| reply to B
Re: Anyone know what spywiper is? Those of you having problems with constant jackings - can I recommend that you use a firewall. This normally stops the code from getting in. |
|
 R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1 | Not necessarily. The usual pathway into someone's computer is NOT through an open back door, it is through the front door. Just like all other crimes.
When I hear about a murder in a house, the first suspects are the spouse, the ex-spouse, and ex-lover, the kids, business partner, etc -- all of whom get let in the front door.
Stastically, most malware infections are let in by the user -- perhaps unknowingly by opening an email attachment or visiting a rogue web site with Active Content enabled. Until you do something more proactive than a firewall, the Hijackings will continue. JMHO |
|
BPremium,MVM
join:2000-10-28 |
Well sure, R2, I thought that went without saying. Anything that worms its way in via inbound exploits (relying on open ports on your computer) is NOT going to be simple ad-ware/spyware.
-- B
|
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1 | Hey, first edition single letter entity, you are usually correct. However, I don't know how many times I see comments like: quote:
"I recommend that you use a firewall. This normally stops the code from getting in."
I found those comments a little naive in there approach. A basic firewall covers your rear, but it doesn not do so hot to protect you against things that come in through the front door.
Little kids don't get kidnapped by some strager, statistically they get kidnapped by the estranged father -- who got into the house quite easily. |
|
BPremium,MVM
join:2000-10-28 |
[ Does that mean you're Revision 2? I never knew. ]
Of course I agree with you. I was just saying that we would "consider the source", a semi-anonymous poster whose comment would be weighed appropriately. Best fishes.
-- B
|
|
| Oh that code is not C-code, it's Unicode.
Unicode: A code where all characters are represented by a code. Web browsers automatically undertstand it.
It translates into the Javascript code used to open the Cd-Drives. |
|
| reply to rahvee
 Thank you - that blasted thing was driving my wife crazy. And until I fixed her 'puter with your help, driving me crazy as well! Thanks a lot. -tin |
|
| reply to rahvee
rahvee,
Thanks for the info. Worked like a champ. What can be done to keep company's like this from using these kind of tactics?
Thanks again. |
|
 robtooR.J.T.Premium
join:2003-10-13
United Kingd
3 edits | reply to vulcan146
Thanks for posting the code vulcan146. Here's the converted version...
<script LANGUAGE="VBScript">
<!--
Set oWMP = CreateObject("WMPlayer.OCX.7" )
Set colCDROMs = oWMP.cdromCollection
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
End If
-->
</script>
In case anyone's surprised, this shows that the ejecting CD doesn't mean you're being spied upon.
Much later EDIT: the opening notepad trick's cute, too -- it uses view-source:hxxp://www.example.com/something.txt |
|
| reply to eburger68
»default-homepage-network.com/sta···c001.com
This guy who runs this page is a jerk who allows them to use it as a base to promote there spyware. |
|
 Doctor FourMy other vehicle is a TARDISPremium
join:2000-09-05
Dallas, TX
2 edits | reply to NHD tech
MVPS Hosts |
you'll find default-homepage-network's URL in there.
I'm using the MVPS Hosts file, and here is the entry: |
|
| reply to NHD tech
Spywiper is software from the company mailwiper.com inc. I have filed a complaint about them to the BBB but the BBB won't act unless I have an address, not the URL. Does anyone have any idea where these guys are located? or have an office address or a number? |
|
 crrr
@tnt2.slinger.wi.da.u | reply to rahvee
Thank you so much for cleaning up my computer! It has been driving me crazy!! |
|
| reply to Marco Soto
You may want to read this article for more information
»www.lavasoftsupport.com/index.ph···pic=6553 |
|
| reply to NHD tech
I am currently going through hell from this program. I use a browser front end for IE called crazybrowser which allows using tabs, and other features. Less than 2 minutes after loading this program, I always get the single yellow background popup followed by a full screen "Press the ENTER Key to Continue". Sometimes pressing enter works, sometimes I get stuck inside it and have to use task manager to close it. It happens when i use IE separately too so it's not just this program. Most of the removal programs found and removed it, but several minutes after surfing it was back again. I have tried removing it so many times that I believe it's become smart, and now each time it happens, it doesn't display the registry entries any more, and no programs can find it.
I am so frustrated with this thing and I refuse to pay them money to fix what they did to my pc. I wonder if someone has actually paid for their removal program and could provide a download link for others that have been screwed by this company.
Has anyone else has a similar situation and used a different method to fix it?
We need to come together on this, this company needs to be wiped off the face of the earth and pay what they've done. |
|
| I also wanted to say that this company may have something to do with Spy Hunter by Enigma software because I receive a script error on the following popup every single time I get the full screen "Press Enter to Continue" popup. After I select "NO" to continue running scripts on this page, the full screen script comes up.
»64.27.100.65/scripts/popup.php?h···win.tmpl |
|
