Dammit, fucking virus just got me...

[canucksfan19]

so, i goto my gmail inbox, i see an obvious fake email from aweber...i get curious as to how they inboxed it so i open it...

next thing i know i have sent an email to ALL my contacts with a subject of hey, and then a little message promoting a free mac book, guessing an email or zip.

better yet, i go to email everyone to say, dont do it...and yup it also deleted all my contacts....fuuuuuccckkkkkk me

would this have anyhting to do with aweber getting some shit stolen, is that how they got my email/inboxed it?:angryfire:

 

[thelorax]

sent mail, get link, find this fool, split profit.
seriously though, scan your ish..

 

[cougarclaws]

heh. I always think "what a noob. he got phished" when I see these emails in my inbox. What OS are you using?

 

[canucksfan19]

Ya fuck, I didn't click the link haha just opened it! My gf won't stop bugging me calling me an idiot, " you'd think you'd k ow you dumb ass" to be exact. Was using window 7/ chrome browser.

But really ..delete my contacts too...

 

[lschmidt]

What e-mail provider?

In your browser or using something like outlook?

 

[awesometbn]

Since you said the only action you did from the browser was viewing your Gmail inbox, and selecting the message to view it, that makes me think something else is going on here. Perhaps the message format had an embedded script that was allowed to run, and that caused the mass emails to your contact list and the deletion of the list.

A couple of points. Let's start from the ground up.

- Do you login to Windows 7 as a local administrator? If so try creating another user account with no admin rights and use that for everyday tasks like web browsing.

- An alternate concept is to use Windows 7 as your host operating system, and run vmware or virtualpc on top of it with your favorite ISO as your operating system.

- When was your last scan for AV and spyware? You want to confirm everything is clean. Try whatever is built-in with Windows but also add free stuff like AVG, Spybot Search and Destroy, CC Cleaner, AdAware, etc.

- When was your last round of OS updates and patches to individual programs installed on your box? You want to confirm everything is properly updated. Check the various software manufacturer websites for the official stuff. Verify downloads with SHA1 or MD5 checksums.

- For your internet connection do you use wireless? If so make sure some level of encryption is enabled and change default passwords on any equipment you have at your house like the wireless access point or network router.

- An alternate concept is to use an open wireless connection without encryption, but connect to a VPN server you own to create an encryption "wrapper" or tunnel around everything you are doing onlie. Might also work with SSH forwarding proxies to a server you control.

- Do you usually connect to websites with http or https? Where possible (like Gmail) try to use https all the time to encrypt your session.

- In your browser do you have javascript enabled by default? You mentioned the chrome browser, so I'm wondering if there are preferences or options that allow you to disable active scripting on demand. Otherwise I was going to recommend Firefox with a few choice addons such as AdBlockPlus, NoScript, Ghostery, RequestPolicy, BetterPrivacy, etc.

- Do you allow email message formats like HTML? If so change those settings to allow plain text only.

- Do you allow limited or compact message headers by default? If so change those settings to enable full message headers so you can see where the message started. Sometimes you can tell something is spoofed by inspecting the header information.

I'm going to dig a little bit and see if I can find anything "official" from Google or one of the main AV companies. Curious to know if we can identify the virus or trojan horse that was being used to cause you all of this trouble. Let us know if you find out anything in the meantime. Thanks.

 

[Compound]

^ +rep

 

[Rexibit]

You need an Internet Security program like Kasperksy Internet Security. I can't tell you how many times I'll be viewing a site that has a javascript advertisement (yes, even those using Google's Ad Network, DoubleClick, Adsense, etc.) which will try and run a Trojan on my computer. Kasperksy will block it.

You need something that does a heuristical analysis of the entire website, including Javascript, before it renders in your browser; not something that just relies on already submitted info like McAffee or Norton.

Download the 30-day trial off their site and scan your computer with it. Run Malwarebite's Anti-malware afterwards just to make sure you cleaned your computer up before you access your E-mail, bank information, etc. again.

 

[medicalhumor]

+rep for Kaspersky. Bought this awhile ago myself. only $59/ year and good on up to 3 computers. Money well spent

You need an Internet Security program like Kasperksy Internet Security. I can't tell you how many times I'll be viewing a site that has a javascript advertisement (yes, even those using Google's Ad Network, DoubleClick, Adsense, etc.) which will try and run a Trojan on my computer. Kasperksy will block it.

You need something that does a heuristical analysis of the entire website, including Javascript, before it renders in your browser; not something that just relies on already submitted info like McAffee or Norton.

Download the 30-day trial off their site and scan your computer with it. Run Malwarebite's Anti-malware afterwards just to make sure you cleaned your computer up before you access your E-mail, bank information, etc. again.

 

[Rexibit]

It's about $36 or so at Wal-mart.

 

[BenPOF]

so, i goto my gmail inbox, i see an obvious fake email from aweber...i get curious as to how they inboxed it so i open it...

next thing i know i have sent an email to ALL my contacts with a subject of hey, and then a little message promoting a free mac book, guessing an email or zip.

better yet, i go to email everyone to say, dont do it...and yup it also deleted all my contacts....fuuuuuccckkkkkk me

would this have anyhting to do with aweber getting some shit stolen, is that how they got my email/inboxed it?:angryfire:

Thanks for the email this morning bro, Kim and I both facepalmed LOL

 

[tjewsky]

AV from walmart lmao

 

[Jackeyy]

Thanks for the email this morning bro, Kim and I both facepalmed LOL

LOL!!!

 

[careybaird]

I've heard similar story like yours. Its nothing to do with aweber I bet. It is those who wants to take advantage of technology to steal or just to waste somebody's time. I agree with them, it is best you have kaspersky security.

 

[CCLIND]

I gotta agree with Rexibit and medicalhumor, Kaspersky or ESET NOD 32 is the way to go. Although I gotta say Microsoft Security Essentials has been pretty impressive. You might also wanna check out CCleaner, MalWareBytes, Spybot and/or HitMan Pro to clean up anything that gets through. Clamwin is pretty good as well.

 

[070707]

I gotta agree with Rexibit and medicalhumor, Kaspersky or ESET NOD 32 is the way to go. Although I gotta say Microsoft Security Essentials has been pretty impressive. You might also wanna check out CCleaner, MalWareBytes, Spybot and/or HitMan Pro to clean up anything that gets through. Clamwin is pretty good as well.

Yep, I have ONLY been using M.S.E since I started using Win7. Shit is flawless. I use CCleaner daily as well.

 

[imkazu]

that's some nasty virus if its true.
I usually run anything suspicious under my virtual box first ... if you need a free av in the mean time, have a look at avera Free antivirus - Avira AntiVir

 

[Grindstone]

I gotta agree with Rexibit and medicalhumor, Kaspersky or ESET NOD 32 is the way to go. Although I gotta say Microsoft Security Essentials has been pretty impressive. You might also wanna check out CCleaner, MalWareBytes, Spybot and/or HitMan Pro to clean up anything that gets through. Clamwin is pretty good as well.

Yep, I have ONLY been using M.S.E since I started using Win7. Shit is flawless. I use CCleaner daily as well.

This is what I thought too until I picked up a slew of trojans recently. Bad shit, has rendered one box inoperable until I make time to wipe it and start over. Got an affiliate ID off the reg cleaner lander it loads like every ten clicks in mozilla if anybody wants to get midieval on some motherfuckers.

Stay off the tube sites if you're just using MSE as your AV.

 

[InfinetADs]

Wow that really sucks! I guess just be careful with what you open and make sure to scan everything first before you open it. And most likely it has to do with aweber getting stuff stolen, how would they get your info! Just be careful!

 

[RedLable]

- In your browser do you have javascript enabled by default? You mentioned the chrome browser, so I'm wondering if there are preferences or options that allow you to disable active scripting on demand. Otherwise I was going to recommend Firefox with a few choice addons such as AdBlockPlus, NoScript, Ghostery, RequestPolicy, BetterPrivacy, etc.

- Do you allow email message formats like HTML? If so change those settings to allow plain text only.

+1, Browse the web with Firefox and NoScript add-on, and read emails in plain text, then if you are sure about who sent it click over to html.

Also a handy free app to do with email notification is ePrompter or MetaProducts MailChecker, , accesses your POP3 mail accounts, read your email header and some of the body of the email AT the SERVER and you can delete at your server then download to your pc via outlook. Clean out the spam/virus before it get to your pc.