-
Originally posted by j79zlr
These adware/malware/spyware companies are really getting deceptive and expecially good at making an almost impossible to remove program.
You are saying there are entire businesses behind this stuff? So far I always figured it's mostly isolated hackers, although I have heard ties with the Mafia are suspected.
-
Yes, it's big business. There's a lot of money being made by spammers, and in order to spam successfully enough to get rich, a spammer needs to have a lot of zombie computers to spam with.
Isaac Kuo, ICQ 29055726 or Yahoo mechdan
-
Isn't it amazing the mind set of these people. How long would a company last if their commercials broke your tv every 6 months.
I am glad to see that it's a big enough problem that even the linux guru's here are willing to lend a hand to help someone fix their windows box.
-
http://www.ewido.net/en/ has a free trial, works very very well. After installing and updating run a full scan.
Then if you can figure out how to do it, turn off automatic backup, reboot in safe mode and run a disk scan and defragment. Then run http://personal.inet.fi/business/toniarts/ecleane.htm
to clean registry. Then http://www.analogx.com/contents/down...em/dllarch.htm to clean up any dll's.
Then http://www.winpatrol.com/ to let you know if anything tries to access the web or start up and install itself.
After a few days if nothing pops up again turn auto backup back on and see if the trojan comes back. If it does, you know now to delete your backup files and start a new backup after you run those scans again.
All the programs are free that I listed.
__________________________________________________ _______________________________________
Bigboogie on boogienights.net:
Ammo case
Asus 8N32 SLI MB
AMD Athlon x2 3800+
2 GB Patriot Signature 400 DDR
160 GB Hitachi 7200 IDE
2 x-250 Seagate SATA2
EVGA Nvidia 7900GT
Dell 2007WFP
Logitech 5.1 speakers
Logitech MX1000 mouse
Dell USB keyboard
NEC 3500 DVD-RW
Benq 1655 DVD-RW
(God bless tax refunds)
-
Don't purchase spyware software, it is unnecessary, and most are rip offs. There are plenty of freeware tools that will clean you up. Spybot Search and Destroy, AdAware, AVG Free AV, CWShredder, and any number of forums that deal with HJT logs will clean you up.
I hate to be stubborn on this, but I clean tons of spyware out of machines daily. There are 4 things you basically need to have a healthy windows experience, 1) Don't use IE, ever, at all, and most importantly never. Actually, only use it to get Windows and Office updates, anything else is foolish. 2) Going back to #1, keep windows updated, make sure you get all the critical updates that are out there including service packs, M$ doesn't patch everything, but when they do, it is for good reason. 3) Make sure you have an AV installed, and its updated. 4) Remove M$'s Java, and install Sun's. The java byte-verify trojan is nasty and can infect fully patched MSJVM's.
Sidenote, updates aren't just a MS thing, I see servers with 300 days uptime, and all I think is that they aren't updated. Somehow uptime seems to be a faux pas of the unix world, uptime might show the stability of the system, but it also shows the insecurity. Thats great that you can have a RH server with 700 days uptime, but how many security related kernel patches have been missed in that time?
I haven't cried like this since I paid for Godfather III --Fat Tony
Currently breaking:
Gentoo Stage 1 w/gentoo-dev-2.6.14-r2 kernel
FreeBSD 6.0
XP Pro, well thats already broken
-
I didn't see anyone here tell you to boot into Safe Mode. Have you tried that? Once there, you might be able to find the offending file, since, hopefully, it wont be a running process.
I equivocate, therefore I might be.
My Linux/Unix Boxes:
Home: Slackware 10, CentOS 5.3, RHEL 5, Ubuntu Workstation 9.10, Work: RHEL 5, CentOS 5
-
Originally posted by klackenfus
I didn't see anyone here tell you to boot into Safe Mode. Have you tried that? Once there, you might be able to find the offending file, since, hopefully, it wont be a running process.
Almost every post on the first page mentioned safe mode.
-
Almost every post on the first page mentioned safe mode.
Yup, you're right. That will teach me to do three things at once, sorry!
I equivocate, therefore I might be.
My Linux/Unix Boxes:
Home: Slackware 10, CentOS 5.3, RHEL 5, Ubuntu Workstation 9.10, Work: RHEL 5, CentOS 5
-
Originally posted by klackenfus
Yup, you're right. That will teach me to do three things at once, sorry!
Dont feel bad. If I didnt do things that way, Id never get anything done at all.
-
Originally posted by j79zlr
Don't purchase spyware software, it is unnecessary, and most are rip offs. There are plenty of freeware tools that will clean you up...
...There are 4 things you basically need to have a healthy windows experience,
Good, on-the-mark advice. You can greatly minimize your chances of infection by following the 4 suggestions j79zlr posted, and if you do get infected, the free utilities he/she mentioned are the tools most-often recommended by those of us who specialize in fighting malware.
Also as j79zlr mentioned though, some of the latest threats (qoologic, bube, the new VX2 transponder variants, etc.) can be extremely difficult to remove, and you will need specialized utilities and expert help to get them off your system; programs like Ad Aware and SpyBot alone just aren't going to do the trick.
Your best bet at that point is to register at one of the support sites where we deal with these nasties and let us help you through the cleaning process; the support sites below are just a few of the reputable "anti-spyware" sites; they have very knowledgeable and helpful volunteers:
http://wilders.org/
http://castlecops.com/
(*cough!*)(*plug!*) http://www.daniweb.com/techtalkforums/forum64.html
http://forums.subratam.org/index.php?act=idx
http://www.lavasoftsupport.com/index...ftsupport.com/
-
i got it via, safe mode, I am so glad I am done with that class, no more windows sql, back to the relative safety of my mySQL on my gentoo machine
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|