My PC has been attacked and need help
- Thread starter Pablo
- Start date
- Status
WARNING
In my thread about my PC infestation I put in some addresses of a suspect BAD actor.
PLEASE DO NOT CLICK ON THESE LINKS AND BUY THIS CRAP - ONE is actually an executable!!!!!!!!!!!
In my thread about my PC infestation I put in some addresses of a suspect BAD actor.
PLEASE DO NOT CLICK ON THESE LINKS AND BUY THIS CRAP - ONE is actually an executable!!!!!!!!!!!
I hate to say it but this attack was malicious and directed at me, and I believe it came from a server in Canada, but it can be difficult to tell.
Pablo
Don't take it personal, it just goes and goes. The FTC is starting to nail some of these ********, but it will take a long time to clean up the off shore venders of this crap.
Pablo
Don't take it personal, it just goes and goes. The FTC is starting to nail some of these ********, but it will take a long time to clean up the off shore venders of this crap.
I wanted to call the campany with the phone # given......
I didn't take it personally and I'm not angry. Just saddened again by my fellow man.
I didn't take it personally and I'm not angry. Just saddened again by my fellow man.
Its probably a false number or goes to an answering service. The owner of spyaxe and spywarestrike used two different addresses and niether one appears valid according to online mapping sites. Plus the two different phone numbers he uses are cell numbers. His email addresses check OK.
[ January 17, 2006, 02:28 PM: Message edited by: Bob Woods ]
[ January 17, 2006, 02:28 PM: Message edited by: Bob Woods ]
I got a response from FTC:
You think that company would have me tailed?
I'm surprised it wouldn't help you. I find it to be much better then most of the other items that were recommended and is generally the first one I use for a spyware/adware problem.
It sounds like you have already rebuilt your system but for future reference here are some things you can try/look at before you go that far.
1)Run your antivirus and/or adware program in "safe mode". Depending on what you have on the system you may not be able to detect it and/or clean it unless you are in "safe mode" which is accessible in most Windows operating systems since '95 by hitting F8 when the OS starts to boot, however this doesn't include NT4 which did not include a "safe mode" technically.
2)Look at the "run" line of the registry under both the "local machine" and "current user" sections. Most adware/spyware/viruses add a reference here to allow it to start with the system. Some of the Windows OS versions include a program called "msconfig" which can show you this info and allows you to deselect various lines which turns them off. If you don't have an OS with that option like XP then you either run "regedit" to manually look or use a third party tool
3) Depending on the OS look in either c:\windows\system or c:\windows\system32 and sort the folder by date and look for recent files with strange names like xyzabc.dll under "safe mode". Some files will have legitimate looking names but are also bogus. This can usually be found by looking at the properties of the file for its digital signature. Most adware/spyware/virues don't have them while a legitimate OS file will have a signature referencing microsoft, the name of the file, its version, etc.
9 out of 10 times you can get the machine cleaned up and back to "normal".
1st assumption, no, it'd just make things worse for them in a legal issue. But, it's just an assumption and you need to consider the possible downsides of being wrong.
Best advice is don't get paranoid, do whatever precautions you think are warranted, but most of all keep a clear head.
Best advice is don't get paranoid, do whatever precautions you think are warranted, but most of all keep a clear head.
- Status
Similar threads
