SysAdminWiki:Community Portal

From SysAdminWiki

Jump to: navigation, search

February 25th 2008:

I just installed a program for windows called StopZilla. I'm not sure what caught my eye enough to actually install this spyware tool but i did. I installed it remotely on windows Xp system, it then asked me to reboot. After the reboot i was no longer able to remotely connect to this machine. So lucky this was just a personal system and i was able to check it physically when i got home that night.

The system was sitting on the welcome screen and after logging in it was clear the system had a successful reboot as I had told it to do. Fair enough. As it loaded I noticed it took significantly longer to login than normal, as everything continued to load i noticed StopZilla was the last thing to load before the system was usable. It had two different interface pieces a pop up window blacklist and the main program itself. It started automatically scan which was lame because i hadn't told it to do anything yet.

The system then popped a tooltip warning on the bottom tool bar saying it failed to connect to any of my network drives that were set to mount at startup. Intersting as i knew the ubuntu server was still alive that these shares were mounted from. I opened firefox try to surf, dead. Opened IE, dead. I went to the command prompt, tried and nslookup, failed. Tried to ping one of googles ip's, failed. I could release and renew my up fine.

I then opened up StopZilla and looked through the logs and a couple separate times it had touched the winsock file. I didn't copy the log output unfortunately because i instantly enraged and shut the program down, silly emotions. Anyways simply shutting the program down didn't fix matters, nor did uninstalling it.

I then decided to reset winsock and tcp/ip. 

 
C:>netsh int ip reset reset.txt
C:>netsh winsock reset catalogue

Just had to reboot and all was well. So if your lucky enough to see this before installing it for some reason, DO NOT INSTALL StopZilla. I have had actual malicious spyware on a system that did not leave me as dead in the water as this program did. If you happen to not be a technically savy person that would have been a trip to a computer technician to get it fixed.





February 2nd, 2008

Sadly due to chode bag spammers and linking bots i had to disable anonymous editing, it was expected but i wanted to see how long it would take them to find this site. If you want to contribute let me know. Die spammers, especially you, tibettravel.

Retrieved from "http://www.sysadminwiki.net/wiki/index.php?title=SysAdminWiki:Community_Portal"
Personal tools
Advertisement