Loadnew.exe?

Hallo,

nee, Windowsprogramme sind das keine.

Schau mal hier und laß die Programme der Reihenfolge nach durchlaufen.
http://www.computerhilfen.de/magazin_spyware.php3
Immer nach der Installation noch die neuesten Updates holen.

Danke
Hat mir weiter geholfen. Es ist ja echt erschreckend, wieviel Spyware usw. sich auf dem PC tummeln können...

Gruß,
Heiko

Oh the very very terrible and laughtable loadnew.exe
It’s easy to get a good laught when you se all the advices from the very helpfull “advicegurus” around. If you have a little problem with some strange new files on your HD then they order you to download a lot of different programs to fix the problem. And if it doesnt help you have to upload different dumps from your computer. But it’s very seldom they use the dump to anything relevant.
Do you think they know what they are doing? 

Lets take an example. I got the laughtable little program loadnew.exe into my computer by visiting either racesimulations.com/ or findthelimit.com/. I just think the program is a dialer, spyware or whatever. I don’t care much. 
OK, because I check regularly my C: drive with the simple program W.O.R.C from www.anbra.de (which you don’t have to update every 10 sec, because you dont have to upd it at all!) and saw quickly that something new had entered my computer.

W.O.R.C. Systemchangelog
01-08-05 17:44:47

Filesystem: New Files
--------------------------------------------------
C:\WINDOWS\hosts
C:\WINDOWS\kl.exe
C:\WINDOWS\loadnew.exe
C:\WINDOWS\ms1.exe
C:\WINDOWS\ms2.exe
C:\WINDOWS\ms3.exe
C:\WINDOWS\ms4.exe
C:\WINDOWS\SYSTEM\newdial.exe
C:\WINDOWS\SYSTEM\paydial.exe
C:\WINDOWS\SYSTEM\paytime.exe
C:\WINDOWS\SYSTEM\tibs.exe
C:\WINDOWS\tool1.exe
C:\WINDOWS\tool2.exe
C:\WINDOWS\tool3.exe
C:\WINDOWS\uniq

This is what Loadnew.exe save on your computer. And it is ofcourse very easy to completely get rid of the program. You just have to delete the files.
That’s all folks.
Regards BrunoB

Hallo!

@BRUNOB: Seams to be a quit interesting thing this w.o.r.c. ... I'll try it later...

BUT it's not very helpful and nice to call the people who want to help "advice- guru's" in such a bad way!

Furthermore: What about the w.o.r.c tool when a virus/ malware changes an existing file??? Does the tool recognizes this???

Greetings

Marc

1st. Oh I see. It is not allowed to be a bit critical about selfpronounced experts/gurus?

2nd. The only thing WORC does is to tell you which new files is on your HD and which of the old files is changed.
Nothing more. Nothing less.
But you can set program up to do the same with new/changed HKEYS in registrys HKLM.
So nothing pretty fancy about that.

Regards
BrunoB

Hi!

@BRUNOB: Critics are okay... it depends on the way...
- thnx for the program
- so long. And thanx for all the fish ;-)

Marc

Hier sind keine selbsternannten Gurus,sondern nur Leute,die versuchen,sich gegenseitig zu helfen.Ist doch logisch,das nicht sofort der 100%ige Treffer kommt.
Allerdings haben wir jetzt wohl wieder einen "Klugschicer" mehr....

@YAZAKI: jup, hat den Anschein... (Die Ärzte: Besserwisser-Boy)

Instead of using your time with all this rather misplaced remarks maybe you should check the following questions:
1. Has any (ANY) of the experts  rewealed how to get rid of this program?
2. Have they adviced for anything else (up- or download etc). Ie irrelevant stuff.

Have a nice time deleting the mentioned files 
BrunoB

EDIT:
By the way. You can play with loadnew.exe for free by entering:
http://www.findthelimit.com/phpbb2/
It just overloads IE and by that gets into the computer. And then it tries to phone home 

If you again have got the laughtable but irritating amateur attack from LoadNew.exe by visiting f.ex www.findthelimit.com/  then you just have to delete the following files.
Nothing more nothing less.
The following adresses are the sites where Loadnew.exe and pxhyyivo.exe are trying to phonehome and download more nasties from.
I would guess that the buttneck who has made this amateur-worm has something to do with the adresses.
Using the simple program W.O.R.C. makes the search for nasties very easy, by the way.
BrunoB

--------------------------------------------------
W.O.R.C. Systemänderungsbericht
Erstellt: 26-03-06 14:10:56

Dateisystem: Hinzugekommene Adress
--------------------------------------------------
http://traffbest.biz/dl/adv402.php
http://traffbest.biz/dl/bag.htm
http://traffbest.biz/dl/cheat.php?adv=adv402
http://traffbest.biz/dl/fillmemadv402.htm

Dateisystem: Hinzugekommene Dateien
--------------------------------------------------

C:\WINDOWS\country.exe
C:\WINDOWS\hosts
C:\WINDOWS\kl1.exe
C:\WINDOWS\loadnew.exe
C:\WINDOWS\ms1.exe
C:\WINDOWS\pxhyyiv0.exe
C:\WINDOWS\secure32.html
C:\WINDOWS\SYSTEM\paytime.exe
C:\WINDOWS\tool1.exe
C:\WINDOWS\tool2.exe
C:\WINDOWS\tool3.exe
C:\WINDOWS\tool4.exe
C:\WINDOWS\tool5.exe
C:\WINDOWS\toolbar.exe
C:\WINDOWS\uniq
--------------------------------------------------
W.O.R.C. Systemänderungsbericht Ende