Loader.exe = pain in the @$$
Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Loader.exe = pain in the @$$

  1. #1
    Senior Member
    Join Date
    Dec 2003
    Location
    LA, CA
    Posts
    292

    Loader.exe = pain in the @$$

    A friend of mine just bought a computer and within the first week of getting it his firewall detected an adware program called loader.exe trying to access the internet. When i attempted to delete the program everything except a .dll was removed, i made sure it wasn't read only and i checked the active processes to make sure nothing was using it but it still refuses to be deleted. Any suggestions? He is running windows xp home edition
    A mind full of questions has no room for answers

  2. #2
    Senior Member
    Join Date
    Jun 2003
    Posts
    119
    I used to have that same problem. I cant recall what I did to get rid of it. But try removing the .dll onto the desktop. Then delete the folder. Then change the name of the .dll to something like"sdghdsgf". Then empty the recycling bin. restart your computer then put the new name .dll into the recycling bin. Hopefully this will work, it works sometime for me but sometimes it dosent. And if that doesnt work you might have to run a virus scan its probablly in the system 32 folder or somewhere in windows. Hopefully you will get rid of your problem. Im not sure if you will have to change things in regedit im not that advanced yet.
    [glowpurple]The inside secrets of big buisness are being leaked onto the Net - (who\'s fault is that ) - Me[/glowpurple] http://www.AntiOnline.com/sig.php?imageid=419

  3. #3
    The Doctor Und3ertak3r's Avatar
    Join Date
    Apr 2002
    Posts
    2,744
    did you try deleting the file with WinXP in "safe mode"?


    most manual virus removal, oh and all removal tools (that I have used) are used in safe mode..any file that is in use by windows is protected and therfor you are unable to delete/move/rename

    cheers

    <Edit> PErsonaly for parasites/hijackers/adware/spyware I recommend the use of Spybot S&D -with the latest updates shud have 11k+ items to search for..
    "Consumer technology now exceeds the average persons ability to comprehend how to use it..give up hope of them being able to understand how it works." - Me http://www.cybercrypt.co.nr

  4. #4
    Senior Member
    Join Date
    Aug 2003
    Posts
    1,019
    Greetings hiddeninclouds. I can appreciate your dilemma, and I'd wager that someone here can help you. I would ask you to follow an informal "procedure" so that we may help, and not reinforce our cynicism when you appear not to listen.

    I'm assuming that you have tried to delete the offending file, and it isn't playing on your terms. A couple things I would recommend...try booting in safe mode, and see if you can delete the offending file....or as blue_wolf suggested, try renaming the file...then try booting in safe mode and renaming the file... if that fails, do a registry search for the .dll that is being called and delete the key (backup the registry for obvious purposes)...usually once you delete the key and reboot, then you can delete the .dll.

    As a favor to all, please let us know what you tried, what the results are, and any error messages that may be generated. If we know what didn't work, we can suggest other methods. If we do know what works, other members with the same problem will benifit.

  5. #5
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    New Jersey
    Posts
    718
    Hidden, for future reference you can check this site out http://www.doxdesk.com/parasite
    It's a database of known spyware/adware and full descriptions and removal methods.
    Along with Spybot, this should help you keep your computer clean.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  6. #6
    Senior Member
    Join Date
    Dec 2001
    Posts
    319
    Just wondering, are they running Win2k or XP? If so, try checking your services to see if something in there might be using it.

  7. #7
    Have you tried removing it from a command line? The lower you get, the more control you have.

  8. #8
    Senior Member
    Join Date
    Dec 2001
    Posts
    134
    Sounds like the DLL has been registered so windows will keep you from deleting it, there are a couple ways to get rid of it if this is the case. Without rebooting, if the file isn't actually being used you should be able to use regsvr32 with the /u option on the file to unregister it (regsvr32 /u C:\path\file.dll) and then you'll be able to delete it. If you don't want to mess with that or it didn't work then try safe mode and delete it there. Also if this loader.exe is part of something that Spybot would recognize then let it detect it and it will give you the option of running before anything can load the next time you reboot, then it will find it again and can delete it easily.
    Reality is the one who has it wrong, not you

  9. #9
    Originally posted here by ttau
    Have you tried removing it from a command line? The lower you get, the more control you have.
    While I understand where you may be coming from, this is not entierly true, especially for the windows operating system. A commandline, while cryptic, is not always as powerful as the GUI. Like in windows, the GUI has much more control and fine tuning than the commandline could ever acheive. While it is not good nor bad, it simply *is*.

    So never be lead into thinking commandline is more powerful in every given situation, as commandline != low level control on every single OS.

  10. #10
    Yes, that's my CC number! 576869746568617's Avatar
    Join Date
    Dec 2003
    Location
    Earth
    Posts
    397
    Pooh has an excellent point, as some functions, while not entirely impossible with the command line, are somewhat archaic.

    Take adding and deleting user accounts. You can easily delete unwanted accounts from the command line with "net user %username% /delete" (Windows XP Home users take note), but try adding an account from the command line and assigning it to the proper group with the proper permissions and the proper privelage, and you'll soon be thankful for your GUI.

    On the flip side, you should also make sure that you are comfortable with command line procedures, as Windows will one day crash, and you may find yourself at the "recovery console" without an ERD.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides