Warning: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in ..../includes/class_bbcode.php on line 2958

Warning: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in ..../includes/class_bbcode.php on line 2958

Warning: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in ..../includes/class_bbcode.php on line 2968

Warning: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in ..../includes/class_bbcode.php on line 2958
Sparhawk's Anti-Spyware thread
Results 1 to 7 of 7
  1. #1
    DP Communications Frateloder's Avatar
    Join Date
    04-21-2007
    Location
    Minneapolis, Minnesota
    Posts
    1,878

    Default Sparhawk's Anti-Spyware thread

    Originally posted by Sparhawk on AUG 31, 2004


    ------
    So you're getting Popups, your homepages is hijacked, your internet connection is slow and your computer feels like it's a 486 trying to run Doom 3. What I'm going to do here is have a list of Spyware applications that I can remember at present and that I will add to as I see them in the wild.. in otherwords on peoples computers.

    A quick breakdown of what spyware is:

    A program that comes with some shareware and freeware programs available from reputable sites. It can also be downloaded by agreeing to the terms of conditions to a web site. (NO ONE should have to agree to ANY terms and conditions to view a web site unless its an 18 or over site or a corporate site, even then with over 18 sites it can be very risky)

    This crap gets on your computer and immediately starts sending back information about it, what you're browsing, how long you've been there and how frequent etc. There are also reports of it being able to leech personal information from documents on the hard disk.
    Thats just the start of it. Spyware/Browser helpers/Hijackers cause you to get random popups for no reason. Thats because it opens a small back door that allows automated servers to send them to you.

    Additionally, you may find your homepage is hijacked or websites you type into the address bar don't appear and you get redirected. This is because the spyware applications modifiy the registry keys pertaining to Winsock, Winsock 2 and DNS. This allowsfor the browser to be controlled.

    So, you will need to keep a close eye and ensure at least weekly that you don't have anything nasty installed.

    Imagine 10 spyware applications using anything up to 2k/sec each to send information back. Thats a potential 20k/sec If you only have a 256Kbit upstream that leaves you approximately 8 k/sec (28k/sec after overheads is the available upstream bandwidth). Your 28 lane freeway is suddenly down to 8 lanes and you're still trying to push the same amount of traffic down it AS WELL as the spyware traffic.

    Below is a list of common spyware applications that we should ALL ensure are NOT installed on our PC's. I will add to it as much as I can. If I've missed any off, post 'em in a reply and I'll add them. I'll also add suggestions to various Anti-Spyware products.
    There are some rules. 99% of programs with the words "Search, Buddy, Toolbar, bargain, BAR" plus lots more are spyware)


    ABI Network (The)
    Admanager Control
    Advmon32 - Placed on by Crypter.C Trojan
    Alexa Toolbar
    Aureate
    Back Web
    BargainBuddy
    BDE
    BMSE DBL
    BonziBuddy
    BrowserAid
    BrowserToolbar
    BonziBuddy
    BrowserToolbar
    BTV
    BuddyLinks
    Bullseye Network
    THE Bullseye Network
    C-Dilla
    C2.lop
    Comet Cursor
    CommonName
    CoolWebSearch
    CTXPLS (part of Bullseye Network)
    Cydoor
    DashBar
    Date Manager
    Delfin Media Viewer
    DeskAD Service
    D-Helper Web Driver
    DialerData
    DialerFactory
    DialerOffline
    Dogpile Search Toolbar
    Dotcomtoolbar
    Download Plus
    DownloadReceiver
    DownloadWare
    Ebates Small Money Maker
    E2give Plugin
    Easy Search
    Empnads
    Evthtm - Premium rate adult content Dialler
    Gator
    Hotbar (and Hotbar Tools for Internet Explorer and Outlook Express)
    IE Menu Extention toolbar
    ILookup
    Internet Optimser (it's quite the opposite)
    InstafinderK
    ISTSVC
    KAZAA Media Desktop (not KazaaLite)
    Keyboard Monitor
    My Search
    My Web Search (smiley central)
    My Way
    MSDMXM - Adult premium rate dialler
    NCASE (anything with NCASE in it such as Padlookup by NCASE, uninstall 180 search assistant by NCASE etc.)
    NavExcel
    NavHelper
    NetworkEssentials
    New.Net Domains
    OEMJI Toolbar
    OIN- OuterInfo Network
    P2P Networking
    Perfect Nav
    Permedia Ads
    Precision Time
    Relevant Knowledge
    RSyncMON (Keylogger)
    QuickSearch Search Bar
    Safenet
    SafeSearch
    SafeSurfing
    SaveNow
    Search Assistant
    SearchAndBrowse
    SearchExplorer
    Search Relevancy
    ShopAtHomeSelect
    Shopper Reports
    Shopper Reports by Spamblocker Utility
    Spamblocker Utility
    Spamblocker Utility Web Tools
    Spy Falcon
    ShopNav
    Show Bar
    Sidefind
    Sidesearch
    SlotchBar
    sp2ctr - Added by the DLUCA-M TROJAN!
    Surf Sidekick
    SWN Toolbar
    Software Update Manager
    TopText Lookup
    TopRebates
    Top 5Search.com Search Assistant
    TSA
    UCmore
    UCSearch
    180 Search Assistant
    Uninstall 180 Search Assistant
    View Point Media Player
    WebHancer
    Web Search
    Webrebates
    WildTangent (anything with this in)
    WinAD
    Windows Ad Server
    Windows Ad Status
    Windows Search bars
    Windows Serve Ad
    Windows SA
    Windows SR
    Windows Backup Utility
    Win-DH
    WSEM Update


    There is a HUGE list Here also -- http://www.spywareguide.com/product_list_full.php

    Limewire, Imesh, WinMX, Kazaa Full and Kazaa Media Dekstop and DC++ are ALL known to have installed spyware in the past.

    Check through and remove anything you think is dubious, has some of those Keywords or you know you didn't install.

    Anti-Spyware methods

    ENSURE YOU HAVE A FIREWALL AND ANTIVIRUS INSTALLED AND ALWAYS UP TO DATE
    Install Anti-Spyware such as SPYBOT Search and Destroy from http://www.safer-networking.org, Webroot Spyweeper from http://www.webroot.com or Adaware from http://www.lavasoft.de

    Hi-Jack This is also a good way of getting rid of Spyware crap off your system
    Last edited by Frateloder; 04-23-2007 at 02:17 PM.
    Never forget our brothers, [DP]Dracus and [DP]BluePhantom

  2. #2
    Current Badass Level: 3 Renegade10's Avatar
    Join Date
    04-28-2007
    Location
    Dallas, Texas
    Posts
    315

    Default Re: Sparhawk's Anti-Spyware thread

    But Frate, did you include all the new additions he made periodically thru the years?

  3. #3
    Resident Grump Lincoln's Avatar
    Join Date
    04-21-2007
    Location
    Texas
    Posts
    3,595

    Default Re: Sparhawk's Anti-Spyware thread

    First things first, right click your Recycle Bin on the desktop and choose Properties. On the GLOBAL tab, choose USE ONE SETTING FOR ALL DRIVES. Checkmark the box there to immediately remove files. Hit OK.
    1. open windows explorer. Go to your C:\Documents and Settings\Administrator\Temporary Internet Files. Erase everything in there.
    2. Go to C:\Documents and Settings\Administrator\Local Settings\Temp. Erase everything in here.
    3. Go to C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files. Erase everything in here.
    4. go to C:\WINDOWS\Temporary Internet Files. erase everything.
    5. go to C:\WINDOWS\Temp. Erase everything you can.
    6. Be sure you erase any and all internet settings for all accounts, whether you are using them or not. Do steps 1-3 for each account.
    7. Go to your C:\Program Files\. Look for anything odd, like folders with "buddy" or other oddities in it. Erase those.
    8. Right click on "My Computer". Choose properties. Go to System Restore tab. Turn off system restore.
    9. Reboot.
    10. Rescan entire system.
    11. If you're clean, congratulations.

  4. #4
    DP Guild Member
    Join Date
    08-30-2007
    Location
    Sacramento,CA
    Posts
    719

    Default Re: Sparhawk's Anti-Spyware thread

    I installed the trend micro anti-virus and it seems to have done the job... Spybot would catch the spyware I had for some reason. Neither did Mcaffe.

  5. #5
    DP Guild Member 18bravo's Avatar
    Join Date
    04-27-2007
    Location
    Tennessee, USA
    Posts
    1,533

    Default Re: Sparhawk's Anti-Spyware thread

    you could also try getting Lavasoft's Ad-aware program as well, it'll find some malware that spybot s&d won't find. Then again, all the programs like these will find stuff that the others might not.



    I'm with the BombSquad, if you see me running, run the other way!

  6. #6
    No One is Anywhere Kzin's Avatar
    Join Date
    04-21-2007
    Location
    Sunny San Diego
    Posts
    1,528

    Default Re: Sparhawk's Anti-Spyware thread

    Use a combination of SpyBot, AdAware and Defender. Plus find some porn sites you trust instead of trolling for new ones.


    Godspeed - [DP]Dracus & [DP]BluePhantom
    Dag was here...ohhhh, so that's what that smell was.

  7. #7
    DP Guild Member 18bravo's Avatar
    Join Date
    04-27-2007
    Location
    Tennessee, USA
    Posts
    1,533

    Post Re: Sparhawk's Anti-Spyware thread

    I forget who it was; Lincoln. or Sparhawk who refered me to this site: http://wiki.castlecops.com/Malware_R...tion:_Overview

    I figured I might as well post this site in this thread, think its where it would belong. Works for spyware/adware/greyware/most types of viri/and most other junk. I bring this up since I had gotten a virus recently, one of the bad ones that soon as they get on your system, it reboots itself and has you wondering WTF? This Wiki worked for me to get rid of most of the virus, or at least break it to where it doesn't do what it was meant to do.

    Sorry for the necropost, but this thread deserves a bump every once in awhile.



    I'm with the BombSquad, if you see me running, run the other way!


Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
All times are GMT -4. The time now is 07:03 AM.
Powered by vBulletin® Version 4.2.2
Copyright © 2019 vBulletin Solutions, Inc. All rights reserved.
vBulletin Skin By: PurevB.com