netquik
28-06-2004, 14:35
C'è stato un aggiornamento di versione per CWShredder ma si leggono anche brutte notizie sul sito dell'autore
June 28, 2004:
Alright, this will be my last update for a while. I have a lot of things going on that are not spyware-related in the next few months and frankly I find these more important than the spyware-related issues. I'm sorry if that offends you, but I simply don't have the time to do both at the same time. I hope you'll understand.
July 1 2004, I will be graduating from the University of Utrecht and receive my Masters Degree in Science (chemistry, specifically).
September 1 2004, I will start a second study at the same university. I'm not sure what the English name for this study is (in Dutch it's Informatiekunde) but it's in the Computer Sciences field.
Right now, my email inbox is overflowing with over 2700 emails which I can't possibly answer all. These 2700 are two-thirds of about 4000, the remaining one-third being spam and email viruses which I've already deleted. (For god's sake people, get some decent antivirus protection, that's nearly 1300 emails from Windows systems infected with email spewing trojans.)
I will not be able to respond to your email anytime soon! Here are my answers to the majority of emails I've gotten so far:
Q. Can you look at my HijackThis/StartupList/CWShredder log?
A. No, pick a link from the list of forums that can help you interpret your log and ask for help there.
Q. CWShredder isn't fixing my problem!
A. While it's been easy and even fun keeping CWShredder up to date, the recent variants are a living hell. The people who wrote the latest variants of the trojan surpass the older variants by far.
- Resident DLLs from the about:blank, res://xxxx.dll or invisible variants cannot be removed by CWShredder or HijackThis.
- Variants like f0r0r that are protected by Hacker Defender cannot be removed by CWShredder or HijackThis.
Q. When will CWShredder be updated again?
A. It won't be again, probably. I have a few bugs to fix, but after that there's not much left to do - I simply do not have the tools to remove the latest variants, they are too agressive or complicated to allow automated removal by CWShredder.
Q. I would like to mirror one or more of your programs on my website.
A. You have my express permission to mirror any of my programs, as long as they are not altered and offered as freeware.
Q. I would like to distribute one or more of your programs with a magazine, or on a compilation CD.
A. You have my express permission to distribute any of my programs, as long as they are not altered and offered as freeware. If you wish to distribute CWShredder or HijackThis, please include a note urging the user to check for updates first. If you wish to distribute HijackThis, please also include a note to copy the executable to the harddisk first to allow for proper backups to be made.
Q. When I run HijackThis, I'm getting an error mentioning 'modBackup'.
A. When HijackThis fails to create or restore a backup, it's because one of the files it attempts to move/overwrite/delete is locked, which means it's running. Try repeating the fix from Windows in Safe Mode.
Q. When I run HijackThis, I'm getting an error mentioning 'modMain_LoadSettings'.
A. This is an error specific to Asian Windows systems (Korean, Chinese, Japanese). Version 1.98 of HijackThis should fix this error, which is in beta right now and will be ready soon. (Yes, it's been in beta for a heck of a long time, but this last bug is hard to work out.)
Q. I can't reach SpywareInfo, or I can't update CWShredder/HijackThis from the internal updater!
A. SpywareInfo has been down shortly due to another Distributed Denial of Service (DDoS) attack. It's up right now. Should you experience the same problem again sometime, be patient. The webhost hosting SpywareInfo is very good at defending us against attacks, but it's not free. Any support will be greatly appreciated!
Also, CWShredder attempts to get update information from Merijn.org (which is dead right now due to prolonged DDoS attacks), and attmpts to get the same update information from SpywareInfo when the first attempt fails. You might have to wait 30 seconds for the first check to timeout.
Lastly, some trojans block your computer from contacting the SpywareInfo website. Try contacting the site from a different, non-infected computer and transfer software between the two computers with a CD, floppy disk or USB memory stick.
June 28, 2004:
Alright, this will be my last update for a while. I have a lot of things going on that are not spyware-related in the next few months and frankly I find these more important than the spyware-related issues. I'm sorry if that offends you, but I simply don't have the time to do both at the same time. I hope you'll understand.
July 1 2004, I will be graduating from the University of Utrecht and receive my Masters Degree in Science (chemistry, specifically).
September 1 2004, I will start a second study at the same university. I'm not sure what the English name for this study is (in Dutch it's Informatiekunde) but it's in the Computer Sciences field.
Right now, my email inbox is overflowing with over 2700 emails which I can't possibly answer all. These 2700 are two-thirds of about 4000, the remaining one-third being spam and email viruses which I've already deleted. (For god's sake people, get some decent antivirus protection, that's nearly 1300 emails from Windows systems infected with email spewing trojans.)
I will not be able to respond to your email anytime soon! Here are my answers to the majority of emails I've gotten so far:
Q. Can you look at my HijackThis/StartupList/CWShredder log?
A. No, pick a link from the list of forums that can help you interpret your log and ask for help there.
Q. CWShredder isn't fixing my problem!
A. While it's been easy and even fun keeping CWShredder up to date, the recent variants are a living hell. The people who wrote the latest variants of the trojan surpass the older variants by far.
- Resident DLLs from the about:blank, res://xxxx.dll or invisible variants cannot be removed by CWShredder or HijackThis.
- Variants like f0r0r that are protected by Hacker Defender cannot be removed by CWShredder or HijackThis.
Q. When will CWShredder be updated again?
A. It won't be again, probably. I have a few bugs to fix, but after that there's not much left to do - I simply do not have the tools to remove the latest variants, they are too agressive or complicated to allow automated removal by CWShredder.
Q. I would like to mirror one or more of your programs on my website.
A. You have my express permission to mirror any of my programs, as long as they are not altered and offered as freeware.
Q. I would like to distribute one or more of your programs with a magazine, or on a compilation CD.
A. You have my express permission to distribute any of my programs, as long as they are not altered and offered as freeware. If you wish to distribute CWShredder or HijackThis, please include a note urging the user to check for updates first. If you wish to distribute HijackThis, please also include a note to copy the executable to the harddisk first to allow for proper backups to be made.
Q. When I run HijackThis, I'm getting an error mentioning 'modBackup'.
A. When HijackThis fails to create or restore a backup, it's because one of the files it attempts to move/overwrite/delete is locked, which means it's running. Try repeating the fix from Windows in Safe Mode.
Q. When I run HijackThis, I'm getting an error mentioning 'modMain_LoadSettings'.
A. This is an error specific to Asian Windows systems (Korean, Chinese, Japanese). Version 1.98 of HijackThis should fix this error, which is in beta right now and will be ready soon. (Yes, it's been in beta for a heck of a long time, but this last bug is hard to work out.)
Q. I can't reach SpywareInfo, or I can't update CWShredder/HijackThis from the internal updater!
A. SpywareInfo has been down shortly due to another Distributed Denial of Service (DDoS) attack. It's up right now. Should you experience the same problem again sometime, be patient. The webhost hosting SpywareInfo is very good at defending us against attacks, but it's not free. Any support will be greatly appreciated!
Also, CWShredder attempts to get update information from Merijn.org (which is dead right now due to prolonged DDoS attacks), and attmpts to get the same update information from SpywareInfo when the first attempt fails. You might have to wait 30 seconds for the first check to timeout.
Lastly, some trojans block your computer from contacting the SpywareInfo website. Try contacting the site from a different, non-infected computer and transfer software between the two computers with a CD, floppy disk or USB memory stick.