[72430] in North American Network Operators' Group
Re: Spyware becomes increasingly malicious
daemon@ATHENA.MIT.EDU (Edward B. Dreger)
Mon Jul 12 02:46:04 2004
Date: Mon, 12 Jul 2004 06:44:59 +0000 (GMT)
From: "Edward B. Dreger" <eddy+public+spam@noc.everquick.net>
To: nanog@merit.edu
In-Reply-To: <020301c467ca$d6121320$020ba8c0@NOTEBOOK>
Errors-To: owner-nanog-outgoing@merit.edu
RKJ> Date: Mon, 12 Jul 2004 01:43:50 -0300
RKJ> From: Rubens Kuhl Jr.
RKJ> Try booting into safe mode before running software to detect
RKJ> or remove spyware; some of them fight to survive if they are
Also use msconfig to disable non-critical extras. Some of us
have manually ripped out ActiveX controls and BHOs care of
regedit... but, alas, malware often has made enough registry and
other system changes that the system is left unstable or
inoperable.
CVs archives of { { system file MD5/SHA1 hashes } and { registry
dumps } }, anyone?
Eddy
--
EverQuick Internet - http://www.everquick.net/
A division of Brotsman & Dreger, Inc. - http://www.brotsman.com/
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 785 865 5885 Lawrence and [inter]national
Phone: +1 316 794 8922 Wichita
_________________________________________________________________
DO NOT send mail to the following addresses:
davidc@brics.com -*- jfconmaapaq@intc.net -*- sam@everquick.net
Sending mail to spambait addresses is a great way to get blocked.