Re: Help - IE problem

I don't want to get into a pissing match about this Matt but you're wrong. There is really only one fundamental way for spyware to make itself undetectable and that is to inject a kernel mode driver that loads during boot and once loaded pokes around at kernel data structures and/or installs a file system filter driver to cover it's tracks. Once installed in this mode it is nearly impossible to remove it from *that* running OS. This is commonly referred to as a rootkit virus/spyware. All you need to detect one of these and remove it is a software that runs from another OS - for instance you boot from a CD. Microsoft is adding rootkit detection to it's Anti-Spyware tool (I haven't checked to see when it's being released). Sysinternals.com has a checker.

I know these guys very well - they've done some amazing stuff:
http://research.microsoft.com/rootkit/

More good links:
http://www.sysinternals.com/
http://www.f-secure.com/blacklight/

Re: Help - IE problem

if you go into IE options you can type that website in and block it.

Re: Help - IE problem

[ QUOTE ]
I don't want to get into a pissing match about this Matt but you're wrong. There is really only one fundamental way for spyware to make itself undetectable and that is to inject a kernel mode driver that loads during boot and once loaded pokes around at kernel data structures and/or installs a file system filter driver to cover it's tracks. Once installed in this mode it is nearly impossible to remove it from *that* running OS. This is commonly referred to as a rootkit virus/spyware. All you need to detect one of these and remove it is a software that runs from another OS - for instance you boot from a CD. Microsoft is adding rootkit detection to it's Anti-Spyware tool (I haven't checked to see when it's being released). Sysinternals.com has a checker.

I know these guys very well - they've done some amazing stuff:
http://research.microsoft.com/rootkit/

More good links:
http://www.sysinternals.com/
http://www.f-secure.com/blacklight/

[/ QUOTE ]

If that were true, than we wouldn't need to run both Adware and Spybot together. If it were that simple, then just 1 program should find everything, but it doesn't. When you are handed a PC, scan if from a different PC (which we do a lot of times since they get so corrupted they won't even boot) with Spybot, Adware and Microsoft, they clean everything they possible, you then boot that PC and go go to Google.com, which never has and Pop-Ups, and you get a pop-up, how would you explain that ? Believe me, I have had it happen all the time, and yes I made sure that the google home page was not infact a re-direct.

Matt

Re: Help - IE problem

Dude, The cat works for MS [img]/images/graemlins/wink.gif[/img]

Re: Help - IE problem

I am not going to get into a pissing match either, and I am inpressed that the cat works for Microsoft, but if you work on enough PC's, you will know exactly what I am talking about.

Re: Help - IE problem

once i got my mac, i gave my son my old pc and insisted that he runs firefox only. i also have him run ad-aware and spybot weekly, and it seems to work pretty well. i found out about firefox from this board, so thanks guys! can't say i miss that stuff, though, and i hope you get your system running better.

Re: Help - IE problem

Firefox is only safe until it gets to be popular, then it'll be a target. Changing from IE does not solve the problem, because IE is not the problem. It's simply the biggest target of the Anti-Microsoft crowd, who are also the ones that think they're doing you and me a favor by writing these scripts that add and exploit holes in IE, claiming "well, if MS would fix this problem..." as their justification.

If you've got ICQ, uninstall it. If yu've got any kind of 3rd party freeware browser add-ons like Search Assistant, ShopBuddy, PornFinder, MP3Hound, or any such "helper" application, uninstall it, run the Spyware cleaners, set them to scan at reboot, reboot, and then check again.

Also, since certain Windows processes cannot be interacted with while certain other processes are in use, and to be safe, disconnect the modem from the computer itself before you run the scan. This keeps the scanner from encountering any "whoa whoah! I'm working here! Go away!" errors in case anything's attached to the network or other system components.

You may also want to disable your AntiVirus while the spyware scans run, since scanning in and of itself is considered a virus-like activity, which I've noticed that newer versions of Norton seem to handle quietly rather than "bother" you with a popup about it.

Re: Help - IE problem

[ QUOTE ]
This is commonly referred to as a rootkit virus/spyware.

[/ QUOTE ]

Speaking of rootkits, if any of you have purchased a CD by a Sony artist recently you should probably read this.

Re: Help - IE problem

[ QUOTE ]
Firefox is only safe until it gets to be popular, then it'll be a target. Changing from IE does not solve the problem, because IE is not the problem. It's simply the biggest target of the Anti-Microsoft crowd, who are also the ones that think they're doing you and me a favor by writing these scripts that add and exploit holes in IE, claiming "well, if MS would fix this problem..." as their justification.

[/ QUOTE ]

i hear what you're saying, but if there's something that works better than what the standard/most popular thing is currently, i see no reason to not use what works better. that's not to say that each app or OS doesn't have its bad sides, but staying with IE as your default browser when there are things that work much better is kinda retarded. who cares if firefox may be more targeted in 6-8 months (which of course is just speculation); it's better now, and who's to say that it won't continue to be better?

sully

Re: Help - IE problem

[ QUOTE ]
[ QUOTE ]
This is commonly referred to as a rootkit virus/spyware.

[/ QUOTE ]

Speaking of rootkits, if any of you have purchased a CD by a Sony artist recently you should probably read this.

[/ QUOTE ]

Incredible, but not surprising [img]/images/graemlins/eek.gif[/img]

Re: Help - IE problem

Matt, the reason that no one program detects them all is that they all use different algorithms to detect what is good and what is bad. All of them support a signature based thing where they look for patterns of *known* virii and spyware. That's the easy part (relatively speaking). The hard part is prevention. Why is that hard? Well, because the folks writing the nefarious software get to tweak and tweak much faster than any anti-virus/spyware vendor can keep up. The difference is in QA. When Norton, Microsoft, Adaware, etc. produce a release they actually test it against a vast number of system configurations. They don't just throw shit out there and hope it works. Someone writing nefarious software could give a flying fuck if the code crashes once in a while - in fact, there have been spyware vendors that have built a business model around their own crashes. When IE and Windows started shipping with the crash detection and upload stuff it actually impacted their business.

Re: Help - IE problem

Crusher, the one thing I'm still curious about is how are the coupons? [img]/images/graemlins/poke.gif[/img]

Re: Help - IE problem

[ QUOTE ]
[ QUOTE ]
This is commonly referred to as a rootkit virus/spyware.

[/ QUOTE ]

Speaking of rootkits, if any of you have purchased a CD by a Sony artist recently you should probably read this.

[/ QUOTE ]

I believe I mentioned this on the JCF before but here's a tip you should follow even if you don't like it.

DISABLE AUTO-PLAY ON YOUR CD/DVD DRIVES!!!!!!

This is the feature that enables audio CD's to install this sort of crap on to your computer. Yes, it is incredibly lame that you have to disable such an otherwise useful feature because of the actions of some companies.

BTW, for you Mac folks - I believe you should follow this advice as well. It is my understanding that the same thing is being done for CDs on the Mac as well. You should at least go read some Mac forums/blogs to find out for sure but my info is that it's coming your way too.

Re: Help - IE problem

thanks for the tip, tim!

Re: Help - IE problem

hm. a neat article i found on my home page:

http://seattletimes.nwsource.com/htm...38_paul07.html

[img]/images/graemlins/wink.gif[/img]