| View previous topic :: View next topic |
| Author |
Message |
mikey
Malware Expert
Joined: 12 Feb 2004
Last Visit: 03 Sep 2012
Posts: 1061
Location: CenTex
|
|
| Back to top |
|
 |
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 24 May 2013
Posts: 10271
Location: sunny California
|
 Posted: Sun Feb 22, 2004 12:22 pm Post subject: |
 |
|
Thanks Mikey! I split your post to a new thread so that it would be on top. 
| Quote: |
| Unless you have a CWS infection(and you would know it), there is no reason to DL the removal tool. |
Good point! I've seen on other forums where people were downloading and running CWShredder when there was no need for it. Although not everyone knows when they have CWS, some people have no idea what it is when they get hit with it. My supervisor at work got it and she had no idea what it was or how she got it. 
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn.  |
|
| Back to top |
|
|
mikey
Malware Expert
Joined: 12 Feb 2004
Last Visit: 03 Sep 2012
Posts: 1061
Location: CenTex
|
|
| Back to top |
|
|
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 24 May 2013
Posts: 10271
Location: sunny California
|
| Posted: Sun Feb 22, 2004 12:42 pm Post subject: |
|
|
Mikey, it's obvious you have good common sense! Unfortunately a lot of people don't.  Sometimes that's how they get into trouble in the first place.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. |
|
| Back to top |
|
|
iceblue
Warrior Guru
Joined: 18 Jan 2004
Last Visit: 11 Apr 2006
Posts: 392
Location: Sydney
|
|
| Back to top |
|
|
wawadave
Warrior Obsessed
Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum
|
|
| Back to top |
|
|
mikey
Malware Expert
Joined: 12 Feb 2004
Last Visit: 03 Sep 2012
Posts: 1061
Location: CenTex
|
|
| Back to top |
|
|
wawadave
Warrior Obsessed
Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum
|
|
| Back to top |
|
|
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 24 May 2013
Posts: 10271
Location: sunny California
|
| Posted: Mon Feb 23, 2004 6:03 pm Post subject: |
|
|
The link works for me.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. |
|
| Back to top |
|
|
wawadave
Warrior Obsessed
Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum
|
| Posted: Mon Feb 23, 2004 7:26 pm Post subject: |
|
|
hello
the link worked this time!
and
Personally I don't see any harm in running CWShredder but Mikey probably knows more about it than I do."
My reasoning;
The shredder is updated almost daily because of new variants. Because it is updated so much it is much more likely that F/Ps will occure. Last week, it was removing the legit 'notepad'. If your not infected, why run it? Durring the course of CWS dev, the shredder has had many flaws and rightfully so without neglect. It's a great resource if you need it.
i agree with Mikey's reasoning on not running it unless needed i have posted on computing.net just that not to un less you have a problem.
have a nice day! 
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd |
|
| Back to top |
|
|
JackG
Newbie
Joined: 24 Feb 2004
Last Visit: 29 Feb 2004
Posts: 1
Location: South Florida
|
| Posted: Tue Feb 24, 2004 12:31 pm Post subject: |
|
|
I am surprised that Marijn has not reacted and fought back.
With his CWShredder and help from SpyBot S&D, they could target the Bots that are used in the DDOS attack. They could search for known versions of these engines and the Sub7Server Trojans that are used to install them.
I have read a number of comments from people expressing concern that they have no way of checking for or knowing if their system is being used in the attacks.
The logical step would be for the Spyware checkers to look for and remove such Bots. It would at least reduce the number of systems involved and make their owners aware they were being used.
In the mean time, users should learn how to bring up a DOS/CMD window and run netstat -an and see if their machine is connected to specific Foreign Address servers. |
|
| Back to top |
|
|
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 24 May 2013
Posts: 10271
Location: sunny California
|
| Posted: Tue Feb 24, 2004 12:53 pm Post subject: |
|
|
JackG - Did you see this thread?
http://netrn.net/phpBB2/viewtopic.php?t=254
Merijn is asking for help to identify the bots being used in the attack.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. |
|
| Back to top |
|
|
|
