Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

evil adware..crappy tools

  • 16-06-2005 10:11pm
    #1
    Running Bing
    Registered Users, Registered Users 2 Posts: 3,841 ✭✭✭


    Okay I dont know where else to go so maybe someone here can help. I recently got infected with adware (well not me my computer). Anyway I downloaded ad-aware,spybot,spysweeper,spyware doctor and microsoft antispyware. I've ran scans with all of them (many times). Heres the problem every time I do a a scan and then remove the evil files they dont go away. For instance I run a scan remove the items found then immediately after run another scan and the same things come up again :mad: This happens with all the mentioned programs.


    My second question is what is the purpose of adware? who the hell is going to buy a product thats advertised using adware? Thanks any help much appreciated.


Comments

  • #2
    Mac daddy
    Registered Users, Registered Users 2 Posts: 2,942 ✭✭✭Mac daddy


    if you read the charter you will know were to post - this forum is discussions about exploits.

    run adaware, spybot IN SAFEMODE!!, post the hijack this log file


  • #3
    conor-mr2
    Registered Users, Registered Users 2 Posts: 655 ✭✭✭conor-mr2


    Hi Babybing,

    There are some threats out there that the current crop of antispyware tools cannot fix.
    Popular ones Im aware of are Look2me, Memorymeter and Istbar to name a few.

    The threats may employ rootkit technology and other evasion means.

    For example elitebar is a threat that drops a few files on the computer. One of the files actually hides anything on your computer that contains the word elite from Explorer and the process list. So elitebar.exe, elite12345.dll would be hidden.

    Also some other threats may actually have 2 or 3 files "watching" each other and if you try to delete one the others will know and recreate that file again, in some cases, instantly. In these cases one or two of the files may be injected into the Explorer.exe process and as such the baddies out there know that most of the time you are not going to kill the Explorer.exe process.(ctrl-alt-del-->task manager-->highlight the explorer.exe and click kill process, explorer.exe restarts)
    Unfortunatley these files may reinject themselves back into Explorer.exe when it restatrs if you are not quick enough at deleting them.

    Sorry for the potentially confusing explanation. Its Sunday evening!!

    Anyway if you do know the names of the files try booting into a DOS mode and deleting them through DOS. Or as Mac Daddy suggests, HiJack this.

    HTH


Advertisement