Re: WARNING FOR WINDOWS USERS!

Ian wrote:
There is a hack out there that is coming in through Outlook.exe (MS
OFFICE Professional 2007) while in the
Send/Receive Process, it leads to more Outlook.exe changes, as well
as changes in svchost.exe. it leads to very slow sending of
documents, and may be part of the Bot Net. after this has happened,
I noticed a .INI file. I opend it with Notepad, but did not uncheck
open with this program by default. it changed all of them.I
reinstalled on a Scrubbed (7 times) HD with a new mother board a
flashed bios, but put the old C- MOSS (spelling?) in. had to reset
the clock, but with a fresh format BIOS and install, i checked and
all the .INI files still opend by default with notepad.( asystem
setting saved by software only) I have done this entire process
with Vista Business, and XP Pro SP 2.
DELL has been helpful with hardware, but Kaspersky labs can not
find the issue in their moscow lab.
i have used multiple scanning tools, and nothing finds it!

Shenan wrote:
Not enough details

The *.ini files are - by default - associated with notepad.

Opening a file and not unchecking the 'always open with' box when you do
so
is not a symptom of a virus - well, unless you usually do it, but have the
flu and the fever made you forget to do it that one time.

I believe this is somewhat of a troll attempt to scare (trick or treat?)
anyone who might be gullable enough to believe it.

Ian wrote:
I wish it was and it may be on the part of the hacker who has
accomplished it.. but i had my motherboard replaced yeasterday.
if you try to open a INI file it will not open until you the user
tells the system to open the INI with note pad.

Works here - fresh install Windows XP Professional. I didn't tell it to
"Open With" - I just double-clicked.

this is very real. and Kaspersky has an open case as does dell.
I also reported the issue to microsoft.

What did you actually report - because if it is anything like your original
post - they have nothing to investigate.

The people in the lab at dell and kaspersky both know that the
system default on a fresh install to open an ini is not notepad,
but a system file. the default to open it so you can see it and
hack/change it is notepad but you have to make that selection the
system will give you the option to choose from a list of programs
or do an internet search, the search comes up empty handed saying
unknown file type.INI files are usually hidden system files until
you select to show hidden system files you do not even see them and
they do not open.

That's great - let's review what you said...

"I opend it with Notepad, but did not uncheck open with this program by
default. it changed all of them."

You changed it manually to whatever - however - having .ini associated with
anything (Notepad, Wordpad, Notepad+, whatever you want) does not harm the
usefulness of the ini. An INI file is just a set of defaults for a given
application - a cheat-*** telling some application what settings to use.
It is *not* associated with said application - said application calls it *by
name*.

Again - nothing you have said points to a virus/hack of any type. You've
been duped (or are mistaken) and whom ever you are speaking to (at dell and
kaspersky - if anyone) is humoring you if you have given them what you have
given us as far as details. Others may continue to humor you - I will not.
If you have actual details - report them here - otherwise - I am sorry you
believe you got infested with something and hope the solution is found to
your liking.

--
Shenan Stanley
MS-MVP
--
How To Ask Questions The Smart Way
http://www.catb.org/~esr/faqs/smart-questions.html


.

Loading