Had a major problem with a spyware infection yesterday. User told me that their pc was incredibly slow and Search&Destroy would not fire up. S&D was actually running minimised but it was not possible to restore or maximise it. Turns out that the pc was actually running slowly due to the machine trying to constantly access a faulty cd! I ran hijack this as the user had a toolbar named “lslyfqudprl” and homepage was set to mysearchnow. That found the toolbar and an autorun app called dseeglpr.exe -quiet in the registry (which I had already spotted by hand to start with!). I cleaned this and then ran adaware and it found IGetNet and Lop.com. These were cleaned and then the system ran with Search&Destroy which found another 5 objects, although these were pictures from lop. A slow scan of the computer with AntiVirus software (why oh why do these not detect lop.com components as virus’s or malicious software?) and the user eventually got his pc back a couple of hours later.
PcJunky had problems publishing with blogger with an error message that said “Current Status: There Were Errors in Publishing.002 There are no current posts to publish. You might be trying to publish a post set to a date later than right now.”
What it should have said is “your template has been deleted – i’m afraid you’ll have to add it again – hope you have a backup!”
Some more excellent photos from sensitive light have been posted, but my favoutie is one about Conspiracy amongst dragonflies
Then a friend from work has 3 pc’s for sale at his website.
Yesterday was the time to install the next build of Firebird as it was nagging me that I was 4 weeks old. So I downloaded the nightly build and was pleasantly suprised to see that my Pop3 webadmin interface no longer prompts me for a username and password for every item on the page, ditto for my adsl router. Very pleased! The tabbrowser extension needed to be updated as it kept complaining and I also upgraded linky too.
Unixgirl details New lows in pop-ups where a message appears telling you that you have a virus if you go to http://www.ownbox.com/treasure . I’ve deliberately not linked the url. I can just see this being used by spyware authors and phonedialers
I had the need to change a directory listing of all files on a server from a name such as f:\directory\fred.doc to DIRECTORY/FRED.DOC ie to remove the f:, swap \ to / and uppercase all the files. Using SED I was able to do all of those using repeated substitutions like the following, sed “s/f:\\i/i/;s/\\/\//g;s/a/A/g;s/b/B/g;s/c/C/g;s/d/D/g;s/e/E/g;…s/y/Y/g;s/z/Z/g” . Thats a really powerful utility and very complicated. I’m sure there is an easier way to UPCASE the characters but I didn’t have the time to discover it. For those of you curious as to why I need to do this, its because I’m creating a cpio of some data on nt, and copying it to unix. If I uncpio’d the data on a unixbox, the backslashes acting as directorys would just be treated as a normal file character.
The 3 Column version output of Firda’s Firdamatic is up.
Mark has a page about shortening urls but with a domain like absoblogginlutely.net its likely to increase the length of the resulting url!
Mark has a page about shortening urls but with a domain like absoblogginlutely.net its likely to increase the length of the resulting url!