Thanks for response. Please excuse my vast lack of knowledge. I live in cottage next to landlord- he has master account (Roadrunner cable). Dont know details of setup (I get no bill!!) but must be some kind of hub or router and its not pirate. Will find out more.
Other than watching ZA icon where would I look for network activity? (problem did occur shortly after installing SETI, which is remaining off for now).
Here is notice I received
Dear Customer:
Road Runner has received a complaint of email spamming apparently originating from your computer. The IP address %%%%%%%%%was assigned to your computer at the date and time indicated in the email headers. Please see a copy of the email below. If you are not aware of this occurring, you may have a virus or have an open relay/proxy. Please take the necessary step to eradicate the virus or close the open relay.
Return-path: <biggs_vk@cdta.org.uk>
Envelope-to: gerd@holzmacher.de
Delivery-date: Tue, 03 Aug 2004 14:52:38 +0200
Received: from [219.159.8.126] (helo=3Dhutchinson.fr)
by mxng08.kundenserver.de with smtp (Exim 3.35 #1)
id 1BrymR-0007c7-00
for gerd@holzmacher.de; Tue, 03 Aug 2004 14:52:38 +0200
Received: from %%%%%%%%%% by smtp.cdta.org.uk;
Tue, 03 Aug 2004 12:50:30 +0000
Message-ID: <a2e501c47958$0e22afeb$b9c2f4c3@hutchinson.fr>
From: "Liza Biggs" <biggs_vk@cdta.org.uk>
To: gerd@holzmacher.de
Subject: We give you $200 bonus at Casino Zeal!
Date: Tue, 03 Aug 2004 20:50:04 +0800
STEPS TO REMOVE/ERADICATE OPEN PROXY/RELAY OR TROJAN HORSES:
Please ensure to backup all critical information before proceeding.
1) Run through the critical updates at http://windowsupdate.microsoft.com. You may need to run the update several times to ensure that all updates have been applied.
2) Update your antivirus program and run a scan on your computer. Several online ones are listed below.
3) Install some type of firewall program for additional protection from unauthorized access. See below for a portion of those available.
4) Utilization of P2P programs such as Kazaa, Morpheus or the like creates a vulnerable environment for a computer to get infected with a virus.
It is advisable to stop the use of such programs. These programs also render antivirus and firewalls vulnerable.
5) Search your computer for rogue programs that were not installed by you and remove them.
6) Reply back to this email with an update confirming the steps taken and removal of any viruses or open proxy/relay software.
To protect your computer and its files and to stop the unintentional distribution of viruses, we strongly recommend that you purchase, update and run a good commercial virus detection/elimination program. Also, please be sure that your file sharing and printer sharing options are turned off whenever connected to the Internet. It is also recommended to install some type of firewall program for additional protection.
If further complaints of this nature are received, we may be forced to temporarily disconnect your Road Runner service to stem the spread of these viruses. Your prompt attention to this matter is appreciated and will most likely prevent the need to interrupt your service.
Anti-Virus Software
Most anti-virus software will detect programs that may allow remote access to your computer (Trojans), or perform activities or functions that may corrupt data on your computer. If you decide to use an anti-virus program, remember to keep it updated so you will be protected from new viruses. Here are just a few of the anti virus programs available.
Free Antivirus and Firewall from Road Runner
http://www.rr.com/flash/index.cfm?startView=DOWNLOAD (EZ Armor). Remove any existing antivirus software before downloading EZ Armor. If you need any assistance in installing EZ Armor, please contact our National Help Desk at (800) 228-6604.
Other Antivirus Options:
http://housecall.antivirus.com
http://www3.ca.com/virusinfo/virusscan.aspx
http://us.mcafee.com/root/mfs/default.asp
http://www.grisoft.com/us/us_dwnl_free.php
http://security.symantec.com/ssc/home.asp?j=1&langid=ie&venid=sym&plfid=20&pkj=RWGUPJUIYCZRWEJGSSK
Other Trojan Detection Applications:
http://www.moosoft.com/thecleaner (The Cleaner - Trojan Cleaner)
http://download.com.com/3000-2144-10194058.html?tag=lst-0-1 (Spybot)
http://www.trojanscan.com/trojanscan/ (GFi)
Firewall Applications:
http://zonelabs.com (Firewall Products)
http://download.com.com/3000-2092-10184369.html?tag=lst-0-1 (Sygate)
How to Enable the XP firewall: http://www.microsoft.com/windowsxp/pro/using/itpro/securing/enableicf.asp
In addition, we recommend that you keep all software, especially Internet-related software, up to date and fully patched to assist in preventing unauthorized access and exploits. You can find more information on Windows updated by visiting the following web site:
http://windowsupdate.microsoft.com/
Time Warner Cable and Road Runner do not endorse or support any of these products. They are listed for your reference and represent a small portion of those commercially available.
Thank You & Aloha,
Oceanic Internet Services Hawaii Security Support
securitysupport@hawaii.rr.com
(808) 625-8426
__________ NOD32 1.833 (20040803) Information __________
This message was checked by NOD32 antivirus system.
part000.txt - is OK
part001.htm - is OK
http://www.nod32.com
I did all my scans and replied. Only action I took was disable file and printer sharing which I'd neglected after recent reformat. Recieved acknowlege ment e-mail. All seemed authentic and consistent with previous communications with them.
Sorry for length of this and thanks again for your attention.