Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Full-Disclosure] Cool Web Search

from [Todd Towles] Network Security [Permanent Link]
Subject: RE: [Full-Disclosure] Cool Web Search
Date: Thu, 29 Jul 2004 19:39:02 -0500 
The creator of CWShredder claims the newest versions of CWS are very
stealthy and I believe he as stopped updating the program. Therefore
CWShredder isn't the best for the newest. But as far as I understood things
(from other mailing list and forum post), HiJackThis wasn't removing them
100% either.

Todd

-----Original Message-----
From: full-disclosure-admin@lists.netsys.com
[mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of Richard
Golodner
Sent: Thursday, July 29, 2004 5:51 PM
To: 'Gregh'; Disclosure Full
Subject: RE: [Full-Disclosure] Cool Web Search

Try CWShredder too!

-----Original Message-----
From: Gregh [mailto:chows@ozemail.com.au]
Sent: Thursday, July 29, 2004 5:46 PM
To: Disclosure Full
Subject: [Full-Disclosure] Cool Web Search


JFYI of anyone interested:

On Nanog a short time back, most of the list there decided that CWS couldn't
easily be removed. I first stumbled across it maybe around the start of July
and have had many instances of it, since, in many places.

Adaware does bugger-all to remove it. Spybot recognised it, got rid of it
and upon reboot it was back. It was never quite clear from a simple
inspection, what was putting it back.

When I first found it, I had also found "HiJackThis" and ran it. That prog
brought up the proper registry entries to enable me to correctly identify
CWS, remove the entries and delete files. It took some time the first time I
saw it but it takes about 10 mins (if that) to get rid of it, now. Nanog
disagreed and said it wasn't that easy. It simply WAS that easy. I just
happened to experience "dumb luck" and be one of the first (if not the
first) to easily get rid of it through HiJackThis.

So, for those of you who don't think Nanog is full of "Gods of Correctness",
if you are having probs with removal of CWS, get HiJackThis, let it scan and
then you will see, sticking out like a wart on your......nose :)........ the
entries you need to delete in order to properly rid that machine of CWS. It
wasn't hard using that prog.

Greg.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-Disclosure] Cool Web Search, JacK
Next by Date:  Re: [Full-Disclosure] Automated SSH login attempts?, Andrew Farmer
Previous by Thread:  Re: [Full-Disclosure] Cool Web Search, Gregh
Next by Thread:  Re: [Full-Disclosure] Cool Web Search, KF (lists)
Indexes:  [Date] [Thread] [Top] [All Lists]