fate.

Mik, do you have an ActiveX plugin or something of the sort running in Firefox? That pretty much eliminates the security of using FF. I honestly otherwise don’t know how something would get in via a website unless there’s another underlying problem.

Here’s a program I’ve found helpful for spyware/virus removal: it searches for and kills the running processes for most viruses and trojans to allow antivirus to kill them, and due to the file name/internal coding, it reads as Internet Explorer, so most viruses will let it run. It might help.

http://dl.dropbox.com/u/1998236/iExplore.exe

And rereading your post, you’re on Windows XP? Admittedly, I did have more issues with XP–I got two free copies of 7 Professional via my school and it’s changed my world entirely.

Trust me: when I say there’s nothing on my computer, there’s nothing. I’ve run scans weekly since my last reinstall (six months back), and nothing’s ever shown up.

I’ve got a couple of XP systems still running. Both use Yahoo as their home page. Both use the free version of Avast AV.
Never had any problems with Yahoo so far. Seems like MSN gets hacked more often.

But thanks for the warning. If something does pop up, I’ll know what to look for.
Ralph

today it seems to be a no win - no win situation.
if i set up my computers in a fashion, that i get no malware, than i can not use videos and a couple of newer sides.
if i allow activeX, flashplayer and java to get in contact with mom, - they pick up any number of uninvited guests.

I got hit with one virus last year that got past Avast on me. Within a matter of minutes it had corrupted my registry and chewed up my OS. That was running XP. The full account of my attempts to eliminate the little bugger are recounted at my fav. computer haunt: http://soundbytes.org : http://soundbytes.org/phpBB2/viewtopic.php?t=13354

I ended up switching from XP Pro to LinuxMint… though I’m currently running Win7 on the system now for some hardware & software compatibility issues.

I had too much trouble with viruses getting past AVG. I’m using bitdefender on my laptop which I use most of the time.
I use chrome and ahh! I can’t remember what it’s called the open source with the SeaHorse logo.
Don’t get old you can’t remember easy thing.
Well anyway, I’m quite diligent on the sites I go to, and the email I open.
I don’t often have a problem. But the rest arrant so good. They keep me busy fixing things
David

I also use this IMAC that I don’t like so much. But I run this bare foot. I’m using V10.4.