[Dshield] blocking the DSL hacke

Bryan Hill bhill at capitaltitlegroup.com
Mon Jan 23 07:51:11 GMT 2006


I agree, before connecting the pc to internet, I suggest using the
following programs to at least provide protection to download the MS
patches.

MS Spyware removal tool:
http://www.microsoft.com/athome/security/spyware/software/default.mspx

Kerio personal firewall (Free)
http://www.kerio.com/kpf_download.html

More Free Firewalls
http://www.iopus.com/guides/freefirewalls.htm

hope this helps... 

-----Original Message-----
From: list-bounces at lists.dshield.org
[mailto:list-bounces at lists.dshield.org] On Behalf Of Deb Hale
Sent: Sunday, January 22, 2006 5:14 AM
To: 'General DShield Discussion List'
Subject: Re: [Dshield] blocking the DSL hacke

Mel,  It is highly unlikely that you will get rid of all the bad stuff
without a spending a lot of time.  I recommend for a computer that is
this
badly compromised that it be backed up, reformatted and reloaded. You
don't
know what backdoors have been left by the malware.  Some may over ride
the
protection that the firewall and antivirus offer.  When you reload -
install
the antivirus software, Spybot Search and Destroy, and AdAware SE and
update
these and all of the Microsoft updates before installing any other
software.
Make sure that your firewall is setup from the beginning.

Just my 2 cents.

Deb 

-----Original Message-----
From: list-bounces at lists.dshield.org
[mailto:list-bounces at lists.dshield.org]
On Behalf Of Vinod Kumar
Sent: Saturday, January 21, 2006 5:22 PM
To: General DShield Discussion List
Subject: Re: [Dshield] blocking the DSL hacke


On Sat, 21 Jan 2006, Mel wrote:


> 
> 
> My friends Earthlink DSL account has become useless lately.
>  As soon as the computer is turned on a constant barrage begins coming

> from diverse machines on the Verizon network.(70.20.x.x)  Most
attempts
seem to be netBIOS in nature, but it isn't very long, maybe as short as
ten
minutes, until my friends machine is full of viruses and begins acting
very
unstable.
>  We tried to get to the AVG website to update the anti-virus but
always
get infected before we could wend our way to the AVG site in Germany.
>  We have a linksys router on hand but don't know anything about
putting it
to use. I remember reading on the Dshield forum that a router would be
helpful in stopping intrusions. We are using a Netopia modem.
>  Can someone please point us in the right direction. Thanks many many
in
advance.
>                                       Mel. 
>  
> 

First and perhaps easiest thing to do is to burn a copy of avg off of a
different computer perhaps yours and run it with out plugging into the
internet.

Your friend is most likely infested with all kinds of nasty spyware and
worms etc.

Run AVG, then get online, run AVG again after getting all the latest
updates.

Run spybot Search and Destroy, I believe Microsoft has a spyware removal
program.

The netgear is most likely not going to help, because your attacks are
coming in from your own infections.



_________________________________________
Learn about Intrusion Detection in Depth from the comfort of your own
couch:
https://www.sans.org/athome/details.php?id=1341&d=1

_______________________________________________
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list

_________________________________________
Learn about Intrusion Detection in Depth from the comfort of your own
couch:
https://www.sans.org/athome/details.php?id=1341&d=1

_______________________________________________
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list
 
This information may be legally privileged and/or is confidential, and is intended for the use of the addressee named above.  Any other use is strictly prohibited.  If you have received this communication in error, please immediately notify me and destroy the communication.  Any wrongful interception of this transmission is  prohibited and punishable under federal law.



More information about the list mailing list