Early this morning, a message was posted to a private list giving the from as a good friend in the list, Lance. Since we are a small, friendly group, we took it that the link given in the message was something he wanted us to see. There was no other text, only this link in the body of the message. When I went to the link, Avast! warned me that it was a virus worm location, so I quit out of it immediately, and posted a message to the list. I was quickly informed that the message was forged, and that Lance had not posted it.
Some other members of the list also assumed that Lance wanted us to look at that site, and now we have a problem. Janet found that once she got to the site, she could not quit out of the window until she quit from her browser, which crashed her Windows. Now she finds that her computer intermittently starts playing “La Bamba.”
Janet is running AVG. It has not protected her. Do you know what she is infected with, and will Avast! fix it?
The link to the site is:
#ru#ro#vu#pa.ho#st#ifi#c.c#om
I have added the hatches to prevent anyone from accidentally thinking that they might want to go check this one out.
the report that came up with the Avast! block on this site was:
File Name: h#ttp://3#ttm#an.c#om/o#k2.h$tm{g#zip#}
Malware Name: HTML:Iframe-inf
Malware Type: Virus/Worm
VPS Version: 090716-1, 16/07/2009
As for Lance, since it was a Yahoo account, it seems unlikely that his computer is infected with the email virus, but is it possible that Yahoo is infected?
Any information you may have to help Janet and Lance would be greatly appreciated. I’m OK, and for that I owe you guys a huge thank you.