Mods, please move this if you feel the need, but I think many people will be affected by it...
**There is a Nasty "trojan horse" that has infected the PC's of several people I know, some in the IT industry, others just home users. CWS, or backdoor.oblivion.
IF - your windows tries to look at the search page "www.search-click.net or www.searchy-net.com or something similar (Rather than windows using the microsoft page to find a web address) when you type in a web address into Explorer, then PLEASE, please, contact an IT specialist. Ask them to look for trojans.
I have been in PC's for 15 years and it's Very high risk and could do a LOT of damage in my view.
This "infection" could lead to your internet banking, Ebay, HonestJohn password details ;-), Email, credit card details and Pins and other things being "harvested" by ne'er well doers, and potentially using your bank logins etc. If your bank account gets drained overnight, 'cos of a vulnerability on YOUR machine, the banks are unlikely to reimburse you.
I have had to completely rebuild the operating systems of 3 pc's so far, and I recommend a firewall. Antivirus programs provide little protection, and Windows updates and service packs MUST be kept up to date. More people I mention it to have seen similar issues and it's hard to clean it completely.
Hope no-one is compromised.
|
I would agree entirely, a good firewall, virus checker and 'ad-ware' checker is a must these days, even for those not on broadband.
Davy S.
Oops, where did that screw go!!
|
Ad-aware is a great program, another one you might want to try is Spy bot search and destroy www.safer-networking.org/
I find this one always find one or two things the other programs miss.
|
Just used the above and cleaned my PC, cant believe the amount of unwanted stuff that was infecting me. I'm clean now and would recommend anyone with internet at home to download it and use it.
Thanks Carl!
|
|
|
|
Alfa, Davy,
Thanks for the warnings - now I'm worried but not sure if I need to do anything!
I keep my anti-virus up to date but rely on the XP firewall. I also download and install all relevant Windows updates. I don't have an "ad-ware" checker or know what it is - do I need one, and where can I get it?
Any further help on this would be appreciated - and I'm guessing not just by me!
|
I keep my anti-virus up to date but rely on the XP firewall.
XP firewall is next to useless and it's a scandal that M$ have marketed it as a firewall at all. It stops uninitiated attacks from outside but doesn't prevent anything from going out once your computer is infected. If you have a trojan on your PC it will look out at the Internet and you won't be aware of it. Download Zonealarm and use that as well.
I'm going to use the L-word: Linux. Try SuSe9.0 or Mandrake9.2. Mandrake can be downloaded for free, but only if you have broadband (three CDs full).
Alfapug--I assume this is transmitted by email and not something else.
|
|
|
Ad-aware site for info and downloads
lavasoft.element5.com/default.shtml.en
|
Along with your firewall Ad-Aware and Search and Destroy are both worth having. One often picks up what the other does not. However, it must be said they are stable door stuff.
When my phone company put in my broadband, they also installed
Spyware Blaster. This is free and you can get it at:
www.wilderssecurity.net/spywareblaster.html
Spyware Blaster proofs your system against ad-ware by preventing it being installed in the first place. Every couple of weeks you need to update it (takes seconds). It isn't perfect but I find that now only one or two little data miner nasties get through whereas before I always had double figures.
|
|
|
|
Don't use Internet Explorer then. I've been using Mozilla Firebird for the last few months and it's great. No attacks/exploits and it blocks all pop-ups, which on this site drive me mad. I can have 15 ebay's open from browsing here on IE.
I'd like to know the name of this uber-trojan of which you speak all the same?
|
FWIW, as I'm no expert, following advice above I have checked out (lots of good reports) Spybot S&D and installed it.
It has caused no detectable problems, appears easy to understand and use, claims to have found and removed 11 problem items (mainly tracking cookies) and to have installed a "bad page blocker" in IE.
If it does half of what it says it's done then its a bargain, especially as it's free:-)
|
Well damn me (and according to my Mother I surely will be).
I have a firewall, virus checker and adware but I just installed and ran Spybot S&D and had 15 of the blighters...
I might even send him some dosh...
|
|
|
|
Agree about Firebird. Great browser which can be customised with many "extensions". One, for example will replace Flash content- including ads - with a blank space with a "click here to play" button. If you want to see the animation you can. Mouse gestures are available too. The most useful for me is the ability to go "back" or "forward" to previously opened pages by holding the left button and moving the mouse left or right depending on which way you wish to go.
With a little trouble one can also provide a toolbar for external applications, so I have one which opens Mozilla Thunderbird, the mail client.
Have fun!
|
Maybe this should be on ask a Question but as it is topical to this thread here goes:
I am about to download Spybot and like many other things I have put unseen, apart from whirrs, clanks and flashing greens, into my PC Tower, how do I know that Spybot etc are not putting their own little gremlins into my system?
DVD
|
Excellent point DVD. There are definitely some "helper" programmes out there which include their own flavours of spyware or other malicious or plain inconvenient activity.
All you can really do is to only go by recommendation, hopefully from someone "in the know" who has actually used the product and whom you can trust (and I would include BR regulars in that)
Of course, having two unrelated products running side by side should mean that one will keep an eye on the other too...the overhead ought to be tiny compared to the potential for disaster
|
DVD:
A fair point. Paranoia doesn't mean etc etc..
However my phone company in fact recommended Spybot Search & Destroy and Ad-Aware (you do need both, because neither on its own picks up everything), so I am comfortable with their advice.
Added to which Spyware Blaster and Spyware Guard both free from www.wilderssecurity.net and recommended by the IT Manager of my late employer, have served me well without problems. His point was these or similar are now a must if you run broadband, which I do.
None of these install what I believe is known as "Malware", the computing equivalent of little green men.
Perhaps the over-arching thing here is had no one alerted me to any of this stuff ignorance, while being conventional bliss, might have meant all kinds of nasties on my PC. I think the experience of others recounted here bears out that the effort is worthwhile.
|
|
|
|
Where I work we use mainly Windows 2000, and have had lots of problems with Trojans - in fact, our ISP threatened to boot us out, after one of our machines became a Spam-mail server after becoming infected.
The problem is that, especially if you are on ADSL, as soon as you connect your Windows PC to the Net you are vulnerable to attack.
The only SURE way to avoid this is to load -
* Antivirus software - www.grisoft.com has AVG - free!
* Firewall - Tiny personal firewall (software based) works well
* Lavasoft Ad-aware 6 - free
* Make sure you have ALL the Windows patches installed - you can check using Windows Update in the Start menu
In fact, we found that if we put an UNPATCHED computer onto the network, with a clean install of Windows 2000, that it became compromised STRAIGHT AWAY ! The only way around this was to unplug the PC from the network completely, run both the antivirus & spybot programs to clean it, back up data, clean install the OS, apply all the patches/security programs whilst NOT connected to the network - we had to manually download all the patches from Microsoft !!
*** There is an easier way - go buy a Mac running OSX ***
|
|
|
|
|
|
I hope that I am not affected.
My home back keeps on being set to www.hugesearch.com and it is beginning to annoy me! Usually I have google as my home page.
When I go into Internet properties, this hugesearch has set itself as my default page. (Does anyone know how to get rid of this and delete all the other web addresses when asked for homepage?)
Is this hugesearch one of these bad boys? We have a decent (I think) anti-virus which seems to stop most things!?!
|
Yes. it is a \"bad boy\".
You have been trojaned by hugesearch.
read this link to see a discussion on it.
computercops.biz/postt9593.html
This is worrying me more and more.
{Link edited. No need to surround it with \" \" as it stopped the link from working. DD}
|
Alfa - many thanks.
Used the first link on the www and all is sorted.
I can also now see what I am typing - before hand I would see the cursor move across the screen and the writing would catch up later!
What are the possible side effects from all this? Have my customers got dirty e-mails that I have been sent or is someone spying on me?
|
You're welcome.
I STRONGLY recommend changing your passwords and pin numbers for all banking/ money related sites, ideally from a machine you KNOW is 100%.
Also, install a firewall (Zonealarm is free - www.zonelabs.com),
It is possible it has collected information on your pc email accounts, so change their passwords.
Create a user on your PC which does NOT have administrative rights, and make sure your default password for adminstrator
(and all others for that matter are ALPHA-Numeric with characters from the top row (!"£$%^&*) for example)
Make the account you log onto the PC with with limited rights - only give this user the rights to run applications - Browse and Execute. ie, for the web, allow access for the user "bob" to run Internet Explorer, Word and Excel if that is what you would use. If you know how, make sure this user cannot then change their settings (It has to be done as the main "adminstrator account".
Remove the Guest login account, or change the password to a complex password.
This should help your safety.
Also, make sure you have the latest microsoft updates...
(This is the Micro$oft website. Kerching.
|
Phew. I've remembered another way which takes a bit longer, but at least you know who to disembowel if it goes wrong. It involves a runner and a message in a cleft stick.....
|
wow, this is scary, have heard about this before but must admit never got round to doing it because I've had no problems with searching, and homepage has NEVER been altered -
But I have now installed and used both ad-aware and spybot s&d..
I was shocked to see something like 125 items were found and deleted... oh my god!!!
Will be running this on a regular basis
Cheers people!
|
|
|
|
I had this CWS problem last month.
McAffee didn't get it (it was new then) and even after I thought I'd removed it - it came back - rewriting homepage setting etc.
Resorted to tinkering with regedit and still couldn't delete the thing.
However after trawling round the net I found that this sorted me out.....
Spybot as previously mentioned and also more specifically 'cwshredder'
www.spywareinfo.com/~merijn/cwschronicles.html
just looked for my symptons chose the correct version - nice quick download (for my antiquated dial-up modem) - ran it and now I'm clean again!
67
|
|
|
Now you've got me worried. I run Norton AV with auto-update, and regulary run Spider, but everytime I log into HJ (and some other sites too) I get regular pop-ups for AOL and Ebay, which drive me mad! Is it just me, or is this now a feature of the site? The Ebay one will happily keep popping up and leave numerous copies in the task bar. What should I do?
Regards
John S
|
download a pop-up stopper.....
there are loads available most FREE.....
Email me if you cant find any and I will advise where I got mine from.
I get the ebay popups on this site as well, but a small price to pay for a good site - i do believe!!
scruffythedog118@hotmail.com
|
|
It's worth mentioning that, like your virus scanner, in order to be useful SpyBot S&D needs to be regularly updated (use the 'Check For Updates Button') and download whatever it finds.
|
|
|
|
Yes please remember that it is HJ's pop-ups and other ads that fund this site, i hope we can trust they are virus-free, and as scruffy says, a small price to pay for the wealth of information here - And i bet i've just beaten a moderator to saying the exact same thing!
|
And i bet i've just beaten a moderator to saying the exact same thing!
Gosh darn it, that sure is some trigger finger you got there!
No Dosh
mailto:Alan_moderator@honestjohn.co.uk
|
|
|
|
|
|
Like the man says, use Mozilla Firebird instead of IE Explorer. Download free from www.mozilla.org Popup stopper included, but gives you the option to view the ad if you want to.
|
I let it stand alone for a day or so, now its better off here.
Mark.
|
|
|
Mozilla Firebird on offer is v.0.7 which means (by virtue of the <1) it is a BETA version.
Probably OK, but beta versions are not for the cautious.
|
>Probably OK, but beta versions are not for the cautious.
0.7 is absolutely rock solid in both Windows and Linux versions. I've been using it exclusively for a few weeks now, and 0.6 before that with no problems. It's actually extracted from Mozilla which in turn used to be Netscape. If you're worried download the full version of Mozilla, which includes the embedded mail client. You don't have to uninstall IE anyway, so if you don't like it just go back. I bet you don't though.
|
I was about to compose a post saying exactly the same as Chris's so I'll just place another vote for Firebird. Full Mozilla is fine too but the program is a bit big if you only want the web browser.
I must confess, I've been using Firebird (full Mozilla before that) for a month or two and wasn't aware of all the features mentioned above. My favourite feature is tabbed browsing. This enables you to have many pages open at the same time without cluttering your screen.
|
|
|
|
|
|
|
