[pchelpers] Re: Unknown attack

Sorry I hit the reply button --  instead of making a new email -- in that 
attachment was a bunch of Urls for Tonia--sorry for my booboo-- I thought I was 
sending it to her---- Jackie 
  ----- Original Message ----- 
  From: Jackie MacWhirter 
  To: pchelpers@xxxxxxxxxxxxx 
  Sent: Monday, December 24, 2001 10:45 PM
  Subject: [pchelpers] Re: Unknown attack


  Content-Type: text/plain;
  charset="iso-8859-1"
  Content-Transfer-Encoding: quoted-printable

  I thought I would help you out there is a bunch of urls in there.--check =
  them out.
    ----- Original Message -----=20
    From: Tonia=20
    To: pchelpers@xxxxxxxxxxxxx=20
    Sent: Monday, December 24, 2001 7:12 PM
    Subject: [pchelpers] Re: Unknown attack



     Hi Jackie, yes I tried to find a way to contact them but I had =
  deleted that newsletter and their website doesn't have any link for =
  contact. Anyway haven't found it yet. I'll keep looking and email them =
  when I find their contact address. Thanks for the suggestion, Jackie. =
  =A7:^)
    =20
    Tonia
      Jackie MacWhirter <jmacwhirter@xxxxxxxxx> wrote:=20
    Hi Tonia: Can you contact the website-owner and tell them what =
  happened--?
    Maybe they could help you or explain? -Just a thought-- Jackie
    ----- Original Message -----
    From: Tonia
    To: pchelpers@xxxxxxxxxxxxx
    Sent: Monday, December 24, 2001 7:52 AM
    Subject: [pchelpers] Re: Unknown attack



    Hi Robert
    Yes, I'm still around. I have a back up machine so if one doesn't work =
  I
    fire up the other. I need that redundancy for my work. I work from =
  home on
    weekends and that means I need my Internet connection at those times.
    My hdd is barely six months old and so are my RAMs. In fact I had new =
  ones
    installed just a few months ago. If it's hardware, then I have no =
  worries.
    It's still under warranty! =A7:^)
    I experienced this problem only after I clicked on the link to try to =
  read
    about the case brought by CompTIA against Troytech for copyright
    violatation. Something got installed immediately I clicked on the link =
  and
    that link didn't take me anywhere either. Oh well, it's still a =
  mystery to
    me. It'd be interesting to know what or why this is happening. Then =
  again
    you may be right and I'd been given a lemon of a hdd.
    I'm not wiping the hdd yet. I want to find out what exactly is =
  happening
    first.
    Thanks for the feedback. =A7:^)

    Tonia

    pchelp=20
    wrote:
    Don't know if you are still around but it sounds like you may have a =
  hdd
    going bad. OR... bad memory. I have had the experiences you mentioned
    with both those media.

    Robert McLellan

    ----- Original Message -----
    From: "Tonia"
    To:

    Sent: Monday, December 24, 2001 1:36 AM
    Subject: [pchelpers] Re: Unknown attack


    >
    > Hi John
    >
    > Thanks for the tip. Norton was beaten with this one. When I =
  suspected
    something wasn't right I tried to bring up NAV to do a scan but it =
  won't
    even start, giving an error instead. It was just stone dead!
    > This strange phenomenon sure is weird! I know it zapped my Lotus =
  WordPro
    and some other apps. I can still log onto the web at times and it is =
  only at
    around late afternoon, strange things begins to happen. So during one =
  of
    those times when things were working ok, I downloaded AVG and did a =
  scan. It
    hanged at one file and I had to shut it down by brute force! I wonder
    if it's a virus at all. I had NAV on all the time and it didn't catch =
  this
    one. Instead it got zapped. AVG tells me no virus was found. Yesterday
    while trying to boot up, I got the 'window protection' error. And then =
  it
    won't shut down, instead hanging at the 'windows is shutting down' =
  screen.
    Looks like I may have to start all over again. I'll try the HP system
    recovery CD to see if it works. Otherwise I'd have no choice but to
    reformat.
    > In the meantime I'll search around the web and see if I can find =
  anything.
    Checking my registry didn't turn up anything suspicious. I'll let you =
  know
    if I find anything resembling this odd critter.
    > The worse part of this thing is not knowing what bit me! Oh well, =
  it's a
    learning experience. I learned to read all pop-ups before clicking OK =
  or
    Open! =A7:^)
    > Thanks for your suggestions and off of help.
    > Tonia
    >
    > John Ford wrote:
    > Tonia,
    > Another thing that you could do would be to load and install another =
  virus
    > program on your infected machine. Most of the time when installing a
    > program such as those you are able to answer a question something =
  like "is
    > your machine infected with a virus" or something to that effect.
    >
    > Norton's program will allow you to do that and perhaps it may locate =
  the
    > problem and at least quarantine it for you and at the very least =
  give you
    a
    > name for the critter and then using your older machine you could get =
  the
    > information needed to isolate and remove from your HD on your newer
    machine.
    > I am surprised if you had a virus program running that it did not =
  detect
    > anything when you clicked open on the pop up window.
    >
    > If you get he name of the virus and need our help from the list do =
  not
    > hesitate to ask and maybe we can collectively come up with a =
  solution or
    at
    > the very least get you the instructions needed to help you remove =
  it.
    >
    > John F
    >
    > -----Original Message-----
    > From: pchelpers-bounce@xxxxxxxxxxxxx
    > [mailto:pchelpers-bounce@xxxxxxxxxxxxx]On Behalf Of Tonia
    > Sent: Sunday, December 23, 2001 1:32 AM
    > To: pchelpers@xxxxxxxxxxxxx
    > Subject: [pchelpers] Unknown attack
    >
    >
    >
    > Hi all
    > I've got the strangest thing happen to me yesterday while I was on =
  line. I
    > was reading an article in a newsletter from Cramsession and clicked =
  on a
    > link which said "Read More". What I got was a pop up window like =
  what you
    > get when you want to download something and it prompts you to save =
  to disk
    > or open in current window etc. Without thinking I clicked on =
  Open....and
    > that opened a Pandora box! I noticed something being installed on my
    > system. Before I could do anything to stop it, it was all over! So =
  were my
    > apps, Internet connection, Outlook Express email etc. Nothing works
    anymore.
    > The icon of the Word Viewer turned into a black pokemon-like =
  monster!
    > I have been reading this Cramsession newsletter for some years. It's =
  all
    > about exams and certifications and other techie stuff. This =
  particular
    > article was on CompTIA suing Troytech so I didn't even think of =
  reading
    what
    > that pop up window was about. After shutting it down I booted up my =
  older
    > machine to continue with my work. Later that evening, I went back to =
  it
    and
    > it seemed to work fine. Didn't give it a thought this morning when I
    started
    > it up. But towards the later part of the morning it started to act =
  funny!
    It
    > killed my Lotus WordPro, even notepad won't start up! And the online
    > mentoring chat window just went blank! I went to shut down at =
  "Start" but
    > it refused to start! I normally use the winkey for that but seeing =
  it
    won't
    > work I used the mouse and what I got was a small square with a =
  computer
    icon
    > saying "shut down". But fortunately it worked and I managed to shut =
  it
    down.
    > I wonder if anyone here had this experience. I want to know what was
    planted
    > on my machine. I'm using Win98SE on an HP Brio workstation. Never =
  given me
    > any problem till now. I hope I'm not zombiefied!
    > Any advice would be most appreciate...before I reformat which means =
  I lose
    > everything. Haven't backed up a thing yet!
    >
    > TIA.
    > Tonia
    >
    >
    >
    >
    > ---------------------------------
    > Do You Yahoo!?
    > Get personalised at My Yahoo!.
    >
    >
    > ---
    > Incoming mail is certified Virus Free.
    > Checked by AVG anti-virus system (http://www.grisoft.com).
    > Version: 6.0.303 / Virus Database: 164 - Release Date: 11/24/01
    >
    > ---
    > Outgoing mail is certified Virus Free.
    > Checked by AVG anti-virus system (http://www.grisoft.com).
    > Version: 6.0.303 / Virus Database: 164 - Release Date: 11/24/01
    >
    >
    >
    >
    > ---------------------------------
    > Do You Yahoo!?
    > Get personalised at My Yahoo!.
    >




    ---------------------------------
    Do You Yahoo!?
    Get personalised at My Yahoo!.


    ---
    Outgoing mail is certified Virus Free.
    Checked by AVG anti-virus system (http://www.grisoft.com).
    Version: 6.0.310 / Virus Database: 171 - Release Date: 12/19/2001




    ---------------------------------
    Do You Yahoo!?
    Get personalised at My Yahoo!.






  -- Binary/unsupported file stripped by Listar --
  -- Type: application/octet-stream
  -- File: Web pages containing cramsession.WebFerretSearch





  ---
  Outgoing mail is certified Virus Free.
  Checked by AVG anti-virus system (http://www.grisoft.com).
  Version: 6.0.310 / Virus Database: 171 - Release Date: 12/19/2001

Other related posts: