does anybody know why this ware keeps on appearing?

Discussion in 'other anti-malware software' started by binqker, Jun 13, 2004.

Thread Status:
Not open for further replies.
  1. binqker

    binqker Registered Member

    Joined:
    Jun 13, 2004
    Posts:
    3
  2. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
  3. Rodehard

    Rodehard Registered Member

    Joined:
    Feb 20, 2004
    Posts:
    90
    The first one looks like script sentry or something like it. Drove me nuts till I figured it out. Its intercepting scripts befor the shell gets them. Adaware thinks its a possible virus. The DSO exploit looks familure but I cant quite bring it up. Anyway, hope this helps a little.
     
  4. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,877
    Location:
    New England
    Actually, if you expand that first item (click on it to see the details) you can see if it is just the file association for .REG files as Rodehard mentions. If you use ScriptSentry or any number of other script checking and other privacy tools, you'll see messages like that. I have that here because I change my association on REG files to prevent against accidentally running one. If you are using such a tool, then it is correct to ignore that warning.

    The DSO Exploit can't currently be fixed by Spybot. It's just a simple bug in the new 1.3 Spybot release. It is explained in more detail than you'll probably want to read over in this thread at Spybot's official forum:

    http://forums.net-integration.net/index.php?showtopic=15308

    The long and the short of it is that if you are patched from Microsoft Windows Update, you can just ignore the DSO Exploit warnings. Many people have been getting overly concerned about that for no good reason. It is not a sign that you are infected, it's just a simple IE setting that Spybot handles incorrectly.

    However, the fact that you are getting unknown, unexplained popups is a problem! You should follow the advice above, and post a HijackThis log in the log review forum section. This thread explains how to post a log there:

    https://www.wilderssecurity.com/showthread.php?t=15913
     
  5. Mua-Kell

    Mua-Kell Registered Member

    Joined:
    Jun 30, 2003
    Posts:
    54
    Location:
    Vancouver WA USA
    Question answered w/o bugging admins.DSO exploit is just a Spybot false positive hit...cool!
     
Thread Status:
Not open for further replies.