To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.org.ca.rtltorontoOpen lugnet.org.ca.rtltoronto in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Organizations / Canada / rtlToronto / 12412
12411  |  12413
Subject: 
Arrrgghhh!!!!! (part deux)
Newsgroups: 
lugnet.org.ca.rtltoronto
Date: 
Tue, 16 Nov 2004 14:56:11 GMT
Viewed: 
484 times
  
So I purchased a brand spankin' new 'puter system yesterday ('cause EQ2's been
out for over a week now and I'm missing the lands o' norrath...)

and I takes the system to work, to configure it in my spare time.

So I put XP Pro ion it, get all the latest patches and such, but what  I didn't
do was a) install Zone Alarm and 2) disable a whole bunch of services that
aren't needed to run a home system--Terminal Server connections?  Sure at work
I' on like 40+ terminal servers across Canada maintaining them, but for home
use?  Why is this an automatic startup feature???  Idiots...

Anyway, get the system all up and running--all hardware configured and then I
takes the system to my abode.

Wasn't plugged into the high speed cable connex for more than 2 minutes before
pop-ups started appearing.

4 hours later, after tracking down registry entries, deleting directories and
files, and basically purging my new system of spyware, it's back to semi-normal.

Microsoft sux.

Anyway, disabled yet even more processes, got Zone Alarm running, and also put
the system behind my hardware router/firewall.  The only thing left is an
annoying little thing that happens in Internet Explorer--I know that many of you
will say that this is the problem right there--i.e. IE ;) but it's what's on the
system and I have to use it at work 'n such, so I'll stick with it. Anyway,
after IE's open, about 1-2 minutes later a 'search' window appears at the left
with all sorts of dumb links.  Can't find in the registry where to stop this
from occurring.  Maybe I shuold have put this in o.t.geek instead, but I trust
that rtl lurkers are pretty smart as well.

Anyway, daves new soooper 'puter is a p4 3.0 with 128 meg Asus/ATI AX600EX video
card and a gig of ram, with these 'new' sata drives.  Now more for me to read up
on...

Well, my nights are now booked between LEGO and EQ2.  Waittaminute, not much ahs
changed when my nights were booked for LEGO and EQ1.

Dave K



Message has 11 Replies:
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Pft. World of Warcraft, baby! (...) I read this far before I said "IE". Then I also said "Firefox". And probably "Reinstall, and/or Spybot S&D". (...) Try Spybot - it's actually pretty good at rooting these things out: (URL) (...) Cool! Sounds (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Same problem with W2K. I used Spybot S&D (URL) and Adaware (URL) but it kept coming back... I eventually resorted to HijackThis (URL) which is definately the swiss army knife of spywareware removal tools. Doesn't actually identify spyware by (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Okay, I'm never listening to your "I have no money for Lego". No sympathy from me. (...) It's for remote customer support, dumbass :) (...) You mean you didn't set it up behind the firewall to BEGIN WITH? Jesus, that's like running around (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) WOW, this sounds just like what happened to the "spare" computer at work. I gave it to the new guy, and it took him all of one day to infest the machine, which is connected to the corperate VPN!!!! (...) I tried all the software several people (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) You should just reformat and start from scratch. Your PC was completely compromised, and no amount of scanning will give you 100% guarantee that there is no custom made key logger lurking behind waiting for that credit card pattern. And use (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Dave, I was wrong about formatting your computer.... what you need is a bit of Strong bad. YEP, ol' SB has your soloution right here: (URL) timely (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
By the very fact that this post generated the wonderful responses from the rtl people, as well as lurkers, is a testament to the greatness of LUGNET. Thanks to all that responded with ideas and links to various venues to help alleviate my dilemma. (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Time for a Mac... -Greg (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Sounds like when I was helping my brother get his new computer set up on Case's campus. Connected to the gigabit fiber network in order to get the campus Symantec antivirus program installed...but before the virus scan (on an empty computer) (...) (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
(...) Yah I had the same thing happen on my WORK computer. But ever since I installed Ad-Aware, the "search window" hasn't come up again... (20 years ago, 16-Nov-04, to lugnet.org.ca.rtltoronto)
  Re: Arrrgghhh!!!!! (part deux)
 
Dave, I just have to chip in after reading your stories. (...) OK. I say you totally do away with XP and check this guy out: (URL) Stripped-down Windows 2000 rulez>, man! :) My two cents. (Snipped Dave's spyware struggle) (...) We should all have (...) (20 years ago, 18-Nov-04, to lugnet.org.ca.rtltoronto, FTX)

17 Messages in This Thread:











Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    

Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR