There’s a rogue worm going around that infects Yahoo Messenger and if you have FaceTime’s RTGuardian and GEM software installed, then you are saved. Just now sure if the biggies like Symantec and NAI have updated their patches yet.
Researchers have identified an "insidious" threat affecting Yahoo Messenger. A self-propagating worm, named yhoo32.explr, installs a piece of software called 'Safety Browser' and then hijacks the Internet Explorer homepage, leading users to a site that puts spyware on their PCs.
The malware infects the PC with two elements. The first element is a web browser called “Safety Browser.” This stand-alone application has no uninstaller and disguises itself with an Internet Explorer logo in some instances. The application also hijacks the personal homepage in Internet Explorer and points users to Safety Browser's homepage (demoplanet.tv). The hijack also plays looped music that cannot be stopped when the user starts up the PC or Safety Browser. The second element is the self-propagating worm. This worm installs an .exe file that spreads the infection through Yahoo Messenger to everyone on the Contacts List. This spam over instant messaging (IM) is called spim
Safety Browser Worm hijacks the Internet Explorer homepage source
Comment Preview