Plaxo - Possible win32 virus detected

Discussion in 'NOD32 version 2 Forum' started by Blackspear, Aug 8, 2003.

Thread Status:
Not open for further replies.
  1. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    I received an email from a friend yesterday wanting to update my contact details, because of who this person is I obliged and clicked on the link. What I didn't realise is that a 3rd party now has a copy of all those details.

    The program comes from http://www.plaxo.com/

    I did a scan of my system today and Nod32 V2 announced that plaxo - possible win32 virus

    I have since deleted the program, not an easy thing to do, and have read an article on how plaxo works http://www.pcmag.com/article2/0,4149,905467,00.asp

    After reading this article I have advised my friend to hold back on using the program as who knows what he has just opened his computer up to. One of the most concerning things is it accesses your password...

    Comments please o_O

    Cheers.
     
  2. martindijk

    martindijk Registered Member

    Joined:
    Jun 13, 2003
    Posts:
    537
    Location:
    Gorredijk - the Netherlands
    Hi Blackspear,

    All i can say is,

    This is pure theft, they say they won't do anything with your address list and password, so why do they need them in the first place.

    rgds,
    Martin
     
  3. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    I agree, interesting that Nod believes it is a virus...

    Cheers :D
     
  4. martindijk

    martindijk Registered Member

    Joined:
    Jun 13, 2003
    Posts:
    537
    Location:
    Gorredijk - the Netherlands
    Hi Blackspear,

    This is a quote from Ellen, working at Spamcop.


     
  5. martindijk

    martindijk Registered Member

    Joined:
    Jun 13, 2003
    Posts:
    537
    Location:
    Gorredijk - the Netherlands
    Hi Blackspear,

    Maybe it is a virus, maybe not, depends whether your running heuristics or not ;)

    Let's hope not.

    Quote from Hackers Blog:

    rgds,
    Martin
     
  6. martindijk

    martindijk Registered Member

    Joined:
    Jun 13, 2003
    Posts:
    537
    Location:
    Gorredijk - the Netherlands
  7. fryr

    fryr Registered Member

    Joined:
    Jul 15, 2003
    Posts:
    51
    The column article referenced earlier in this thread has been updated - see http://www.pcmag.com/article2/0,4149,949832,00.asp for the update
     
  8. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    That's a little less worrisome...

    Cheers :D
     
  9. martindijk

    martindijk Registered Member

    Joined:
    Jun 13, 2003
    Posts:
    537
    Location:
    Gorredijk - the Netherlands
    Hi all,

    Still, let's bear in mind that they still have access to your contacts and password.

    Let's keep that in mind ;)

    rgds,
    Martin
     
Thread Status:
Not open for further replies.