| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 68155 | 2006-04-19 16:25:00 | Spyware Quake Removal from SYSTRAY | cashbagg (10244) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 447724 | 2006-04-25 05:18:00 | But Joe, relying on the Windows firewall and your router for protection is not the best you can do . :( Check out this page ( . practicallynetworked . com/sharing/xp/ic_firewall . htm" target="_blank">www . practicallynetworked . com) (see Warning #3) and this page ( . zdnet . com . au/insight/security/soa/The_pros_and_cons_of_Windows_Firewall/0,39023764,39252830,00 . htm" target="_blank">www . zdnet . com . au) and I also recommend that you read this thread ( . pressf1 . co . nz/showthread . php?t=60834" target="_blank">www . pressf1 . co . nz) for a really good discussion on firewalls . If that doesn't convince you nothing will . ;) :D Oh . . . I am convinced well enough . . . . . . and I thank you for the concern . . . but I have been running well for a while in this mode . . . for about 1 . 5 years now . Yes . . . I agree that there's a lot more to firewall than I am running or so . . . . perhaps there's a difference with not going to obviously nasty sites . I run SiteAdviser (for FireFox) and SpoofStick (for IE) to pre-test the waters and stay off orange and red flagged sites all the way . I don't . warez, P2P, IRC or game, as I think these are really troublemakers and inserters of bad things . My spam box has nothing in it at all . . . I guess I am invisible to drive-by hacks and such . I run (not intending to conflict with logic here) Spybot Advanced, Ad-Aware, SpywareBlaster, Windows Defender, MBSA, SP-2, and the Linksys Router (BEFSR41) and stay offa IE . I might just be fortunate, or am living a charmed existance online right now . All's clean and running well right now . . . I make no bets or promises, but so far I am happy and successful . Belarc Adviser, CCleaner and HJT tests prove that I am doing something right anyway . I DO get the occasional problem, but I think it's been mostly my own fault for changing things that I should not and should know better . But . . . again I say . . this is probably just a temporary situation . . . . . I await the need to burn it all down and fdisk and start all over again . . . and that's nasty with 8/200 gig HDDS on JBOD and a pair 40gig root drive dual-boots with 98SE and XP-Pro . I collect audio and video files . |
SurferJoe46 (51) | ||
| 447725 | 2006-04-25 05:23:00 | But Joe, relying on the Windows firewall and your router for protection is not the best you can do. :( That’s what we are doing here now :) (All 4 of our computers (excluding my laptop which has zone alarm on it, but I only use it when I am using wifi or my modem) are using the Windows firewall plus our router firewall as our first defence) |
stu161204 (123) | ||
| 447726 | 2006-04-25 05:29:00 | Fair enough, Joe . It's just that I have had several trojans on my own PCs that would not have been picked up so quickly had it not been for the firewalls on these boxes and I have also cleaned up a number of PCs that had no third-party firewalls . Until a firewall was installed there was no evidence of them being infected with trojans as the AVs, anti-spyware programs, etc did not detect them . Granted, a trojan detector would probably have found them but installing a firewall picked them up much faster . Horses for courses, as usual . :) I wonder how the original poster is getting on with his/her problem now? One post and they never came back . :( |
FoxyMX (5) | ||
| 447727 | 2006-04-25 05:32:00 | That’s what we are doing here now :) (All 4 of our computers (excluding my laptop which has zone alarm on it, but I only use it when I am using wifi or my modem) are using the Windows firewall plus our router firewall as our first defence) Good luck then, Stu. :) |
FoxyMX (5) | ||
| 447728 | 2006-04-25 06:06:00 | Good luck then, Stu. :) Thanks :) (Also ShieldsUP from www.grc.com says all our ports are Stealth, so I am happy, I know about out-bound issues, but we have been lucky & have not had any of those issues i.e. with virus etc…) |
stu161204 (123) | ||
| 447729 | 2006-04-25 06:48:00 | Thanks :) (Also ShieldsUP from www.grc.com says all our ports are Stealth, so I am happy, I know about out-bound issues, but we have been lucky & have not had any of those issues i.e. with virus etc…) no offence to stu or joe but as i say to a few people "how would you know? (without having a firewall)" seen people who have had infections running for years without knowing about it, install firewall and its instantly found. also don't forget about those pesky legit apps eating your bandwidth exspecially when you have muiltable pc's on an adsl connection. just something to keep in mind. |
tweak'e (69) | ||
| 447730 | 2006-04-26 05:27:00 | need help to get rid of the icon in system tray my pic of desktop and my start up entry is in the upload section plz look at it its called my desk top.bmp tha pic tnx private meesssage me plz thnx | narbeh (10245) | ||
| 447731 | 2006-04-26 10:15:00 | When you uninstalled spyware quake it'll never work because it's a virus/spyware or something by disabling the internet explorer for me and keep poping you need to buy that stuff to remove the viruses but it was spyware quake causing all the troubles. That time my anti-virus was down due to date expired and luckily I managed to used Norton GO Back and no trace of spyware quake was found on my PC anymore. |
MTLance (6768) | ||
| 447732 | 2006-04-26 11:02:00 | narbeh, try downloading and using Ewido, free for 15 days, apparently this removes it. www.ewido.net |
zqwerty (97) | ||
| 447733 | 2006-05-21 23:52:00 | Hey, I am having the same problem with the system tray icon for SpyQuake program. I even went to the point of downloading SpyQuake to get the program to uninstall it all properly... Ill try to above link, but i was still hoping someone could look at my HJT log and tell me anything going bad and a little how to fix it:) And BTW... I run with just Linksys and Windows Firewall for 3+ years now, this is the worst its gotten.. mostly just gotten things Adaware and Spy Bot found. At least, I think.. lol... thats why Im posting this: Logfile of HijackThis v1.99.1 Scan saved at 5:37:29 PM, on 5/21/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Ideazon\Zboard Software\Driver\ZboardTray.exe C:\WINDOWS\Mixer.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Razer\Copperhead\razerhid.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Ideazon\Zboard Software\Driver\Zboard.exe C:\Program Files\Razer\Copperhead\razertra.exe C:\Program Files\Razer\Copperhead\razerofa.exe C:\Program Files\ATI Multimedia\main\ATIDtct.EXE C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe C:\Program Files\ATI Multimedia\MAIN\ATISched.EXE C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe D:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Dave\Desktop\hijackthis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = us.rd.yahoo.com R3 - Default URLSearchHook is missing O2 - BHO: Nothing - {f79fd28e-36ee-4989-aa61-9dd8e30a82fa} - C:\WINDOWS\system32\hp3587.tmp (file missing) O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [Copperhead] C:\Program Files\Razer\Copperhead\razerhid.exe O4 - HKLM\..\Run: [Transponder] C:\WINDOWS\system32\susp.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\launchpd.exe" O4 - HKCU\..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\ATIDtct.EXE O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe O4 - HKCU\..\Run: [ATI Scheduler] C:\Program Files\ATI Multimedia\MAIN\ATISched.EXE O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe O8 - Extra context menu item: & Yahoo! Search - file:///C:\Program Files\ Yahoo! \Common/ycsrch.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\ Yahoo! \Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\ Yahoo! \Common/ycmap.htm O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\ Yahoo! \Common/ycsms.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\ Yahoo! \Common\yiesrvc.dll (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\ Yahoo! \Common\yinsthelper.dll O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - www.fileplanet.com O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - launch.gamespyarcade.com O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - us.dl1.yimg.com O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - antu.popcap.com O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - fdl.msn.com O16 - DPF: {EFFDEEEC-F9E1-4461-91D2-DAEB8CC595F1} (CSViewer Control) - 64.114.56.132 O20 - Winlogon Notify: Zboard - C:\WINDOWS\SYSTEM32\Winlognotif.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AdobeVersionCue - Adobe Sytems - C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe And help available to speed my boot and system up is great, even if its just turning off something that isnt a threat just not needed. Thanks. Ash |
Ashbringer (10246) | ||
| 1 2 3 4 | |||||