grill Posted September 2, 2005 Posted September 2, 2005 in the 'making an unattended windows xp cd' section of this site, in the advanced section, where you create your own boot up screen (to replace the one windows has) it says to use a program called "boot editor". SPYWARE!!!!!!!!!!!!!!!!!!!!!!!this program creates a kernel .exe you put in your system32 folder. then you have windows call this kernel at bootup instead of the one it normally does. i create a kernel and named it 'singlekernel.exe' as soon as this .exe ran i noticed my internet connection was hijacked. i can tell cause i have 56k and lots of weird traffic kept going out. i checked netstat -n and a long list of weird connections were there. i know it was this program that did it cause i reformated with my original windows cd and the spyware/trojan was gone. but as soon i ran this kernel .exe the trojan came back. it doesn't show up in scanners but i know it was this program that did it.just a heads up.
Alanoll Posted September 2, 2005 Posted September 2, 2005 in the 'making an unattended windows xp cd' section of this site, in the advanced section, where you create your own boot up screen (to replace the one windows has) it says to use a program called "boot editor". SPYWARE!!!!!!!!!!!!!!!!!!!!!!!this program creates a kernel .exe you put in your system32 folder. then you have windows call this kernel at bootup instead of the one it normally does. i create a kernel and named it 'singlekernel.exe' as soon as this .exe ran i noticed my internet connection was hijacked. i can tell cause i have 56k and lots of weird traffic kept going out. i checked netstat -n and a long list of weird connections were there. i know it was this program that did it cause i reformated with my original windows cd and the spyware/trojan was gone. but as soon i ran this kernel .exe the trojan came back. it doesn't show up in scanners but i know it was this program that did it.just a heads up.<{POST_SNAPBACK}>Just a heads up....YOU'RE WRONG!Plain and simple. I put the file on the server, I've used it since back in the day. I've have conversations with the creator of the application. There is NO spyware/trojan/adware/virus in the BootEditor executable or in the downloaded package.Go figure that upon reformatting your computer, the trojan that you had causing it was gone.You can check the kernel yourself, bit by bit to verify what's altered and what's not. The only things that are altered are the image resources and the pallete address. You can verify the BMP file was written correctly simply by opening up the original file and comparing those sections.
Recommended Posts