Hijack imposta ayarla felrak eviewset
From: Dawntreader688 (Dawntreader688.1gtiba_at_news.nospam.local)
Date: 12/06/04
- Next message: StringFellow Hawk: "Re: Performance on XP"
- Previous message: bondo: "RE: HELP! Cannot See Folders Or Access Info On CD-Rom in WinXP"
- Next in thread: Malke: "Re: Hijack imposta ayarla felrak eviewset"
- Reply: Malke: "Re: Hijack imposta ayarla felrak eviewset"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 5 Dec 2004 18:47:37 -0600
Sorry for being unclear, I'll try and keep this precise and tight.
When I worked as a tech I would have written off my problem as some
paranoid that thinks a red light on the Cable Decoder means a camera is
watching him. The only way you will know I'm not, is to resolve this
problem, or keep calling in help until it's solved. Affer all, if a
drive is really clean, the bios is not infected, and the install CD is
not counterfeit, it would follow that an install MUST be good.
I would NEVER go onto the net without at least the SP2 firewall just to
get me to M$ Update, and purchased a M$ XP Pro SP2 CD last week, to
avoid being on the net PERIOD while I did an install. At this point,
dumping another $175.00 into this is a small problem. All nework
cables are unplugged, Linkysy gateway router/firewall and RCA cable
modem powered down. Any more secure, and I'd be sitting in a Faraday
Cage.
Due to my inability to determine the method used to compromise my
system, I "broke into the middle of setup" by doing the following.
Clean wipe, start setup from CD on unpartitioned media, allow setup to
run until the reboot point after the files have been transfered from
the CD. At THAT reboot point, instead of allowing the setup process to
reboot from the Hard drive, I restarted from CD, and entered Recovery
Console, at which point I noted the listed files. After making notes,
I allowed the setup process to continuere by rebooting.
The malware infestation occured BEFORE connection to the internet, or
to any network at all, or even any cable plugged into the network card.
The machine had no connection to any other machine or hardware at that
point.
The 18 of 22 who also have these issues are coast to coast
corespondents of mine, and we DO NOT have any shared network, software
or media in common. My own network is sitting in a stack behind me.
As for IT, I've been unable to find anybody local at the ubergeek level
that really knows XP (or let's be honest, it's really NT with new
paint) and is willing to work for $500 a day.
I've got Norton 2005 on CD, Ghost, and Partition Magic also latest
versions. I've been running SbyBot, Ad-Aware, and the AOL version of
McAffee for a couple years with a few incidents of infection. SpyBot,
Ad-Aware, CWShred, HJT (That Dutch kid ever comes to Seattle, he won't
have to spend a dime), and all the rest including Panda, Trend Micro,
McAffee, Symantic, and every other scanner I can locate mostly turn up
no clues, Ad aware caught bad ADS (Alternate Data Streams) a time or
two, and ADSpy nailed 80 bad streams on the first machine I tried to
clean. I must be missing something that will be obvious, but I may be
too close to the problem.
No, not all at once. I've reformatted DoD three pass on several
different drives, half a dozen times, and avoid installing programs
that will clash.
But, I don't have any problem going back through all the steps with
you, and not taking even one little "I've been doing this for 20 years
so I know" shortcut. I've been on your side of the drill far too many
times.
One aside. The machine I'm on the net with now has most services
turned off, and security settings screwed down so tight that bytes
squeek when they leave, so isn't the best candidate for a test, but I
am sending the hijack this logs, that said. If you care to continue,
I'll set up another machine, and walk this all the way through, the
only contact the new machine will have with the outside world is
Factory CDs, and "use once" new factory format floppys to transfer any
created logs.
I've seen others with the same problem doing a google search for
"imposta felrak" and for the most part, they give up because they are
laughed off the net when they describe their problem. Getting rid of
this bug is not a problem, since a factory BIOS and new HD will cure
anything. At least, until somebody figures out how to write to all the
smart new devices we plug into our computers. What I want to do, is to
undersand what's happening to the machines I have that are infected,
and find out why I can't clean them. So far, Microsoft and Symantic
have been of no help, and my pool of local talent is stumped.
Shall we continue?
Log to follow:
-- Dawntreader688 ------------------------------------------------------------------------ Dawntreader688's Profile: http://extremetechsupport.com/forum/member.phtml?userid=629 View this thread: http://extremetechsupport.com/forum/showthread.phtml?t=124724
- Next message: StringFellow Hawk: "Re: Performance on XP"
- Previous message: bondo: "RE: HELP! Cannot See Folders Or Access Info On CD-Rom in WinXP"
- Next in thread: Malke: "Re: Hijack imposta ayarla felrak eviewset"
- Reply: Malke: "Re: Hijack imposta ayarla felrak eviewset"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
