I cannot believe MS get away with IE.

  • Thread starter Thread starter Saoist
  • Start date Start date
Click For Summary
SUMMARY

The discussion centers around the severe malware issues encountered when using Internet Explorer (IE), leading to high CPU usage and system instability. The user initially attempted to remove the malware using Ad-Aware and Spybot but faced challenges accessing files on a corrupted Windows installation. The solution involved using a dual boot setup with Knoppix and Suse 9.1 Live CDs to recover files, ultimately resolving the issue by transferring files over a LAN connection in safe mode. The discussion highlights the effectiveness of using Linux-based recovery tools for data retrieval from infected systems.

PREREQUISITES
  • Understanding of malware removal tools such as Ad-Aware and Spybot.
  • Familiarity with dual boot configurations and Linux Live CDs.
  • Knowledge of NTFS file systems and mounting procedures in Linux.
  • Basic troubleshooting skills for network connectivity issues in Linux environments.
NEXT STEPS
  • Learn how to use Knoppix for data recovery from infected Windows installations.
  • Research the process of mounting NTFS drives in Suse 9.1 and other Linux distributions.
  • Explore advanced malware removal techniques and tools beyond Ad-Aware and Spybot.
  • Investigate best practices for securing systems against malware, particularly when using Internet Explorer.
USEFUL FOR

This discussion is beneficial for IT professionals, system administrators, and users dealing with malware infections, particularly those seeking effective recovery methods and preventive measures against Internet Explorer-related vulnerabilities.

Saoist
Messages
28
Reaction score
0
so i use opera normally, because its nice, simple, fast, and relatively spyware/malware/popup free. however one time i had to use IE today, and in 4 mins (i timed it for popups) i had a goddamn rash of malware on my system which i can't get off. when u log in, it rockets the cpu usage right up to 100%. i managed to get ad-aware installed, and it said it removed the buggers, but it obv. hasnt because the bloody "Free bingo money" icons or whatever are still on the desktop.

now I've decided the best way to solve this is to reformat. however, i havnt backed up my files recently. :| so I've rigged a dual boot with a spare 5-gig HD, so i could boot off of that, and retrieve my files from the original drive.

HOWEVER it won't let me do this, because when i goto C:/Documents and Settings/[Username]/[Username's Documents] it won't let me in, because I'm not on that account, not even on that installation of Windows. SO what I'm asking is, is there anyway to get those files, without logging onto the original (f*cked by malware) installation, even if it involves entering passwords etc? its not like I've lost my password, i just can't get at the files on the original installation because it grinds to a halt right on starting up.

long, wordy post. phew. {prematurely} thanks for any help. IE is a pisstake, its like Bush making social commentary.
 
Computer science news on Phys.org
Knoppix: http://www.knoppix.org/

Download, Burn, Boot CD

It should automatically mount the windows partition and put an icon on the desktop. You'll be able to get any data off the drive and upload it wherever.
 
Just because the icons are still there doesn't mean the program is. Try using the original drive and run the program from the icon. If the program fails to run simply delete the icons and never use IE again. Also try using spybot along with ad-aware to do a more thorough job of removing the crap that gets through IE.

If you're worried about running the program simply disconnect from the net first... :wink:
 
the point is, on the original installation, i can hardly open the task manager, that's how quick it rockets to 100%. i can delete the icons, but something is still there. on the 2nd installation I've installed spybot search and destroy, adaware, and spywaredocter, and scanned the original drive, and it found a lot of crap, obv, but when i restarted with the original installation, it was still slow as hell.
 
I'd suggest checking each of your running processes out using google (just type the name in and you get a half dozen sites telling you what it is). If any of them is known spyware, end the process and make sure it won't start up via MSConfig.
 
I'd love to do that, but if i end a process, sometimes it'll pop up on the list again (obv. a virus), and i have about 4 secs before it maxes out the CPU. i don't have time to get to msconfig, let alone do anything with it. I've dled and tried knoppix...it can get to my local drives, but not connect to my lan (so i can back up files to sis's pc), and I've Suse 9.1 Live, and it can connect to my LAN, but can't see my drives! and theyre in ntfs, so a bugger to mount with linux of any flavour.

duardo, if you're experienced with knoppix, tell me why it won't see my LAN. :)
 
Did you mount the drives when you booted up Suse Live CD?
 
no idea how...looked on google "mount ntfs drives suse 9.1" but what the results suggested, didna work.

i've sorted it out now...randomly the pc let me use it properly on safe mode with networking (didnt before), so i transferred my files over lan to other pc, and formatted.

that said, how do you mount drives with suse 9.1? it'd be good to know.
 
I don't know why it doesn't see your network. What type of network do you have? If the Suse Live cd is working then this is how you mount the partition manually:

mkdir /mnt/windows
mount /dev/hda1 /mnt/windows -t ntfs -r

/dev/hda1 = Primary Drive, 1st Parition. Depending on where you decided to to the partition this may change. If windows is the only operating system on your drive, then this is the place where linux will find windows.
 

Similar threads

Ieuser.exe missing in C:Program Files\Internet Explorer - is my IE compromised?
  • · Replies 6 ·
Replies
6
Views
5K
How can I reformat a USB thumb drive that is not recognized by my Windows 10 PC?
  • · Replies 12 ·
Replies
12
Views
2K
How should I distribute space among different partitions in Ubuntu?
  • · Replies 38 ·
2
Replies
38
Views
5K
Linux/Windows Dual Boot password problem
  • · Replies 2 ·
Replies
2
Views
2K
Why Does Windows 8.1 Flicker After Updates?
  • · Replies 5 ·
Replies
5
Views
3K
How Can I Script Windows for a New Server Installation?
  • · Replies 4 ·
Replies
4
Views
2K
Is My Windows Genuine? Seeking Help for a Fake Installation
  • · Replies 11 ·
Replies
11
Views
2K
Security of computer data and passwords
  • · Replies 3 ·
Replies
3
Views
3K
How Can I Disable the Boot Manager and Directly Load into Windows 7?
  • · Replies 2 ·
Replies
2
Views
6K
Fixing My Hard Drive: 2002 - 2009
  • · Replies 3 ·
Replies
3
Views
3K