Beware of Spyware

  anchor 09:17 06 Aug 05
Locked

"Officials at Sunbelt Software, (vendor of antispyware tools), said the company stumbled upon a massive ID theft ring that is using a well-known spyware program to break into, and systematically steal, confidential information from an unknown number of computers worldwide".

Full story:

click here

  sunny staines 10:14 06 Aug 05

Lets hope the excellent CWS tool makers bring out a plug to correct this quicky.

  VoG II 21:40 06 Aug 05

If you think that you might be infected run HJT click here

If you see the following entries:

O1 - Hosts: 82.146.42.123 lloydstsb.co.uk

O1 - Hosts: 82.146.42.123 online.lloydstsb.co.uk

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 personal.barclays.co.uk

O1 - Hosts: 82.146.42.123 barclays.co.uk

O1 - Hosts: 82.146.42.123 ibank.barclays.co.uk

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 nwolb.com

O1 - Hosts: 82.146.42.123 hsbc.co.uk

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 abbey.com

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 abbey.co.uk

O1 - Hosts: 82.146.42.123 cahoot.com

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 cahoot.co.uk

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 co-operativebank.co.uk

O1 - Hosts: 82.146.42.123 click here

O1 - Hosts: 82.146.42.123 co-operativebank.com

O1 - Hosts: 82.146.42.123 welcome2.co-operativebankonline.co.uk

O1 - Hosts: 82.146.42.123 welcome6.co-operativebankonline.co.uk

O1 - Hosts: 82.146.42.123 welcome8.co-operativebankonline.co.uk

O1 - Hosts: 82.146.42.123 welcome10.co-operativebankonline.co

Then post the log at click here Urgently!

  Nellie2 17:57 07 Aug 05

The IP in the hosts entry might be different, there are a few coming to light now.

The main thing is; If anyone suspects they have been affected by this they need to immediately do the following:

Disconnect from the Internet, contact their all their banks and credit card companies immediately. Change passwords to all email and online accounts and seek help to clean their computers before going onlne again.

Please post a log at the link VoG provided (using an uninfected computer) or contact me by sending me an email, you can do this by clicking on my little yellow envelope.

The experts working on this one are looking for infected computers so that they can get some samples of files etc.

  MrWit 10:29 13 Aug 05

Can I send these to you for analysis and if so, not many files shopuldn't take long.

  Nellie2 12:11 14 Aug 05

Yes MrWit please do

just click on my yellow envelope and you will be able to send me an email. You won't be able to send any attachments but I will reply to your email and then we can take it from there.

Please give me an idea of the problems you are having and what makes you think you might have been infected by this trojan

  Forum Editor 12:25 14 Aug 05

that the FBI are very rapidly closing in on this operation. I'm not able to say where I got this information from, but the source is normally very reliable.

Let's hope it's so on this occasion.

  Jim Thing 23:01 14 Aug 05

Does CWS malware affect both dial-up connections and broadband?

  VoG II 23:06 14 Aug 05

CoolWeb can affect any PC running Windows with an internet connection.

  Jim Thing 23:10 14 Aug 05

Thanks VoG™

This thread is now locked and can not be replied to.

Huawei P10 review

1995-2015: How technology has changed the world in 20 years

An overview: What leading creative agencies are doing to improve diversity

New iPad, iPhone SE & Red iPhone 7 on sale now