|
Home > Archive > microsoft.public.certification > December 2002 > Please help.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
|
| Can anyone help me with this problem.
One of my friends son accident browsed some porno site and got something
installed like a direct dialing to a website using their phone and get it
charged directly to their number. What's exactly happening is - the
application that the kid downloaded is launching a auto auto dialing window
to that website. I tried everything to figure that application where it's
installed but no use. It's showing up under c:/ecommerce I tried to find the
target and delete it from there and it shows up again when rebooted. I
couldn't figure out the website address (afraid to logon and get into
trouble further). But I found out this from their user agreement scroll
down. dialersupport@lsmail.com. Can anyone one help me how to get rid of
this application from the system. System is windows98./AOL 8.0.
| |
| Jupiter Jones 2002-11-30, 10:23 pm |
| Look in Add/Remove Programs.
Run Ad-Aware:
http://www.webattack.com/get/adaware.shtml
Also Email them at the address you have.
--
Jupiter Jones
Please respond to newsgroup only.
Everyone can benefit from the message.
"Nexus" <Nexus@comcast.net> wrote in message
news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
> Can anyone help me with this problem.
> One of my friends son accident browsed some porno site and got
something
> installed like a direct dialing to a website using their phone and
get it
> charged directly to their number. What's exactly happening is - the
> application that the kid downloaded is launching a auto auto dialing
window
> to that website. I tried everything to figure that application where
it's
> installed but no use. It's showing up under c:/ecommerce I tried to
find the
> target and delete it from there and it shows up again when rebooted.
I
> couldn't figure out the website address (afraid to logon and get
into
> trouble further). But I found out this from their user agreement
scroll
> down. dialersupport@lsmail.com. Can anyone one help me how to get
rid of
> this application from the system. System is windows98./AOL 8.0.
| |
| Nexus 2002-11-30, 10:23 pm |
| Hi Jupiter,
I even edited (removed) all the references to this dialer.exe and ecommerce
thing and ran spybot to remove it. They spybot found three references of
this and purged them. but still no luck I have rebooted the system for
atleast 2 dozen times. and it's kinda frustrating to unable to get this out
of the system..
"Jupiter Jones" <jones_jupiter@hotnomail.com> wrote in message
news:evM1mvOmCHA.2340@tkmsftngp07...
> Look in Add/Remove Programs.
> Run Ad-Aware:
> http://www.webattack.com/get/adaware.shtml
> Also Email them at the address you have.
>
> --
> Jupiter Jones
> Please respond to newsgroup only.
> Everyone can benefit from the message.
>
>
> "Nexus" <Nexus@comcast.net> wrote in message
> news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
> > Can anyone help me with this problem.
> > One of my friends son accident browsed some porno site and got
> something
> > installed like a direct dialing to a website using their phone and
> get it
> > charged directly to their number. What's exactly happening is - the
> > application that the kid downloaded is launching a auto auto dialing
> window
> > to that website. I tried everything to figure that application where
> it's
> > installed but no use. It's showing up under c:/ecommerce I tried to
> find the
> > target and delete it from there and it shows up again when rebooted.
> I
> > couldn't figure out the website address (afraid to logon and get
> into
> > trouble further). But I found out this from their user agreement
> scroll
> > down. dialersupport@lsmail.com. Can anyone one help me how to get
> rid of
> > this application from the system. System is windows98./AOL 8.0.
>
>
| |
| Vanguard 2002-12-01, 12:23 pm |
| A better newsgroup to ask would one that carries posts about Windows 98.
Geesh, talk about posting to a bunch of unrelated newsgroups (alt.unix,
*.cert*, *.msn.messenger, *.windowsupdate). Not *one* of them was for
Windows 98 (microsoft.public.win98.*). I take it that this crapware does
not show up in the Add/Remove Programs applet for you to uninstall it.
Run msconfig.exe to disable all startup programs, those in your Startup
group and those in Run keys in the registry. Disable all startup programs
(but do not delete them). Then reboot and see if you are still getting
these dialups. Do NOT open any browser windows while checking if the system
still does these ghost dial-ups. When you now reboot, and without you
loading any applications, like IE or another browser, there should be no way
for this software to usurp your dial-up connection.
With a fully updated anti-virus program, scan all files in your system. I
haven't used spybot or Ad-aware but recommend that you run these to
determine if some spyware is phoning home. If the problem went away, start
reenabling each startup program one by one, testing each after reenabling it
by rebooting and checking if the ghost dial-ups occur. When the ghost
dial-ups start, you've isolated what gets loaded to do the nasty deed.
Leave that one disabled and continue on one by one reenabling the rest.
Sometimes more than one startup program is used for a product. Once you
have isolated which startup program is causing the problem, look in msconfig
to find the path to the executable that gets ran to load this software and
then you'll know what to delete. Fact is, when looking in msconfig, you can
guess what a lot of the startup programs are for either by their filename or
path, so the ones that you don't recognize are the suspicious ones.
If after disabling all startup programs and reenabling them one by one and
the problem still doesn't go away, I'm wondering if the problem only occurs
when you manually load an application, like the browser itself. Don't which
one you are using, Internet Explorer or Netscape. I don't use Netscape but
I believe you can go under the Help->About menu and list the plug-ins that
have been installed into Netscape. IE isn't helpful at all in determining
what plug-ins, add-ons, or ActiveX components it will use. One utility from
PC Magazine's download page, called Browser Helper Object (BHO) Cop, will
list some IE add-ons but not all. Many simply get registered in the OS and
not specifially just for use by the browser; i.e., they are a shared
component. Some IE plug-ins get installed under <ie>\Plugins, where <ie> is
wherever Internet Explorer got installed and where iexplore.exe is found.
Some get left under C:\Windows\Downloaded Program Files. You can
right-click on the files in Explorer to see if the Version tab for its
properties tell you anything to identify them.
So what are your kid's friend doing installing software on his (i.e., your)
machine? Tell them that the next time they do this by treating the machine
as theirs they then have agreed to buy the machine and further that they
agree to buy you replacement hardware and software. Do you let others
change your seats in your car when you loan it to them?
--
______________________________
___________________
| Remove "-NIX" from my email address, if present.
|_____________________________
____________________
"Nexus" <Nexus@comcast.net> wrote in message
news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
Can anyone help me with this problem.
One of my friends son accident browsed some porno site and got something
installed like a direct dialing to a website using their phone and get it
charged directly to their number. What's exactly happening is - the
application that the kid downloaded is launching a auto auto dialing window
to that website. I tried everything to figure that application where it's
installed but no use. It's showing up under c:/ecommerce I tried to find the
target and delete it from there and it shows up again when rebooted. I
couldn't figure out the website address (afraid to logon and get into
trouble further). But I found out this from their user agreement scroll
down. dialersupport@lsmail.com. Can anyone one help me how to get rid of
this application from the system. System is windows98./AOL 8.0.
| |
| Jack E Martinelli 2002-12-02, 5:23 pm |
| Perfhaps this will help:
There are seven Run keys in the Win9X registry that cause programs to be
run
automatically:
1. HKEY_LOCAL_MACHINE\Software\Mi
crosoft\Windows\CurrentVersion
\Run
2. HKEY_CURRENT_USER\Software\Mic
rosoft\Windows\CurrentVersion\
Run
3. HKEY_LOCAL_MACHINE\Software\Mi
crosoft\Windows\CurrentVersion
\RunOnce
4. HKEY_CURRENT_USER\Software\Mic
rosoft\Windows\CurrentVersion\
RunOnce
5.
HKEY_LOCAL_MACHINE\Software\Mi
crosoft\Windows\CurrentVersion
\RunServices
6.
HKEY_LOCAL_MACHINE\Software\Mi
crosoft\Windows\CurrentVersion
\RunServices
Once
7.
HKEY_LOCAL_MACHINE\Software\Mi
crosoft\Windows\CurrentVersion
\RunOnce\Set
up
There are 2 places in Win.ini
[windows]
load=
run=
Also in the System.ini
[boot]
shell=Explorer.exe
Note: the above line must read *exactly* as above.
If you find anything else there, remove it. File - Save - Exit
M. Burgess
----
Delete the suspected culprit, after exporting the branch to a safe
place, in case you need to revert.
--
Jack E. Martinelli 2002 MVP for Win9X / DTS
Help us help you: http://www.dts-L.org/goodpost.htm
Your cooperation is appreciated.
--------
"Nexus" <Nexus@comcast.net> wrote in message
news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
> Can anyone help me with this problem.
> One of my friends son accident browsed some porno site and got
something
> installed like a direct dialing to a website using their phone and get
it
> charged directly to their number. What's exactly happening is - the
> application that the kid downloaded is launching a auto auto dialing
window
> to that website. I tried everything to figure that application where
it's
> installed but no use. It's showing up under c:/ecommerce I tried to
find the
> target and delete it from there and it shows up again when rebooted. I
> couldn't figure out the website address (afraid to logon and get into
> trouble further). But I found out this from their user agreement
scroll
> down. dialersupport@lsmail.com. Can anyone one help me how to get rid
of
> this application from the system. System is windows98./AOL 8.0.
>
>
>
| |
| Celsius 2002-12-12, 1:23 am |
| Wow you really are an XXXXXXX.
| |
| Gary - US 2002-12-13, 12:23 pm |
| Nice language. Thanks. And you couldn't have sent that crap off-line?
"Alien_Seed" <alien_seed@.mailcity.com> wrote in message
news qmcneDlfcJ6826gXTWcpw@gi
ganews.com...
> You have a New Problem XXX Hole...your using My name and E-Mail
> address...Stop now or I will track your XXX down and Frag it...Pick some
> other Name and E-Mail you Phony XXXXing Loser.
>
>
>
> "Nexus" <Nexus@comcast.net> wrote in message
> news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
> > Can anyone help me with this problem.
> > One of my friends son accident browsed some porno site and got something
> > installed like a direct dialing to a website using their phone and get
it
> > charged directly to their number. What's exactly happening is - the
> > application that the kid downloaded is launching a auto auto dialing
> window
> > to that website. I tried everything to figure that application where
it's
> > installed but no use. It's showing up under c:/ecommerce I tried to find
> the
> > target and delete it from there and it shows up again when rebooted. I
> > couldn't figure out the website address (afraid to logon and get into
> > trouble further). But I found out this from their user agreement scroll
> > down. dialersupport@lsmail.com. Can anyone one help me how to get rid of
> > this application from the system. System is windows98./AOL 8.0.
> >
> >
> >
>
>
| |
|
| Agreed.
"Gary - US" <gary_kcmo(NOSPAM)@hotmail.com> wrote in message
news:g7pK9.2800$Eo6.1080970429@newssvr12.news.prodigy.com...
> Nice language. Thanks. And you couldn't have sent that crap off-line?
>
> "Alien_Seed" <alien_seed@.mailcity.com> wrote in message
> newsqmcneDlfcJ6826gXTWcpw@gi
ganews.com...
> > You have a New Problem XXX Hole...your using My name and E-Mail
> > address...Stop now or I will track your XXX down and Frag it...Pick some
> > other Name and E-Mail you Phony XXXXing Loser.
> >
> >
> >
> > "Nexus" <Nexus@comcast.net> wrote in message
> > news:X0GdnbQyvcb5_3SgXTWcow@co
mcast.com...
> > > Can anyone help me with this problem.
> > > One of my friends son accident browsed some porno site and got
something
> > > installed like a direct dialing to a website using their phone and get
> it
> > > charged directly to their number. What's exactly happening is - the
> > > application that the kid downloaded is launching a auto auto dialing
> > window
> > > to that website. I tried everything to figure that application where
> it's
> > > installed but no use. It's showing up under c:/ecommerce I tried to
find
> > the
> > > target and delete it from there and it shows up again when rebooted. I
> > > couldn't figure out the website address (afraid to logon and get into
> > > trouble further). But I found out this from their user agreement
scroll
> > > down. dialersupport@lsmail.com. Can anyone one help me how to get rid
of[co
lor=darkred]
> > > this application from the system. System is windows98./AOL 8.0.
> > >
> > >
> > >
> >
> >
>
>[/color]
|
|
|
|
|