Posted by vanquish
I keep getting a lot of spyware, popups and adware whilst on Esato. I dont understand - is this someone messing with Esato or what. If laffen runs this all single handedly, i am not surprised that there may be a bit of it.
Shame nout can be done. Laffen is already so busy doing a great job, i dont know what can be done. Ah well. If i ever find the person that keeps making these blasted "3,000 free smileys" adverts, i will personally beat his face to death with a base ball bat (if im in a good mood, it might only be wooden
)
.
Posted by masseur
I have never seen anything like that on Esato and I run both adaware and spybot
I'd suggest you are infected with something which coincidentally is poping stuff up at the same time you are browsing esato
run both these tools I have mentioned and make sure your pc is totally clean then try browsing esato again
Posted by k4m!k4ze
I think you may have some spyware or adware installed on your system and it absolutely has nothing to do with Esato cuz i've never experienced anything like u said.
Posted by vanquish
Cheers. I run it constantly. hmmmmm
Posted by Lynx69
| Quote: |
|
Try running a spyware checker whilst your pc is in safe mode.
Posted by govigov
Never encountered it.
Posted by vineet_d
Me too, never encountered such popups. I use firefox web browser, popups are blocked by default. :-)
Posted by martin.l
Try checking this site for some good spyware checkers
http://www.antivirus-online.de/english/index.php
Posted by Jim
Screenshots and log of the scans could be helpfull
Posted by vanquish
can't be bothered.
there is a very easy way to solve this.
KILL ALL THE BASTARDS THAT GET SOME KIND OF SICK BUZZ OUT OF MAKING VIRUSES, SPYWARE AND ADWARE!!!!!!
or rather, run spybot
Posted by blayv
I had similar problem, but no virus/spyware or other prog could fix it. So I reinstalled windows. It's probably one of those which installs themselves to your pc. If you get rid of it please post me how? Blayv@yahoo.co.uk
Posted by tranquil
I run SpyBot with regular intevalls and have never come across any.
Posted by kimcheeboi
Tsk tsk gotta stop visiting porno sites ;-)
Posted by djpowelly
@kim lmao!
@VQ, hav u got msn+, or some p2p s/w, thats bad 4 spware!
Posted by blayv
@kimHow do you know there are spyware at porn sites? :-)
Posted by kimcheeboi
Because the one i go to assures me that unlike other sites, they have on spyware ;-).
Posted by parsnip
Hello
Posted by Blexcroid
A good firewall also helps. Also, increase your security level, that may help cut the rubbish pop-ups too.
Posted by Krubach
I once had a nasty spyware soft (also popups about smileys appeared). No spybot, adaware or xoftspy could get rid of it. Had to spot and clean the DLL by hand.
Posted by *Jojo*
This occurence happened to me before . . . until I knew that I got it from what @kimcheeboi has just said ! 3 months hence, I installed a Killer Pop-Up application/software, just to be sure here . . .
Posted by Krubach
I'm sure that's the only thing you can catch, sex related.
Just kiddin' Jojo.
Posted by *Jojo*
| Quote: |
|
@krubach - Hmmmm . . . let me see here . . . Nope, I managed to get one of this (last year) as well, at Esato.com at that !
Posted by vanquish
| Quote: |
|
damn right
i wish angelina jolie didnt cost me so much.....
Posted by boto43
| Quote: |
|
Posted by DeLa
Some spyware pops up things related to the website you are visiting. It is very confusing because it looks like it comes from the visited site.
Scary.
Not only porn sites have spyware, though the risk is higher than on any other kind of site.
Posted by kimcheeboi
The best way to eliminate this kind of crap is to invest in a G5
A good thing to do (also works for viruses) is to open your task manager and look for the processes that you hve supposedly started. If you see something (usu not as obvious though) like "Bonzibuddy" or "Gator" you kind of know its spyware
You can then close the program and delete the file.
Worked at work when the network got infected with a trojan and when I had Gator on my PC.
Still, the #1 thing not to do is to visit those weird porn sites
This may be a little inappropriate but there ARE spyware-less sites out there and all i can say is to PM me
edit: Also some sites that contain spyware are game sites (like flash game, newgrounds etc); sites for emulators and ROMs; key generator/game copy sites; music download sites; and more.
_________________
I may be immature
I may be stupid
But I'm fun!
3 birds bagged V=
[ This Message was edited by: kimcheeboi on 2004-11-23 07:57 ]
Posted by vanquish
NICE!
Posted by fetzi
you can look also for processmanager, a very helpful programm that can - if you allow - replace task manager (but also runs alone) which shows you every process thread and the thread related programs.
not to forget that kazaa is one of the nastiest spyware-spreading pestilence in the wwww.. if you should use it..
Posted by methylated_spirit
I've noticed this too, i need to clean my system regularly, and it seems to be esato thats the cause, unfortunately
Posted by vanquish
yeah, it aint hard to do stuff with php bb forums, it even says in the FAQ on the phpbb websites. ah well, such is life!
Posted by EastCoastStar
its not bothering me really, but it really suprised me when i saw it, ya know?
the main one i saw was for Vonage
Posted by Cycovision
Well, at work (I'm a computer repair man) we use a program called 'Hijack this' to find out exactly what applications, BHO's and dll's (through rundll32.exe) get loaded up and executed at Windows startup.
I can safely say that my PC has shown no signs of spyware activity despite visiting Esato on a daily basis.
For anyone who's into hijack this, here's the log taken as I write this message:
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\GSICON.EXE
C:\WINDOWS\system32\dslagent.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\VIAudioi\SBADeck\ADeck.exe
C:\PROGRA~1\COMMON~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\MagicKey\MagicKey.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Sony Ericsson\Mobile\audevicemgr.exe
c:\PROGRA~1\INTUWA~1\Shared\MROUTE~1\MROUTE~2.EXE
C:\Program Files\MagicKey\OSD.EXE
C:\Program Files\MagicKey\MulMouse.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\CONNMN~1.EXE
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Common Files\AOL\aoltpspd.exe
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\CapMan.exe
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\ElogErr.exe
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\BROADC~1.EXE
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\SCRFS.exe
C:\PROGRA~1\SONYER~1\Mobile\AUFILE~1.EXE
C:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\Ecfmserv.exe
C:\PROGRA~1\COMMON~1\Nullsoft\ActiveX\AOLMed~1.exe
E:\Jay's Documents\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1
O4 - HKLM\..\Run: [XTNDConnect PC - ErPhn2] C:\PROGRA~1\COMMON~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: MagicKey.lnk = C:\Program Files\MagicKey\MagicKey.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Phone Connection Monitor.lnk = ?
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Posted by laffen
@EastCoastStar
You might have seen an ad for Vonage if you are located in the US. Members located in Europe, Asia or Africa will not see this advert.
Posted by Lembo
A quick way to check if internet explorer has spyware attached to it is to check the size.
Internet Explorer ver. 6 should be 91KB
Posted by OluYom
I am yet to run into any of these while browsing Esato.
Posted by marlonski
@Cycovision
So Hijack this will basically log all running applications so that someone like yourself can then remove the the cr*p or at least advise someone what to do ? it's the renaming files in regedit and all the other thangs you guys do that seem a little daunting
Do you know of any programs that'll actually sort this out by checking running applications, identifying and then removing them ? or is spybot and adaware sufficient ?
I run spybot, adaware, keep a copy of stinger (mcafee), cw shredder and run nortons.
i don't suffer from popups on here.
@vanquish not trying to tell ya ho to suck eggs mate, but have you run spybot in safe mode ? I don't think you can run adaware in safe mode (at least i haven't managed to yet).
If your running xp have you tried turning off the system restore which will delete garbage backed up and then running spybot etc ?
Posted by Cycovision
@marlonski
Yes, the top part of the log shows all currently running applications and services whilst the bottom part (which is more usefull) shows pretty much everything that gets loaded at startup via the registry. Not just apps, but .dll files, browser plugins etc. Hijack this lets you delete these items directly without having to hack the registry.
Basically, we use it to help us get rid of the stuff that Spybot, Adaware etc. miss. There's quite a lot of very nasty browser hijackers out there that bury themselves deep within windows, and recreate themsleves whenever you remove them using spyware removal apps. That's when we go renaming files and hacking the registry directly!
Most people will find that running a good antivirus app along with Adaware and Spybot search and destroy will do a good enough job, they certainly get rid of the most dangerous spyware components like dialers and keyloggers. Apps like Hijack this and Process Explorer come in usefull when all else fails
Posted by marlonski
@Cycovision.... thanks very much for clarifying that
Posted by Payalnik
Oh god, mates, why not use Firefox? I save a lot of time with all its tabs, ad blocker and no spyware
Posted by masseur
people experience other problems on esato with firefox such as the "new posts" feature not working and other cookie related issues
I'll stick with IE and NIS!
Posted by Payalnik
So bad... It must not be ff's bug, do Opera behave the same?
Anyway, I'll never go to IE or Opera. One is slow and not tabbed, the other is... well, shareware.
Posted by HyperiaBlue
I use 5 tools to keep my machine clean of spyware/adware/pop ups and virus', they are:
1) Norton Antivirus
2) Adaware SE Personal - spyware detection/removal
3) Spybot search and destroy - spyware detection/removal
4) Winpatrol to monitor registry changes.
5) Microsoft Antispyware
All these work together without taking up a huge chunk of resources.
So far i have had no trouble...maybe you guys should try this approach if you havent taken precautions.
Cheers!
Posted by masseur
I've been running that MS anti spyware since the day it was released and it has NEVER (not once) found anythig on my pc. I then run adaware and spybot and they both find a whole stack of stuff, so I'm not convinced about the MS product yet
Posted by Jools
The best way to avoid all this spyware, adware, viruses and trojans is to switch to an Apple Mac.
In 15 years of Mac use I personally have never had a single outbreak of any.
Last virus I suffered from was when I had an Amiga 500 back in the early 90's... I think it made the cursor go all funny if I remember rightly!
This isn't a "my computer is better than yours" post, just an option.
Posted by batesie
| Quote: |
|
Ive had the Vonage advert cover the esato logo a few times, and i'm in London UK!
Are you sure laffen?
Posted by HyperiaBlue
WEll MS Antispyware is still in BETA so its not perfect...
Posted by laffen
@batesie
Well. Both Esato and the banner hosting company are filetering the ads. The US IP database is not bullet prof causing the ads to be viewable for very few other visitors as well.
Posted by djkizlive
Seems quite strange to me that you guys are suffering Spyware/Adware issues with Esato.
I'm running a fairly unprotected PC, i have nothing installed on my PC at all. The only protection i have is the Windows Firewall on my LAN connection. I'm behind a router, but my computer's IP address is within a DMZ (De-Militised Zone - Unprotected).
I'm using IE6 and i dont get any popups at all, never have a problem. You just need to be careful what you download, and what sites you visit.
If you browse a lot of sites with popups then i suggest you use Firefox, it seems to handle it all very well.
I'm not sure if i'm just extremely lucky, but this Router seems to keep me very well protected, and i have a 'full' connection to the internet, as all connection attempts are forwarded to my machines IP address.
Perhaps it's something you could try. I find the software a waste of time, they don't detect half the stuff that gets on your system, you're much better off monitoring it yourself. Check Task Manager regularly, remember what things are normally running, and locate & remove dodgy files from your PC.
I've been running the same installation of Windows for well over a year now, with no protection, just windows firewall. Seems fine to me.
If you want more information about my configuration, feel free to PM me
-djkizlive
Posted by Cycovision
Yeah, I was thinking that pop-ups whilst surfing Esato must be coming from adware acquired elswhere. I would advise people to look at add / remove programs in control panel and task manager and search for things like GAIN, GMT, Bullseye network, 180search etc.
Bit of a plug, but I wrote a little article about spyware for my website: http://www.fastfixcomputers.co.uk/spyware.htm
It's aimed at beginners rather than seasoned computer geeks, so don't expect any in-depth technical discussion