A Naked Man Stuck in My Computer!!!
This is not exactly a sex question, but since I really have nowhere else to take it, I hope the moderator will allow it. I suspect many other guys have been duped as I was.
I was cruising the net the other night looking at naked men, and found my way onto a web site. One of the galleries said, "Screen Savers," and without thinking I clicked, and before I realized what was happening, I had a naked man screen saver installed on my computer. I deleted it from my "downloads" folder (where I chose to save it), but it s still there. Moreover, I now have a "quicksearch" tool bar on my desktop when I start up, and really worry that I have somehow opened my system up to all kinds of nasties. I've tried the add/remove software on my control panel, but these items are not on the list. The naked man is nice, but like so many men after sex, I want him to go away now! Can anybody help? The IT manager in my office is a very nice straight guy, but I can't take this problem to him! Thanks, and thanks to the moderator for letting me go off topic a bit! |
Never install anything on your computer. :)
That being said - you now have adware, spyware, etc on your computer. Now - it is was a screen saver & not necessarily a program - you can search in your Windows for *.scr - but it more than likely was a program. <edit just saw you went to the Add / remove, but I am leaving this anyway> So you need to go to Start - Control Panel - Add / Remove Programs. See if you see that screen saver there - hopefully it is there & it will remove everything for you. </edit> Do you see new.net there? Remove that. Or what about Virtual Bouncer? Something possibly like that. Or maybe IncrediFind. I am just working off memory here. As far as the quick search - that might be a lot more difficult. See if there is a program there for that as well. Do you know what was installed on your computer before all of this happened? Also go to Start - Programs - Start-Up - anything in there that was no in there before? If the above does not help: http://www.spychecker.com/program/hijackthis.html - download this & paste the results here. |
I haven't tried the software Corey recommends, but I'm sure it's just as good as the one I use. It might be helpful to you to try out BOTH just in case one has a tough time finding what needs to be removed from your system. Go here:
http://www.lavasoftusa.com/software/adaware/ Download and install. Very easy. This software is absolutely free, updated often, extremely effective. The first time you run it you'll probably find dozens and dozens of spyware references. AdAware will quarantine these items, remove them from your system, and NOT allow them to ever return. To date, AdAware hasn't failed me yet. I am vigilant with my PC, however -- I NEVER allow any installs of frivolous or "free" items: they're almost always spyware. I run AdAware about once a month. For me, most times there's nothing to quarantine and remove, but it's nice to know for sure so I run it anyway. This is also a good time to do a defrag, just to keep on schedule. Go through the options the first time you run it. It's all pretty much self-explanatory. Use the help file or just Google AdAware for plenty of advice on running it. You're right -- spyware often hides itself and won't show in Add/Remove Programs, but it's worth a look anyway. You may find some of the more "kind and thoughtful" spyware installs itself properly in the Program Files folder, so if you are familiar with your PC you may be able to locate the new, unusual folders and check to see if an uninstall program is offered. Usually not, though. I'm sure you know NOT to just delete a folder -- you'll have remnants left in your registry. AdAware and similar programs will purge the registry for you. If you want, you can also head into Internet Options and remove the "install on demand" option. This will force IE to reject all installs offered by websites. Personally, I leave it on and just manually reject installs, but it's up to you. My own personal rant... Windows allows for an option to appear which will allow a user to "trust all content" from whichever source is trying to send you junk. For example, a trusted company like Macromedia. Why the hell haven't they considered an alternate option to REJECT all future content from a specific source? I'd love to be able to block, say, XUpiter, an evil bit of spyware that shows up quite often when online. Get cracking on this, Gates! |
It's hard to diagnose computer problems via the net. I prefer just to sign on & look at the person's computer :) - and that is usually what I allow the tech guys when I have screwed up my server (like today :mad: )
And I always hate to suggest to install something else to fix something else. LOL - I know I recommended something - and adaware is good. I have the "paid" version - but another great program written by people who hate spyware is called spybot: http://www.safer-networking.org/ The reason I did not suggest either of them - I have seen major problems (one person could not connect to the internet - I had to blow out his entire system). You do need to know what you are tell spybot / adaware to delete BEFORE you delete. If you have any P2P programs (kazaa, limewire, bearshare) - it is VERY important to let us know. Deleting portions of their "spyware" will cause severe problems in your system. |
The Same here:-(
Guilty as charged.
Few months ago, I downloaded a new clock utility since my present clock on this antique note-book I really like (this is crazy, I know) was running like trains in Italy or planes there, these days. So, I downloaded this junk and managed to extract most of it but whenever I power up the comp. windows starts searching for it. Anyway, here is the scan. If you care to look at it, please, let me know what I need to delete... Thanks, Corey... KD:D Logfile of HijackThis v1.97.7 Scan saved at 5:08:55 AM, on 5/2/2004 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\COMPAQ\CPQINET\CPQINET.EXE C:\WINDOWS\CPQDIAG\CPQDFWAG.EXE C:\WINDOWS\SYSTEM\ATI2PLAB.EXE C:\COMPAQ\INTERNET\ISDBDC.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\BTTNSERV.EXE C:\WINDOWS\EXPLORER.EXE C:\WINDOWS\TASKMON.EXE C:\WINDOWS\SYSTEM\SYSTRAY.EXE C:\WINDOWS\SYSTEM\ATI2CWXX.EXE C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPLPR.EXE C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPENH.EXE C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\CPQEADM.EXE C:\WINDOWS\SYSTEM\ATIPTAAB.EXE C:\WINDOWS\SYSTEM\INTERNAT.EXE C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WND.EXE C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WNF.EXE C:\PROGRAM FILES\NETGEAR\WG511SCU\UTILITY\GEAR511.EXE C:\WINDOWS\SYSTEM\LEXBCES.EXE C:\PROGRAM FILES\HOTMAIL POPPER\HOTPOP.EXE C:\WINDOWS\SYSTEM\RPCSS.EXE C:\WINDOWS\SYSTEM\WMIEXE.EXE C:\WINDOWS\SYSTEM\LEXPPS.EXE C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\FINDFAST.EXE C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\OSA.EXE C:\WINDOWS\SYSTEM\SPOOL32.EXE C:\WINDOWS\SYSTEM\DDHELP.EXE C:\PROGRAM FILES\EPROMPTER\EPROMPTER.EXE C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\FINDFAST.EXE C:\WINDOWS\SYSTEM\PSTORES.EXE C:\WINDOWS\DESKTOP\HIJACKTHIS.EXE R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://66.250.130.194/main/sp.php R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://66.250.130.194/main/sp.php R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://deardrocher.com/cgi-bin/get.pl?s=58 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://66.250.130.194/main/sp.php R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer von i-one Internet R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://rd.yahoo.com/customize/ymsgr/.../www.yahoo.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = http://66.250.130.194/main/hp.php R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O4 - HKLM\..\Run: [ScanRegistry] c:\windows\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [Ati2cwxx] Ati2cwxx.exe O4 - HKLM\..\Run: [AtiGart] c:\Ati\Gart\AtiGart.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\Compaq\Easy Access Button Support\cpqeadm.exe O4 - HKLM\..\Run: [EACLEAN] C:\Program Files\Compaq\Easy Access Button Support\eaclean.exe O4 - HKLM\..\Run: [Service Connection] c:\cpqs\bwtools\sccenter.exe O4 - HKLM\..\Run: [AvconsoleEXE] C:\Program Files\Network Associates\McAfee VirusScan\avconsol.exe /minimize O4 - HKLM\..\Run: [VsecomrEXE] C:\Program Files\Network Associates\McAfee VirusScan\VSECOMR.EXE O4 - HKLM\..\Run: [VsStatEXE] C:\Program Files\Network Associates\McAfee VirusScan\VSSTAT.EXE /SHOWWARNING O4 - HKLM\..\Run: [AtiPTA] Atiptaab.exe O4 - HKLM\..\Run: [OEMCLEANUP] c:\windows\OPTIONS\oemreset.exe O4 - HKLM\..\Run: [internat.exe] internat.exe O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe O4 - HKLM\..\Run: [IrMon] IrMon.exe O4 - HKLM\..\Run: [McAfeeWebScanX] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\WebScanX.Exe O4 - HKLM\..\Run: [CyberLat RAM Cleaner] C:\PROGRAM FILES\CYBERLAT\CYBERLAT RAM CLEANER 1.1\CyberLat Ram Cleaner 1,1.exe O4 - HKLM\..\Run: [SpyBlocker] C:\PROGRAM FILES\SPYBLOCKER SOFTWARE\spyblocker.exe O4 - HKLM\..\Run: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE O4 - HKLM\..\Run: [FreeRAM XP] "C:\WINDOWS\DESKTOP\FREERAM XP PRO 1.20.EXE" -win O4 - HKLM\..\Run: [CMESys] "C:\PROGRAM FILES\COMMON FILES\CMEII\CMESYS.EXE" O4 - HKLM\..\Run: [LexStart] lexstart.exe O4 - HKLM\..\Run: [AS00_Gear511] C:\Program Files\NETGEAR\WG511SCU\Utility\Gear511.exe -hide O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [CPQInet Runtime Service] c:\compaq\CPQInet\CpqInet.exe O4 - HKLM\..\RunServices: [CPQDFWAG] C:\WINDOWS\cpqdiag\CpqDfwAg.exe O4 - HKLM\..\RunServices: [ATIPOLAB] ati2plab.exe O4 - HKLM\..\RunServices: [isdbdc] c:\compaq\internet\isdbdc.exe O4 - HKLM\..\RunServices: [McAfeeWebScanX] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\WebScanX.Exe /RUNSERVICES O4 - HKLM\..\RunServices: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Startup: HotSync Manager.LNK = C:\Palm\HotSync.exe O4 - Startup: Hotmail Popper.lnk = C:\Program Files\Hotmail Popper\hotpop.exe O4 - Startup: GStartup.lnk = C:\Program Files\Common Files\GMT\GMT.exe O4 - Startup: Microsoft-Indexerstellung.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE O4 - Startup: Office-Start.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O9 - Extra button: Related (HKLM) O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM) O15 - Trusted Zone: http://www.gay.or.at O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://active.macromedia.com/flash2/cabs/swflash.cab O16 - DPF: ConferenceRoom Java Client - http://irc.gaynet.at:8000/java/cr.cab O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/s...irector/sw.cab O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://www.apple.com/qtactivex/qtplugin.cab O16 - DPF: {9E472D58-F10C-11CF-B7A9-0020AFD6A362} (NeRemoteDoc Class) - https://vault.netvoyage.com/neWeb2/neWebCl.cab O16 - DPF: {9E472D6A-F10C-11CF-B7A9-0020AFD6A362} (NetEnvelope Certificate Signature) - https://vault.netvoyage.com/neweb2/neCrypto.cab O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (sys Class) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB O16 - DPF: {6FB9FE59-7D3B-483D-9909-C870BE5AFA1F} (DiskHealth Class) - http://www.pcpitstop.com/pcpitstop/diskhealth.cab O16 - DPF: Arcsoft Web Printer for HP - http://www.hpphoto.com/downloads/iprintHP.cab O16 - DPF: {C7B05B62-C8D7-438C-840B-4994DAAA8EEE} - http://webpdp.gator.com/v3/download/...tdmgainads.cab O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/10469377076b7c4...p/RdxIE601.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.co...082.2100115741 |
Do you know the program name that starts when you boot up? I would uninstall gator though.
Try to go thru these procedures to possibly remove the start up program that wants to start. Also do the below to make sure the thing is not in there. Win98 loves to put start up programs in three places (drove me insane!)
O2 - BHO: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) If I remember correctly, the Synaptics is for a touch pad or something like that? If so - leave it as is. |
Respectfully... I run P2P applications all the time. Like right now, for example. I have never had one problem with running P2Ps and still using AdAware.
Now, I DO stick with eMule and BearShare as a rule, so I could very well be wrong on some of these other P2P apps. But as far as these two are concerned -- eMule includes NO spyware, so it's not an issue. As for BearShare... well, all that bullshit warning you get telling you that if you remove Save or WeatherCast you may disable BearShare -- that's just bullshit. It works perfectly with those spyware items removed. HOWEVER, I suppose it is important to note that I do NOT use AdAware to remove them. They are simple enough to remove manually. One can be deleted from Add/Remove Programs, the other by opening the folder it installs to (Save) and just running the uninstall that comes with it. The only minor annoyance is that when uninstalling these items, you are directed to a website which asks you WHY you are uninstalling. It only takes a minute to check a few boxes, though. What I DO like about this is that there's an optional area for "comments." So I like to type stuff in along the lines of: "You motherfucker pieces of shit, I hate you and despise your evil, spying software. Die, die, die." Or close to it, at any rate. Oh, what fun! BearShare upgrades itself rather often, and if you don't accept the update sooner or later, functionality starts to suffer. It gets harder to connect to other peers. Upgrading fixes that, but it ALSO reinstalls Save and WeatherCast, so you have to go through the removal process again. Oh, well... the "price" we pay for P2P is still pretty low! As for KD's nifty little problem -- no way in hell am I touching THAT! Good luck, man... |
Thanks Corey...
Thanks, Corey...
This is truly an old-time note book. It still runs on Win98 and is overflowing with all kinds of files I have created over the time. Sure, it is the time to move on and I'll just have to do that. So, I am going to save the crucial stuff and transfer it to the new notebook and start from there. ... But I still like this old guy and he'll hang around for while longer, too. Take care, KD:D |
If it works for what you need - no need to change. I never used Win95 myself. I was an old DOS guy & I refused to upgrade from win 3.1 to Win 95 (which I still have an old system on 3.1 actually). When we bought a new computer - I almost still put 3.1 on it but made the change to 98. I had 98 probably for about 5 years I guess. I refused to get ME. But I did get 2000 Pro & now I have XP pro. I would say that XP Pro is one of the better ones that MS finally came up with.
I would try to stay away from Compaq or HP. Get a Dell. Compag & HP put too much proprietary crap on their systems - as you can see by just scanning thru your programs. All those CPQ programs - I hated them. And try to add something to one of those system - pain in the ass. Dell - you open it up like you do the hood of a truck. Very easy to put in a new HD or something. Just make sure - modems are becoming obsolete / optional & now even 3.5" floppies are optional on most systems. |
The adaware program from Lavasoft that scruffy mentioned works very well. it is also free!!!
Look for very large but innocent sounding programs on your add/remove software list from windows. |
And another thing - if you do have a virus protection on your system (which y'all better! :) ) - go to this site if you have a broadband connection: http://housecall.trendmicro.com/ - and run a free virus scan every so often. I always like to do a online scan just in case - even though I have two virus protectors & two firewalls running all the time.
You might have to agree to something - it's cool. Basically it wants to install a little program to help with the scanning. |
Thank you!
I'd like to thank you gentlemen who were so generous with your help. Just so you know, you made me think to do a Windows update, which meant that my computer was the only one in the office today without the Sasser worm. I guess that there is a learning curve, after all! Thank you!
|
Speaking of virus protection, here's a nifty little FREE gift from the folks at Grisoft:
http://www.grisoft.com/us/us_dwnl_free.php This is a terrific bit of anti-virus software, in my opinion. I love the fact that it's FREE, of course -- Grisoft makes their money on commercial sales and offers this software free to home users (so probably it wouldn't be a good idea to try to install multiple copies on networked machines in a commercial setting). It's fully functional insomuch as the only disable features are little housekeeping options that aren't necessary. The parts you WANT, the virus protection -- work just fine. Online updates are always available and always free -- best of all, always CURRENT. The most recent handles the worm mentioned above. Almost all new PCs come with a year free trial of Norton or some other similar utility. This is nice, but after that time is up, you almost always have to pay to get continued updates. And, as we know, virus protection without current updates is pretty much useless. Additionally, AVG anti-virus is very much non-intrusive. Once installed, it takes only a few moments to fiddle with the options to get a configuration best suited to your needs. I personally like to keep as little as possible running in the background and at boot up (with Win98, this is almost mandatory lest you enjoy blue screens). Anyway, AVG doesn't intrude on your system if you don't want it to and doesn't integrate itself deep into basic Windows tasks. When you want it, it's there. When you don't -- no problem. Yes, all anti-virus software can be set up this way, but it seems like Norton wants to make it harder to do so. Did I mention it's FREE and has FREE updates all the time? Yes, they DO sell a registered version that enables a few tweak tidbits, but it's definitely not necessary to fully utilize this software, nor are updates ever blocked. What are you waiting for? |
spyware?
What is this "spyware" you are referring to. I have noticed this onone of my computers. Is this what you are trying to get rid of or is that needed to keep the virus out. Sorry to be so computer illiterate but I am trying to learn!
Thanks, Jim |
Spyware basically spies on you. And then it reports back to the company or the person who made it where you have been.
This is why it is so bad for people to use e-mail addresses that get placed in the URL. If that happens & you have spy ware - just kiss that e-mail good bye. The spyware will capture the e-mail & then sell it to the highest bidders. |
spyware
So then I need to follow the above listed instructions and try to get rid of it?
THANKS Jim |
Do you know if you have any? You can use Spybot or the free version of adaware. The HiJackThis! will also do the trick - it shows you what programs are running in the background.
Spyware / adware / malware is different from a virus - do keep that in mind. Also before installing anything on a network computer - make sure you have permission to do so. I take it that the company that Doya66 works with - well - his IT guy just is not up to speed? Sorry Doya66 - but the network should be locked down a lot more to prevent installs. And as far as keeping Windows up to date - he should have made sure. I check that up date feature about 5 times a day. I do not have the notify me of critical updates enabled just because I do not want to rely on that. But before I go to bed - my computer is either scandisking, defragging, scanning for viruses every night. |
I ran the adaware program from lavasoft on my teen's machine today. He had three spyware programs on it. one was favoriteman, one was sahagent and I can't remember the third.
I ran it on my laptop and our other machine. Both had cookies, but no .exe's. I'm not too religious about Windows Update because I run Win98 on everything. I run it about once a month to update IE. I refuse to run Outlook. Everyone has web-based email which keeps the malicious junk to almost nil. I do run McAfee on all the machines and update it weekly. I have a wireless network connecting all our machines. My router can detect two other networks nearby. One is locked down using encryption protocols. The other is wide open. I don't know which neighbors' networks I am seeing. I use Mac addressing as my main defense. So if either neighbor tries to access my network, they'll have no luck. |
Apologies in advance for drifting off the topic.
A great site for TIME of day that does not require any downloads (but runs a JAVA script) is http://www.time.gov/ It is run by the U.S. Naval Observatory atomic clock time standards organization and is the OFFICIAL U.S. time. I feel for you. I did not have my firewall turned on last Saturday (because I had to do a network maintenance item that required it to be off) and the SASSER worm managed to spray my Windows XP registry with rouge programs before I could get the Windows update patches. It was awful and it also looks like it used my machine to send SPAM all over the world (my mailbox is still filling up with bounced messages) and it was also attacking Microsoft with a denial of service attack. I keep a Drive Image DVD backup copy of a pristine version of my system and I was just about ready to reformat the drive and start over when I was able to deactivate the worm by editing the registry (which I hate to do because you can really screw up your computer with one wrong typo) and I was able to go to the microsoft.com web site where they had just posted a removal tool. I wish the people that hate Microsoft would go to Redmond and attack them directly instead of hiding behind MY computer to attack Microsoft like a bunch of sissies. I DO NOT download programs, etc, I DO NOT open email attachments, I make sure every link I click is not a program, etc. I SHOULD NOT HAVE TO PUT UP WITH THIS CRAP!! |
Support for Windows 98 was supposed to end in January, but Microsoft has extended that. I check out Windows Update once or twice a week. Admittedly, updates for 98 are much more infrequent than for XP, but just a few days ago two critical updates appeared.
My ISP notifies me via email of certain updates available, too. Now and then Microsoft releases something that is not included at the Windows Update site. Usually these are updates geared to very specific vulnerabilities that most folks won't need, but I like to get them anyway. Even if only for the fact that it's something FREE from Microsoft! I'm not a Microsoft hater, though -- I'm quite fond of Windows and can't wait until I can afford a PC that will run XP. I only get to work with it these days at customer's homes... Speaking of clock synch -- here's another nifty freebie: http://www.worldtimeserver.com/ I do NOT let anything run in the background or load itself into the tray area, but this is nice because you can also just disable the auto-start features and fire it up if you notice your clock is off. Some programs seem to enjoy fucking up my clock. This is a handy tool which synchs up with World Time Server. Never had a problem with Outlook. My ISPs web-based email has spam filters which simply never let the junk get through to Outlook. You can also set Outlook to refuse dangerous attachments, but this can lead to missing certain files you actually WANT. To each his own, though. I always tell my customers their PCs should be friendly to them and be set up in whatever way makes them happy. |
I've used these three programs for five years now and I have NEVER gotten a virus or spyware, even when I accidentally clicked the program:
AVG Antivirus: www.grisoft.com Spybot: spyware terminate and stay resident program (catches them before they can even download from yoru browser. Adaware: same as above. I run both, setting up Spybot to run AFTER adaware gets done. Adawre free version WILL NOT STOP LIVE downloads of spyware. Zonealarm Pro: firewall Some of these have complicated settings. You'll just have to toughen up. In AVG antivirus free, you can even set the program to check for any extension, which it will not allow to run or will scan it when it sees it come onto your hard dirve by any means. I set mine up to include .scr extension becsaue screen saver .scr files can now contain viri. |
Here are some more links - some have already been mentioned but feel free to check these out & just some general information:
TIPS ++ If your Browser is hijacked, the quickest way to close the Browser window is ALT+F4. ++ Whichever tool you choose, be sure that you keep the definition files updated AND read the warnings and alerts, some may impact the way your environment has run in the past. ++ For IE6, disable 3rd-party browser Extensions is an immediate workaround. Stops all the BHOs, Toolbars, Browser extensions from loading and starts a clean instance of IE. ++ Installation recommendations from the number one expert in Brower Issues (Asta): Another thing that should be helpful is this, in terms of manually controlling the installation of items (such as unwanted toolbars, etc)... Since I always encourage using the most updated version of IE, which is IE 6 with all Service Packs, this is the process: IE - tools - Internet options - advanced - browsing -> Uncheck "Enable install on demand (Internet Explorer)" as well as unchecking "Enable install on demand (Other)". This means that auto installs for updates to IE and/or other interfaces and applications will require your manual intervention to complete. This is my ideal choice, but we each make our own. ++ Upgrade to MS Java 3810 or uninstall MS JVM and install Sun's version of Java ++ For safe browsing it is best to set the browser to prompt for activeX, Java, and plugins. The minor irritation is nothing compared to the disaster that can come with downloading malware. ++ NEVER permit the download or running of any EXE unless you are 100% sure you know what it is. ++ NEVER disable the firewall or anti-virus software except when necessary for the installation of items you know are safe ++ If you are not sure about a site; set security to high, and disable all scripting, until you check it out -- look at the source code. ++ "FREE" should always mean proceed with caution. ------------------------------------------------------------------------------------ PRIMARY CLEANUP TOOLS ++ CoolWebShredder http://www.spychecker.com/program/coolwebshredder.html ++ Hijack This http://www.spywareinfo.com/~merijn/files/hijackthis.zip ++ Trojan Remover: http://www.simplysup.com/ X-Cleaner: http://www.spychecker.com/download/d..._xcleaner.html KL-Detector: http://www.spychecker.com/download/d...ldetector.html ------------------------------------------------------------------------------------ DETAILED INFORMATION ++ A description of what Spychecker does http://www.softpedia.com/public/cat/...0-17-143.shtml Features: · Redirections to CoolWebSearch related pages · Redirections when mistyping URLs · Redirections when visiting Google · Enormous IE slowdowns when typing · IE start page/search page changing on reboot · Sites in the IE Trusted Zone you didn't add · Popups in Google and Yahoo when searching · Errors at startup mentioning WIN.INI or IEDLL.EXE · Unable to change or see certain items in IE Options · Unable to access IE Options at all ++ Hijack This Tutorial: http://www.TomCoyote.org ++ BHODemon: Think of BHODemon as a guardian for your Internet browser: it protects you from unknown Browser Helper Objects (BHOs), by letting you enable/disable them individually. Highly recommended. ++ Browser Hijack Blaster: Running silently in the background, Browser Hijack Blaster only springs into action when an attempt is made. It watches and protects the following items: IE Homepage, IE Default Page, IE Search Page, BHOs. Whenever one of the above items is changed, or a BHO is added, you are immediately provided with information on the item, along with the option to keep the change, or revert to your previous settings. ++ General and overall information about Spy/Adware http://www.cexx.org/adware.htm ++ merijn.org is being blasted by a massive DDoS, that's why it now resolves to localhost. You can still reach it by adding "209.133.47.200 www.merijn.org" to your hosts file. Mirror is still available at: http://www.spywareinfo.com/~merijn/ ++ What is spyware: http://www.spychecker.com/spyware.html ++Dealing with Unwanted Spyware and Parasites http://mvps.org/winhelp2002/unwanted.htm ------------------------------------------------------------------------------------ UNWANTED BHOs ++ BHODemon http://www.spywareinfo.com/downloads/bhod/ ++ About BHOs: http://sysinfo.org/bhoinfo.php Merijn Bellekom, the developer of the brilliant Startuplist and Hijack This! has introduced BHOList.exe. It downloads and displays the BHO Collection in a searchable & sortable list. Also from the above link. ++ http://sysinfo.org/ The site contains a very detailed and comprehensive list of registry entries that spyware and virus may put there. And a list of thousands of BHOs with status on which ones are malware, and which are safe. Sometimes the site is hard to get to because it comes under attack from hackers trying to shut it down a lot. When that happens you can use the url as a search argument in Google to get to the Google cached pages. ------------------------------------------------------------------------------------ ACTIVE SCANNING ++ Browser Hijack Blaster: http://www.wilderssecurity.net/bhblaster.html ------------------------------------------------------------------------------------ GENERAL UTILITIES ++ spybot: http://spybot.safer-networking.de/ ++ AdAware: http://www.lavasoftusa.com/ ++ Spycop: http://www.spycop.com/ ++ ToolBarCop: http://www.mvps.org/sramesh2k/toolbarcop.htm ------------------------------------------------------------------------------------ DOWNLOAD LOCATIONS ++ Spychecker: http://www.spychecker.com/download/d...bshredder.html ++ spybot: http://spybot.safer-networking.de/in...&page=download http://www.spychecker.com/download/download_spybot.html ++ Cool Web Shredder: http://www.zerosrealm.com/downloads/CWShredder.zip http://radiosplace.com/ http://209.133.47.200/~merijn/files/CWShredder.exe ++ Hijack This: http://www.majorgeeks.com/download3155.html http://radiosplace.com/ http://209.133.47.200/~merijn/files/HijackThis.exe ++ Ad-aware: http://www.spychecker.com/download/d...d_adaware.html ++ BHODemon: http://www.spywareinfo.com/downloads/bhod/ ++ JAVA This is the Sun Java download link, including documentation and patches: http://java.sun.com/j2se/1.4.2/download.html This link for more choices, including Enterprise system solutions http://java.sun.com/ The Sun Java auto-update link: http://www.java.com/en/download/windows_automatic.jsp ------------------------------------------------------------------------------------ IE SECURITY DOCS ++ http://support.microsoft.com/default.aspx?scid=kb;[ln];833786 ++ http://support.microsoft.com/default...&Product=ie600 ++ Transitioning from the Microsoft Java Virtual Machine Published: September 12, 2003 | Updated: April 2, 2004 http://www.microsoft.com/mscorp/java/ http://www.microsoft.com/presspass/p...greementPR.asp ------------------------------------------------------------------------------------ PREVENTION ++ Preventing Browser Hijacking and some insights here: http://www.spywareinfo.com/articles/...ed/prevent.php http://www.spywareinfo.com/articles/hijacked/ ++ Recommended Minimal Security Settings http://www.mvps.org/winhelp2002/unwanted.htm ++ Prevent spyware from being installed: Set the kill-bit to unwanted ActiveX controls (spywareblaster helps in this case) http://www.mvps.org/sramesh2k/Malware_Defence.htm ------------------------------------------------------------------------------------ DEFINITIONS ++ BHO -- Browser Helper objects. These are programs used by the browser to extend functionality. For example Adobe Acrobat is a BHO that allows a browser to work with PDF files. The problem with BHOs is that many of the Free BHOs and toolbars are actually malicious code that can take over the computer where they are installed. ++ SPYWARE -- is software that tracks user activity, usually for the purpose of build a preferences profile for targeted advertising, most often it gets installed as part of "free" toolbars. ++ Browser Hijacking -- refers to the action of some malicious BHOs that re-direct to target sites, change home pages, or prevent access to some sites. Such software may also alter registry settings and attempt to damage security and privacy software. ++ Trojan -- a program that get loaded on a computer and lies dormant until a triggering mechanism (frequently from a external source) launches it to carryout instructions from the owner of the trojan. A more active form BOTS, frequently find unsecured ports to communicate with their master ++ MALWARE -- a general term for any software that is unwanted and frequently malicious that is put on a computer either without the users permission, or by misleading the user about its purpose. |
All times are GMT -6. The time now is 05:54 PM. |
Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.2.0