Discussion:
Hotmail auto-spam virus
(too old to reply)
carbuff3
2011-01-30 20:55:24 UTC
Permalink
Anyone have an easy & cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a link
to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).

TIA
TechGuru
2011-01-30 21:16:36 UTC
Permalink
use the webpage email instead of a client on your pc...your pc is
probably infected...should format and clean install
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a link
to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
Wizard Of Oz
2011-01-31 03:36:22 UTC
Permalink
Post by TechGuru
use the webpage email instead of a client on your pc...your pc is
probably infected...should format and clean install
Before he does that here is an excessive solution to the problem...

First off it may not be originating from his computer. It is easy to
spoof an e-mail address. If someone managed to get into his computer
once, they probably have a copy of his address book. If that's what they
are doing then it's game over. There would be nothing he could do.

Incidentally using web based mail clients is not a good idea. The
connection information and probably the contents are sent without
encryption. At least using something like Thunderbird gives the user the
possibility of using SSL.

Having a look at what he was using, he was using the most insecure
e-mail program on the most insecure operating system in the world today.
Come to think of it Hotmail is none too secure either. They try but
somehow don't quite measure up. Try using another e-mail program for a
while. If the spam stops then that's it problem solved. If the problem
is Hotmail itself then copy the address book to a different place (eg. a
word processor file other than M$ Word) and wipe out the original file
every time the computer turns off.

If that doesn't work then a format and clean install should do the job
for a while. This assumes the problem is on his computer and not
originating elsewhere. Install anti-virus, anti-spyware, and firewall
programs (ONE of each - because competing vendors will see the other
product as malware). Once installed DO NOT TURN THEM OFF FOR ANY REASON!
Incidentally the software given out by MTS and Shaw are not very good.
They are better than nothing, but barely.

The second best thing he can do (this is a good idea regardless) is to
pick up a router and run his computer(s) behind that. Connecting
directly to an ISP without something in between the computer and their
servers is asking for trouble. Beware of what you tell the ISPs. The
place I volunteer at has had problems with MTS installers (and one Shaw
installer) outright lying to people about things working or not.

Finally if he is absolutely 100% sure with no doubts his system has
been compromised the best thing to do is move away from Windows
entirely. The down side is this means he needs two brain cells to rub
together. The absolutely best alternative is OpenBSD. It has never been
hacked remotely (unless the user gave out their ID and password). Next
is FreeBSD. Then Linux. Mac OS X is pretty good to but it looks like
they are starting to go in the wrong direction.

Later
Mike
Post by TechGuru
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a link
to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
TechGuru
2011-01-31 20:40:17 UTC
Permalink
you sure like to write...most of it being useless to him (you really
think hes gonna switch to linux?)
and hotmails built in av and spam filter are very good these days
gmails better...but ..hotmails probably second best
Post by Wizard Of Oz
Post by TechGuru
use the webpage email instead of a client on your pc...your pc is
probably infected...should format and clean install
Before he does that here is an excessive solution to the problem...
First off it may not be originating from his computer. It is easy to
spoof an e-mail address. If someone managed to get into his computer
once, they probably have a copy of his address book. If that's what they
are doing then it's game over. There would be nothing he could do.
Incidentally using web based mail clients is not a good idea. The
connection information and probably the contents are sent without
encryption. At least using something like Thunderbird gives the user the
possibility of using SSL.
Having a look at what he was using, he was using the most insecure
e-mail program on the most insecure operating system in the world today.
Come to think of it Hotmail is none too secure either. They try but
somehow don't quite measure up. Try using another e-mail program for a
while. If the spam stops then that's it problem solved. If the problem
is Hotmail itself then copy the address book to a different place (eg. a
word processor file other than M$ Word) and wipe out the original file
every time the computer turns off.
If that doesn't work then a format and clean install should do the job
for a while. This assumes the problem is on his computer and not
originating elsewhere. Install anti-virus, anti-spyware, and firewall
programs (ONE of each - because competing vendors will see the other
product as malware). Once installed DO NOT TURN THEM OFF FOR ANY REASON!
Incidentally the software given out by MTS and Shaw are not very good.
They are better than nothing, but barely.
The second best thing he can do (this is a good idea regardless) is to
pick up a router and run his computer(s) behind that. Connecting
directly to an ISP without something in between the computer and their
servers is asking for trouble. Beware of what you tell the ISPs. The
place I volunteer at has had problems with MTS installers (and one Shaw
installer) outright lying to people about things working or not.
Finally if he is absolutely 100% sure with no doubts his system has been
compromised the best thing to do is move away from Windows entirely. The
down side is this means he needs two brain cells to rub together. The
absolutely best alternative is OpenBSD. It has never been hacked
remotely (unless the user gave out their ID and password). Next is
FreeBSD. Then Linux. Mac OS X is pretty good to but it looks like they
are starting to go in the wrong direction.
Later
Mike
Post by TechGuru
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a link
to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
Wizard Of Oz
2011-02-01 19:03:59 UTC
Permalink
Post by TechGuru
you sure like to write...
That's one of my jobs.
Post by TechGuru
most of it being useless to him (you really
think hes gonna switch to linux?)
That's why I presented it as a last resort. There is only so much
malware people are willing to tolerate. I find more people coming to me
saying they've had enough and want to change. As people learn more about
their machines they want more from them. Why settle for a toy operating
system when you can have the real thing... The only computer club in
Winnipeg which is actually growing is the UNIX group. Actually, I lie...
Some of them got promoted and moved out of town and the group dropped by
two members for the first time last year.

The other suggestions you missed were to switch from OE (that's a major
source of problems on its own) to something else. Then there is to
switch from Hotmail to GMail (or something else). Finally there were
some things to do if something hit his address book.
Post by TechGuru
and hotmails built in av and spam filter are very good these days
gmails better...but ..hotmails probably second best
I find a lot of people who go with Hotmail (another M$ product) only do
so because it is something suggested as a default web-mail program.
Before it was snapped up by M$ it was pretty good. I think it is slowly
being merged into the Windows Live package (the one offered by MTS).

Later
Mike
Post by TechGuru
Post by Wizard Of Oz
Post by TechGuru
use the webpage email instead of a client on your pc...your pc is
probably infected...should format and clean install
Before he does that here is an excessive solution to the problem...
First off it may not be originating from his computer. It is easy to
spoof an e-mail address. If someone managed to get into his computer
once, they probably have a copy of his address book. If that's what they
are doing then it's game over. There would be nothing he could do.
Incidentally using web based mail clients is not a good idea. The
connection information and probably the contents are sent without
encryption. At least using something like Thunderbird gives the user the
possibility of using SSL.
Having a look at what he was using, he was using the most insecure
e-mail program on the most insecure operating system in the world today.
Come to think of it Hotmail is none too secure either. They try but
somehow don't quite measure up. Try using another e-mail program for a
while. If the spam stops then that's it problem solved. If the problem
is Hotmail itself then copy the address book to a different place (eg. a
word processor file other than M$ Word) and wipe out the original file
every time the computer turns off.
If that doesn't work then a format and clean install should do the job
for a while. This assumes the problem is on his computer and not
originating elsewhere. Install anti-virus, anti-spyware, and firewall
programs (ONE of each - because competing vendors will see the other
product as malware). Once installed DO NOT TURN THEM OFF FOR ANY REASON!
Incidentally the software given out by MTS and Shaw are not very good.
They are better than nothing, but barely.
The second best thing he can do (this is a good idea regardless) is to
pick up a router and run his computer(s) behind that. Connecting
directly to an ISP without something in between the computer and their
servers is asking for trouble. Beware of what you tell the ISPs. The
place I volunteer at has had problems with MTS installers (and one Shaw
installer) outright lying to people about things working or not.
Finally if he is absolutely 100% sure with no doubts his system has been
compromised the best thing to do is move away from Windows entirely. The
down side is this means he needs two brain cells to rub together. The
absolutely best alternative is OpenBSD. It has never been hacked
remotely (unless the user gave out their ID and password). Next is
FreeBSD. Then Linux. Mac OS X is pretty good to but it looks like they
are starting to go in the wrong direction.
Later
Mike
Post by TechGuru
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a link
to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
Iowna Uass
2011-02-01 14:10:04 UTC
Permalink
Post by carbuff3
Anyone have an easy & cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a
link to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
The other posters are pointing at operating system issues, but I am
wondering if you have a facebook or any other social networking account that
you've allowed to access your address book.
If you have, then you'll need to uninstall that chunk of software you've
given permission to run on your pc.
Look in your browser for add ons and remove the ones you are not familiar
with.
Download and use chrome for a while. Today.... and I stress TODAY, chrome is
the safest browser. Firefox with no-script is good as well, but requires
more interaction and some users don't like that.
Make sure your antivirus is up to date, but if you've given permission to
whatever has installed, AV will do no good.

Also, if you haven't changed any passwords on your favorite sites, you
should do that after you've found the culprit on your system.
Wizard Of Oz
2011-02-01 19:09:21 UTC
Permalink
Post by Iowna Uass
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a
link to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
The other posters are pointing at operating system issues, but I am
wondering if you have a facebook or any other social networking account that
you've allowed to access your address book.
If you have, then you'll need to uninstall that chunk of software you've
given permission to run on your pc.
Look in your browser for add ons and remove the ones you are not familiar
with.
Download and use chrome for a while. Today.... and I stress TODAY, chrome is
the safest browser. Firefox with no-script is good as well, but requires
more interaction and some users don't like that.
Opera has been getting good reviews too.
Post by Iowna Uass
Make sure your antivirus is up to date, but if you've given permission to
whatever has installed, AV will do no good.
Same applies to the firewall and anti-spyware programs. I hate to say
it but Windows needs all three types of programs to be active just to
maintain minimum security.
Post by Iowna Uass
Also, if you haven't changed any passwords on your favorite sites, you
should do that after you've found the culprit on your system.
The problem is either on his system, on Hotmail, or on a third party
computer. The solution to the problem depends on the nature of what is
happening.

Later
Mike
TechGuru
2011-02-01 19:44:32 UTC
Permalink
windows isn't really unsecure...its bad behaviour from users that cause
problems...im sure if linux was the most popular system..there would be
a ton of security problems on it to

and if u were gonna suggest another os/pc...atleast suggest
mac..something much more user friendly and basically no malware
Post by Wizard Of Oz
Post by Iowna Uass
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a
link to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
The other posters are pointing at operating system issues, but I am
wondering if you have a facebook or any other social networking account that
you've allowed to access your address book.
If you have, then you'll need to uninstall that chunk of software you've
given permission to run on your pc.
Look in your browser for add ons and remove the ones you are not familiar
with.
Download and use chrome for a while. Today.... and I stress TODAY, chrome is
the safest browser. Firefox with no-script is good as well, but requires
more interaction and some users don't like that.
Opera has been getting good reviews too.
Post by Iowna Uass
Make sure your antivirus is up to date, but if you've given permission to
whatever has installed, AV will do no good.
Same applies to the firewall and anti-spyware programs. I hate to say it
but Windows needs all three types of programs to be active just to
maintain minimum security.
Post by Iowna Uass
Also, if you haven't changed any passwords on your favorite sites, you
should do that after you've found the culprit on your system.
The problem is either on his system, on Hotmail, or on a third party
computer. The solution to the problem depends on the nature of what is
happening.
Later
Mike
Wizard Of Oz
2011-02-02 17:29:00 UTC
Permalink
Post by TechGuru
windows isn't really unsecure...its bad behaviour from users that cause
problems...im sure if linux was the most popular system..there would be
a ton of security problems on it to
I didn't mention Linux in THIS message. Since you brought it up, I'll bite.

Relax, don't be so defensive on the issue. It is the very insecurity of
Windows which encourages bad behaviour. For example running from an
"administrator" level account. Also the need to run software which slows
down the computer and encourages the user to turn it off. FYI, Linux has
it built in. Think of BSD systems as closed doors with locked deadbolts.
Linux would be like a closed and locked door with a single lock. Macs
would be like a closed unlocked door. Windows would be an open door with
circus music and a flashing sign saying "come rob me". There is nothing
less secure than Windows. It leaves everything open by default. It was
designed with "ease of use" as well as copyright owners rights in mind.
Getting around the copyright owners rights stuff (the DRM stuff)
introduces another layer of insecurity. Most *NIX machines are designed
around getting things done in a secure environment. Macs are a compromise.

Considering most servers on the net are running *NIX variants the
cliche about the popularity of Windows is a bit self centred and
irrelevant. People attack *NIX boxes too. There are still less
successful attacks on *NIX boxes no matter how you look at it.
Post by TechGuru
and if u were gonna suggest another os/pc...atleast suggest
mac..something much more user friendly and basically no malware
A GUI is a GUI. At home I run both Linux and Mac machines and will
occasionally set up a FreeBSD box. Where I volunteer, I REPAIR Windows
machines. If you want to see easy in the Linux world, grab a copy of
Linux Mint. It's as easy as a Mac and lets you do more.

A friendly suggestion... Read the message through a couple of times
before replying. It was the reply to your message where I was talking
about going to another OS (as a last resort). In this one I limited
myself to suggestions of other PROGRAMS and confirming I.U.s suggestion
about AV software. It's one thing to be an M$ fanboy but you should
still try to pay attention to what people are saying.

Later
Mike
Post by TechGuru
Post by Wizard Of Oz
Post by Iowna Uass
Anyone have an easy& cheap way to stop this? Every 5 weeks or so,
everybody in my Hotmail address book gets phony messages, always with a
link to click on, always with nothing in the Subject line.
I'm starting to lose friends over this, and yes, I have tried anti-virus
software, but it can't eliminate it (so far).
TIA
The other posters are pointing at operating system issues, but I am
wondering if you have a facebook or any other social networking account that
you've allowed to access your address book.
If you have, then you'll need to uninstall that chunk of software you've
given permission to run on your pc.
Look in your browser for add ons and remove the ones you are not familiar
with.
Download and use chrome for a while. Today.... and I stress TODAY, chrome is
the safest browser. Firefox with no-script is good as well, but requires
more interaction and some users don't like that.
Opera has been getting good reviews too.
Post by Iowna Uass
Make sure your antivirus is up to date, but if you've given
permission to
whatever has installed, AV will do no good.
Same applies to the firewall and anti-spyware programs. I hate to say it
but Windows needs all three types of programs to be active just to
maintain minimum security.
Post by Iowna Uass
Also, if you haven't changed any passwords on your favorite sites, you
should do that after you've found the culprit on your system.
The problem is either on his system, on Hotmail, or on a third party
computer. The solution to the problem depends on the nature of what is
happening.
Later
Mike
TechGuru
2011-02-02 21:00:10 UTC
Permalink
no...its stupid users...Ive run windows for 20 years...and never once
run a av or antispyware program....if your smart about how u use a
pc...theres no need for those sorta programs
a good router is all u need for a firewall (and yes I run a mac and
linux machines as well)

only for 2 reasons...1..its lighter weight then windows server
2..servers are generally computeres u never really need to interact
with...if its was a desktop environment for a business or
something...their generally gonna be windows server machines
and actually windows server 2003/08 are slowly taking over nix boxes

yes well if linux ever wants to go mainstream...they will have to do 3
things...one make it much more user friendly...2..integrate the
distributions...theres so many..the average person would be wayyy
confused...3...get offical driver support from alot more manufactures

the best os would be one with the ease of use of windows....the openess
of linux ...the driver support of windows...and could run on macs as
well...and perhaps the lightweightness of linux to...to be able to run
on older hardware
and btw ..I don't think the security of any 3 of the systems differs
much...like I said its the users habbits

On 02/02/2011 11:29 AM, Wizard Of Oz wrote:
It is the very insecurity of Windows which encourages bad behaviour

Considering most servers on the net are running *NIX variants

It was designed with "ease of use"
Wizard Of Oz
2011-02-03 21:16:52 UTC
Permalink
Post by TechGuru
no...its stupid users...Ive run windows for 20 years...and never once
run a av or antispyware program....if your smart about how u use a
pc...theres no need for those sorta programs
a good router is all u need for a firewall (and yes I run a mac and
linux machines as well)
Back in the day (Windows 3.0 --> Windows ME) I ran AV programs as often
as I could. Good training for a sys-admin. As a sys-admin you KNOW the
users are out to get you. In all that time I've only needed it once.
Although recently I did find a trojan disguised as a jpeg (not a problem
as long as you are not running Windows or if you have the file
extensions turned on).

It is one thing if you are only providing support for yourself. It's
another thing if you have to support other users or customers in a live
environment. Let's just say I've been moved to a position recently which
means I have to learn all this stuff.
Post by TechGuru
only for 2 reasons...1..its lighter weight then windows server
2..servers are generally computeres u never really need to interact
with...if its was a desktop environment for a business or
something...their generally gonna be windows server machines
and actually windows server 2003/08 are slowly taking over nix boxes
I generally run Linux and Mac desktops. I'm still learning about
servers. At this point I can do simple LAMP installations and am looking
for a free Mac equivalent (10.4). It's got to the point where I can get
them up and running in about 15 minutes (say an hour for billing). I'd
prefer to have servers running under OpenBSD but I haven't really had
the opportunity for that yet.

The only places I've seen Windows taking over or replacing *NIX
machines in the server market is when there was some sort of
interference by M$, bean counters, or politicians on the M$ payroll. The
military under King George Bush II showed typical results. Replacing BSD
on two subs and a frigate... One sub sank right out of drydock. The
other sub fired all its missiles (they were destroyed after a reboot).
The frigate started shooting at imaginary targets until a reboot.
Another example was a medium sized German city which moved from Windows
to Linux. The politicians got involved after three months and ordered
the change back. As soon as they changed back and looked at the bills,
they ordered another reversal and reinstalled Linux.

I've read books for both Linux and Windows servers. If you can get past
the vocabulary the Linux books make a lot more sense. As an example read
what both groups have to say about configuring a RAID.
Post by TechGuru
yes well if linux ever wants to go mainstream...they will have to do 3
things...one make it much more user friendly...2..integrate the
distributions...theres so many..the average person would be wayyy
confused...3...get offical driver support from alot more manufactures
1) Try Linux Mint.
2) Try Linux Mint or Ubuntu.
3) Get the manufacturers to stop taking kickbacks from M$ and open the
code if they don't want to do it themselves.

I use both Linux and Macs on the desktop. Unfortunately both are
starting to bloat and act more like Windows. That's just examples of bad
programming. Even so, I still prefer them to what I have to work with on
Fridays. The supervisor has seen the light. Now to get the bean counters
and boss to take a serious look.

Later
Mike
Post by TechGuru
the best os would be one with the ease of use of windows....the openess
of linux ...the driver support of windows...and could run on macs as
well...and perhaps the lightweightness of linux to...to be able to run
on older hardware
and btw ..I don't think the security of any 3 of the systems differs
much...like I said its the users habbits
It is the very insecurity of Windows which encourages bad behaviour
Considering most servers on the net are running *NIX variants
It was designed with "ease of use"
Loading...