Computer update

Aug 09, 2010 12:23

Still no internet at home. I've pretty much given up on MSN being helpful. I'm going to try deleting MSN.EXE and associated crap off the computer and reinstalling it but first I want to move my saved emails from my MSN account to Gmail just in case ( Read more... )

interesting times, real life

Leave a comment

scribefigaro August 9 2010, 19:02:25 UTC
If your computer is still rooted (and it probably is) you're just running a zombie computer; while it might give the appearance of your old OS it actually belongs to a botnet now. You were probably infected by someone else who got their system compromised and nonetheless remained on the Internet to infect others ( ... )

Reply

ranuel August 9 2010, 19:21:08 UTC
My ISP (MSN) says I should be good. Spybot, Malwarebytes, and McAfee say I'm clean and nothing obvious to me shows up on Hijack this. I've run ComboFix, Superantispyware, and CCleaner too.

I cleaned out Backdoor Bandok over a week before this issue started and everything ran fine until there was one of those "We've updated XYZ enjoy the new features" things from MSN the last time I logged in sucessfully. Which is why I think something glitched with that.

I've got a Dell netbook so no CD drive.

I pity the person trying to run a porn site off of a computer that spent several hours a day hooked to a 30k dialup connection. I can't even watch Youtube without waiting about 10 minutes per minute of video for it to load.

Is there anything out there that will let me see what is using my bandwith?

Reply

scribefigaro August 9 2010, 20:17:35 UTC
(These are all really good things, props.)

But the thing is, if you have a really good rootkit it sticks itself into the OS to redirect file system and memory access *around* these things, so when (say) MBAM scans your registry the rootkit only lets it see a fake registry.

You can use an application to change a bootable CD ISO into a bootable USB ISO, but I imagine you're not interested and I haven't done it myself so I can't really help you anyway. :)

Is there anything out there that will let me see what is using my bandwith?

Open up a command line, type "netstat /b" to show you all open connections and the applications using them. This won't tell you how much traffic is actually being handled by each port/application, though. For that you'd need a packet sniffer like wireshark or some other network utilization tool.

http://www.wireshark.org/ (free)

Reply

ranuel August 9 2010, 20:32:47 UTC
Thanks, I'm downloading Wireshark and will play with it from home. I tried runing the "netstat /b" command and it flashed by too fast to read and then closed.

Reply

scribefigaro August 9 2010, 21:02:11 UTC
You have to open a command line window first.

start -> run -> "cmd"

And with the window up, "netstat /b"

You'll have to scroll up and down to read everything.

Wireshark is surprisingly user-friendly for what it does.

Reply

ranuel August 9 2010, 21:34:45 UTC
Thanks! I'll check it out.

Reply


Leave a comment

Up