Help with Windows, please no flames! - Page 2


Page 2 of 2 FirstFirst 12
Results 16 to 26 of 26

Thread: Help with Windows, please no flames!

  1. #16
    Join Date
    Jan 2003
    Location
    Zurich, Switzerland
    Posts
    2,658
    Originally posted by j79zlr
    These adware/malware/spyware companies are really getting deceptive and expecially good at making an almost impossible to remove program.
    You are saying there are entire businesses behind this stuff? So far I always figured it's mostly isolated hackers, although I have heard ties with the Mafia are suspected.

    "What can be said at all can be said clearly, and what we cannot talk about we must pass over in silence."

    Tractatus Logico-Philosophicus by Ludwig Wittgenstein (1889-1951)

  2. #17
    Join Date
    Oct 2002
    Location
    Baton Rouge, Louisiana, USA
    Posts
    799
    Yes, it's big business. There's a lot of money being made by spammers, and in order to spam successfully enough to get rich, a spammer needs to have a lot of zombie computers to spam with.
    Isaac Kuo, ICQ 29055726 or Yahoo mechdan

  3. #18
    Join Date
    Feb 2002
    Location
    Montana
    Posts
    67
    Isn't it amazing the mind set of these people. How long would a company last if their commercials broke your tv every 6 months.

    I am glad to see that it's a big enough problem that even the linux guru's here are willing to lend a hand to help someone fix their windows box.

  4. #19
    Join Date
    Mar 2003
    Location
    Augusta, GA
    Posts
    5,461
    http://www.ewido.net/en/ has a free trial, works very very well. After installing and updating run a full scan.
    Then if you can figure out how to do it, turn off automatic backup, reboot in safe mode and run a disk scan and defragment. Then run http://personal.inet.fi/business/toniarts/ecleane.htm
    to clean registry. Then http://www.analogx.com/contents/down...em/dllarch.htm to clean up any dll's.
    Then http://www.winpatrol.com/ to let you know if anything tries to access the web or start up and install itself.
    After a few days if nothing pops up again turn auto backup back on and see if the trojan comes back. If it does, you know now to delete your backup files and start a new backup after you run those scans again.
    All the programs are free that I listed.
    __________________________________________________ _______________________________________
    Bigboogie on boogienights.net:
    Ammo case
    Asus 8N32 SLI MB
    AMD Athlon x2 3800+
    2 GB Patriot Signature 400 DDR
    160 GB Hitachi 7200 IDE
    2 x-250 Seagate SATA2
    EVGA Nvidia 7900GT
    Dell 2007WFP
    Logitech 5.1 speakers
    Logitech MX1000 mouse
    Dell USB keyboard
    NEC 3500 DVD-RW
    Benq 1655 DVD-RW



    (God bless tax refunds)

  5. #20
    Join Date
    Aug 2003
    Location
    Chicago, IL
    Posts
    702
    Don't purchase spyware software, it is unnecessary, and most are rip offs. There are plenty of freeware tools that will clean you up. Spybot Search and Destroy, AdAware, AVG Free AV, CWShredder, and any number of forums that deal with HJT logs will clean you up.

    I hate to be stubborn on this, but I clean tons of spyware out of machines daily. There are 4 things you basically need to have a healthy windows experience, 1) Don't use IE, ever, at all, and most importantly never. Actually, only use it to get Windows and Office updates, anything else is foolish. 2) Going back to #1, keep windows updated, make sure you get all the critical updates that are out there including service packs, M$ doesn't patch everything, but when they do, it is for good reason. 3) Make sure you have an AV installed, and its updated. 4) Remove M$'s Java, and install Sun's. The java byte-verify trojan is nasty and can infect fully patched MSJVM's.

    Sidenote, updates aren't just a MS thing, I see servers with 300 days uptime, and all I think is that they aren't updated. Somehow uptime seems to be a faux pas of the unix world, uptime might show the stability of the system, but it also shows the insecurity. Thats great that you can have a RH server with 700 days uptime, but how many security related kernel patches have been missed in that time?
    I haven't cried like this since I paid for Godfather III --Fat Tony

    Currently breaking:
    Gentoo Stage 1 w/gentoo-dev-2.6.14-r2 kernel
    FreeBSD 6.0
    XP Pro, well thats already broken

  6. #21
    Join Date
    Jun 2003
    Location
    People's Republic of North America (Former United States)
    Posts
    849
    I didn't see anyone here tell you to boot into Safe Mode. Have you tried that? Once there, you might be able to find the offending file, since, hopefully, it wont be a running process.
    I equivocate, therefore I might be.

    My Linux/Unix Boxes:
    Home: Slackware 10, CentOS 5.3, RHEL 5, Ubuntu Workstation 9.10, Work: RHEL 5, CentOS 5

  7. #22
    Join Date
    Dec 2002
    Location
    Seattle, WA USA
    Posts
    797
    Originally posted by klackenfus
    I didn't see anyone here tell you to boot into Safe Mode. Have you tried that? Once there, you might be able to find the offending file, since, hopefully, it wont be a running process.
    Almost every post on the first page mentioned safe mode.
    Install the Justlinux.com search plugin for Mozilla/Firefox!

    G4L: Your best friend and your worst enemy
    Distrowatch: (Nearly) Complete profile listing of popular Linux distributions
    Lest you want a tonguelashing, Read the posting guidelines first
    Jabber: creepyt at jabber.org IRC: #justlinux
    Now 100% MSTD free! Enjoy the onslaught of Microsoft transmitted diseases, suckers!

  8. #23
    Join Date
    Jun 2003
    Location
    People's Republic of North America (Former United States)
    Posts
    849
    Almost every post on the first page mentioned safe mode.
    Yup, you're right. That will teach me to do three things at once, sorry!
    I equivocate, therefore I might be.

    My Linux/Unix Boxes:
    Home: Slackware 10, CentOS 5.3, RHEL 5, Ubuntu Workstation 9.10, Work: RHEL 5, CentOS 5

  9. #24
    Join Date
    Dec 2002
    Location
    Seattle, WA USA
    Posts
    797
    Originally posted by klackenfus
    Yup, you're right. That will teach me to do three things at once, sorry!
    Dont feel bad. If I didnt do things that way, Id never get anything done at all.
    Install the Justlinux.com search plugin for Mozilla/Firefox!

    G4L: Your best friend and your worst enemy
    Distrowatch: (Nearly) Complete profile listing of popular Linux distributions
    Lest you want a tonguelashing, Read the posting guidelines first
    Jabber: creepyt at jabber.org IRC: #justlinux
    Now 100% MSTD free! Enjoy the onslaught of Microsoft transmitted diseases, suckers!

  10. #25
    Join Date
    Nov 2000
    Location
    /dev/3.14Pie/HowRandom
    Posts
    6,700
    Originally posted by j79zlr
    Don't purchase spyware software, it is unnecessary, and most are rip offs. There are plenty of freeware tools that will clean you up...

    ...There are 4 things you basically need to have a healthy windows experience,
    Good, on-the-mark advice. You can greatly minimize your chances of infection by following the 4 suggestions j79zlr posted, and if you do get infected, the free utilities he/she mentioned are the tools most-often recommended by those of us who specialize in fighting malware.

    Also as j79zlr mentioned though, some of the latest threats (qoologic, bube, the new VX2 transponder variants, etc.) can be extremely difficult to remove, and you will need specialized utilities and expert help to get them off your system; programs like Ad Aware and SpyBot alone just aren't going to do the trick.

    Your best bet at that point is to register at one of the support sites where we deal with these nasties and let us help you through the cleaning process; the support sites below are just a few of the reputable "anti-spyware" sites; they have very knowledgeable and helpful volunteers:

    http://wilders.org/

    http://castlecops.com/

    (*cough!*)(*plug!*) http://www.daniweb.com/techtalkforums/forum64.html

    http://forums.subratam.org/index.php?act=idx

    http://www.lavasoftsupport.com/index...ftsupport.com/

  11. #26
    Join Date
    Jan 2004
    Posts
    299
    i got it via, safe mode, I am so glad I am done with that class, no more windows sql, back to the relative safety of my mySQL on my gentoo machine

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •