Hobbyist Forums banner

1 - 9 of 9 Posts

·
Registered
Joined
·
4,530 Posts
Discussion Starter #1
Got something while online, don't know what, but my PC is completely fried. Bottom task bar doesn't work, office bar doesn't work, have some new shortcuts added to my desktop "get $7500 loan" and crap like that. What do I do? Also, my Norton, which I let expire, has detected something called SYNC.EXE trying to acces through port 123. Any help would be appreciated. Now I'm also getting tons of popups. Man, this is bad. And my machine is very slow.
 

·
Registered
Joined
·
4,530 Posts
Discussion Starter #2
Well, I don't know how I did it, but I got it working again. I could not use my Start button on the bottom task bar, so I went into My Computer and add/remove programs. Anything that I didn't recognize, I deleted. It works now, but I don't know exactly what I did. The only real suspicious item in there was a Time Sync Program. If it was related to what was happening, what it was doing was trying to access ip addy 192.5.41.209 through port 123, and said it was a site called ntp2.usno.navy.mil and I had to okay the access(Norton alerted me to all this) for a time update. When I typed in 192.5.41.209, I went to a site called myexexex.com, which is some search engine that has casinos and porn on it. Maybe the two were related.

All I know is I would like to find out who's doing all this virus and highjacking crap and beat them in the head with a baseball bat until they were a mental vegetables and could no longer do this kind of crap.
 

·
Registered
Joined
·
4,530 Posts
Discussion Starter #4
PC still fried, nothing fixed.

I wonder if throwing it out into the backyard will do any good....
 

·
Registered
Joined
·
6,776 Posts
That time sync program that's offered "free" is the source of a lot of headaches. I've cleaned it off of 2 PCs this month. What's funny is the 2 machines were win2K and winxp both of which have their own built in time sync software that links to the national institute of standards without the benefit of any 3rd party software.

Both ad-aware and spy-bot seem to clean it up.

On the 2nd machine I had to clean it up in safe-mode to get rid of everything; but it may have had multiple ad-trojan/mal ware products installed. In normal mode they reinstalled, probably due to programs already running that ad-aware/spy bot couldn't stop during execution.

I watched my son access a "cheat" site, one that gives instructions how to win at video games. At least 3 offers to install software popped up, and the time sync software was advertised.

See ad-aware and spy-bot for more. When you download these products (which ARE safe, they support themselves through upgrades you pay for or donations, not advertising) be sure to click on the "update" feature to get their latest ad-ware mal-ware identification files.

I've since switched my son's PC to "limited mode" (windows XP) which doesn't allow installing software. Go to settings, control panel, user accounts.

Norton 2004 advertises they are effective against ad-trojans and mal-ware (not to be confused with viruses) but I haven't tested this.

My son's PC had norton 2002 which does NOT have this feature. I also suspect the mal-ware overlayed some of norton 2002's files and perverted the anti-virus software to restore/download more mal-ware.

This crap is becoming epidemic. It's legal too (for the most part). The fine print no one reads states in obscure language what awful things you are opting into by downloading and installing their software.

Don't download free software unless it's from a trusted source.

If kids, wives, girlfriends use your PC either get them their own (and expect the ensuing headaches of maintaining their machines) or make sure the default user account (the one that logs on when you turn on your machine) is a limited account (windows XP) or restricted (win2k) so the evil software doesn't get loaded even if they try.
 

·
Registered
Joined
·
4,530 Posts
Discussion Starter #7
I went back to trendmicro, followed their instructions to a t, including the registry changes, took everything out of startup that I didn't recognize, and today, my machine started and is working fine. Let's hope it stays that way.
 

·
Registered
Joined
·
3,715 Posts
Steve244 said:
Don't download free software unless it's from a trusted source.
Good in theory, but I've run into a couple places that don't even ask your permission. They automatically install crap just by looking at the site.
(wasn't one of those porn sites either if that's what you are thinking :) )
Comet Cursors was a big pain for a while until I narrowed down which BB that my daughter was using that was causing it.
That crap installs hundreds of files. With no warning, or even sign that anything was being downloaded.
First you would notice it was after a reboot.
 
1 - 9 of 9 Posts
Top