bloody spyware

[freddy]

i am realy gettin , pissed off with this ere, internet.

ok , last night joe.punter , with an old compaq and a new copy of xp ,


loaded it,plugged it into my hub , and before i could even d/load microshafts V5 update thingy,,,and then criticle d/loads ,,,i had a new default homepage , a toolbar with links to a million graphical porn sites , 180.com etc etc

eventually had to reload , and install spybot ,adaware , and grisoft thru a pen drive. ,but how to get updates ,,without being infected?

fortunatly i found my microshaft secuurity update disk feb 2004 ,,i think this is what stopped the flood on the second install

this is getting bloody rediculous ,,

this has got to stop ,

[NooNoo]

Never plug a pc in to your network before putting on kerio or za, and running hijack this on it.

I learned that the hard way after a person came to me with a pc to upgrade, the "school admin" had loaded the os the previous week but had not got the parts for the upgrade, the machine had not been near the internet when it was in the customers possession.

What I found was unbelievable. Lord help that school!

[freddy]

Never plug a pc in to your network before putting on kerio or za, and running hijack this on it.

I learned that the hard way after a person came to me with a pc to upgrade, the "school admin" had loaded the os the previous week but had not got the parts for the upgrade, the machine had not been near the internet when it was in the customers possession.

What I found was unbelievable. Lord help that school!

i know ,, just that by the time you have d/looadee ad-aware and spybot, with updates , all hell breaks loose ,,,

the latest 2 d//loads last night , were one offering to upgrade ie6 and another asking to do a spyware check,

the prob i had was this was an old 350 with 64m ,,,and things weere happening faster that the screen resulution,


still should be made illigal

[Stalemate]

The last laptop I tweaked for a personal customer got 2 viruses and some malware within minutes of hooking up to the Net before I had time to download the proper protection.


Keep everything I need now on a USB stick I update regularly.

[Raven]

all i have to say is this software hasnt failed me yet for spyware...

http://www.giantantispyware.com

[Darksteel]

Heh...I was setting up some computers in what essentially is our IT department and they were shocked to learn that a computer would be lucky to last 30 minutes unprotected attatched to the internet. Of course out of everyone there there was one other guy in my area who had less than 30 years of experience...and they coded in fortran.

[WebHead]

Oh man,.. spyware and other malicious activity can be a nightmare sometimes. I have a few methods that I've been doing lately.

The first is to have everything already predownloaded and ready to go and have an exact step by step procedure that you swear by. For Win2000,.. I do SP1, SP2, SP3, SP4, IE SP1, AV software, plug into network install patches (quickly), run Ad Aware SE and I'm usually ok. Kinda/sorta the same thing for XP. Today I accidentally walked away for too long on a Windows 2000 install before doing the SP1 for IE update and yeah -- I got sasser. LOL. But yeah -- I fixed it (cuz I was prepared for it).

The other method for me has been to use (and appreciate) images of clean perfect installs with all patches, security already presetup. I'm still working on perfecting the ultimate image, but yeah,... images man. That's the way to do it. Even if I have to have a set of 3-4 CDs or one DVD,.. it's totally worth it. The only downfall is that mobos are usually always different, but that's no biggie.

My ultimate Windows installation method is going to be a network deployment with this MS sys prep tool. But I have been researching this and tinkering and I might be too retarded to be able to do this. But if I COULD do it this way, then the install comes from a secure server and everything would install in real-time so as to avoid all the clunkiness (mobo(inf)/video/LAN difficulties) of an image install.

[3fingersalute]

The other method for me has been to use (and appreciate) images of clean perfect installs with all patches, security already presetup.

That,s how we do it,,,,,,,,,,,,,we have about 75 machines that we support, but only about 6 different models throughout the whole building,,, so we have images for each one,, and can blow a pc away and reload a new image in almost no time,

[confus-ed]

i know ,, just that by the time you have d/looadee ad-aware and spybot, with updates , all hell breaks loose ,,,

still should be made illigal

Well it is illegal, trouble is how do you enforce it ? - I say its all the ISPs fault & so do the DTI .. sadly some numpty judges somewheres say otherwise & the ISPs position as 'blameless' lives on (There was a case brought recently by the DTI against a UK ISP which had known hackers registered as customers but somehow they wriggled out of it saying their responsibility was to provide line service not any security & that was the customers responsibility, but my google drew a blank to give you more accurate info )

So my trusted approach with new installs is ;- SLIPSTREAMED copies of whatever o/s (you need to keep on top of how current they are though) together with firewall & AV all available on some cd/dvd (rewritable is most handy bearing in mind the foregoing ), then I often add spybot or some other activex blocker thingee (some firewalls have this etc) all installed & going, (then maybe run Hijackthis if I'm feeling especially cautious, depends on the customers choice of 'anti-stuff' & other software -as some of it can be as bad as 'real' spyware [shakes head & thinks Lexmark printers ! ]) before plugging in any outside connection whatsoever !