Hmmm, It's Happening Again
Apr. 14th, 2010 10:45 pm![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
cinema_babeI logged on to Facebook and MySpace came up instead. This happened on both Firefox and MSIE at the same time. This is weird.
cinema_babecinema_babe
Page Summary
![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
Style Credit
- Base style: Basic Boxes by branchandroot
- Theme: Delicate by
Expand Cut Tags
No cut tags
no subject
Date: 2010-04-15 03:08 am (UTC)no subject
Date: 2010-04-15 10:32 am (UTC)no subject
Date: 2010-04-15 12:27 pm (UTC)no subject
Date: 2010-04-15 01:01 pm (UTC)My virus scan didn't pick up anything and I don't see anything on-line so I'm going to assume that this is a problem with my Internet connection or my computer.
no subject
Date: 2010-04-15 02:48 pm (UTC)The consensus appears to be that this is a form of malware that changes a computer's DNS hosts file and redirects the browser to a site of its choosing. It's called a "redirect attack," similar to a "man-in-the-middle attack."
If this is what you have, you're lucky: the malware code probably had redirected people from Facebook to a MySpace page that was tricked out to look like Facebook, and would capture the passwords of unsuspecting people. But perhaps MySpace removed the phishing page before you got infected.
You can clear your "hosts" file by using Start -> Run to run the command: ipconfig /flushdns
That should get rid of the immediate redirects, but the malware will probably re-edit the file unless it's removed.
I'd recommend running a virus scan, and then one or two anti-malware scans in addition. I'm pretty sure you already have a few of these, but just in case:
Malwarebytes anti-malware:
http://www.malwarebytes.org/
Spybot Search & Destroy:
http://www.safer-networking.org/en/spybotsd/index.html
Windows Defender: (free download for XP and up, though I think it's included in Vista and Seven)
http://www.microsoft.com/windows/products/winfamily/defender/default.mspx
I hope this takes care of it, and that nobody hijacked your passwords. Damn, but malware is proliferating. I know a half-dozen people who've never gotten a computer virus in their lives, some of them are running firewalls and active virus blockers, and they're still getting hit this year. Shirley even had her WoW account hacked the other week, via a keylogger that flew in on some Web 2.0 widget that bypasses the virus-scanner's "Web shield" and behaves like a local network communication. Yeesh.
no subject
Date: 2010-04-15 03:24 pm (UTC)It is a pain because I'm pretty good about computer security but I'm having some issues with this and my router password that I'm sure is related to malware/viruses/etc of some kind and I just don't know what to do anymore.
I'm probably going to have to dismantle my network and set it back up again. Grrrr