Does anyone know what the file backweb-7288974.exe is ??
This file is trying to access the net but I've stopped it with my
firewall.
Thanks for your help.

Cheers.

"JustLookin" <(E-Mail Removed)> wrote in message
news(E-Mail Removed)...
> Does anyone know what the file backweb-7288974.exe is ??
> This file is trying to access the net but I've stopped it with my
> firewall.
> Thanks for your help.
>
> Cheers.

A quick Google shows it to be spyware. Download Spybot S+D or Ad-aware to
clean spyware from your system:

Ad-Aware:
http://www.lavasoft.de/software/adaware/
Spybot:
http://security.kolla.de/

Nicky

Thanks for the info everyone. I found out that it was installed by
several programs. Logitec (my webcam), Kodak (my digital cam) and
Media Player among them.
So it is very common and is installed without your knowing or consent.
Now if I delete the lot, and there is heaps of files related to
Backweb, I'm worried that it will affect the performance of my
computer. I'll just have to see what happens I spose :-(

On Tue, 15 Jul 2003 10:10:40 GMT, (E-Mail Removed) wrote:

>On Tue, 15 Jul 2003 17:56:25 +1000, JustLookin
><(E-Mail Removed)> wrote:
>
>>Does anyone know what the file backweb-7288974.exe is ??
>>This file is trying to access the net but I've stopped it with my
>>firewall.
>>Thanks for your help.
>
>BackWeb is included with the install disks of Win ME on my Hp
>Pavilion. I uninstalled it since it's loaded with spyware.
>
>Art
>http://www.epix.net/~artnpeg

In article <(E-Mail Removed)>, rogdon2003
@hotmail.com says...
> Does anyone know what the file backweb-7288974.exe is ??
> This file is trying to access the net but I've stopped it with my
> firewall.

Take a look @ <http://www.backweb.com>.

> Thanks for your help.
>

Your welcome.

--
Cheers-

Jeff Setaro
(E-Mail Removed)
http://people.mags.net/jasetaro/
PGP Key IDs DH/DSS: 0x5D41429D RSA: 0x599D2A99 New RSA: 0xA19EBD34

"FromTheRafters" <!(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
>
> "nicky" <(E-Mail Removed)> wrote in message
newsNPQa.12515$(E-Mail Removed)...
> > A quick Google shows it to be spyware. Download Spybot S+D or Ad-aware
to
> > clean spyware from your system:
>
> This is where a "quick search of google" fails you.
> The "Backweb" application has many legitimate uses.
> Removing it with Ad-Aware might just result in no longer
> having your AV definitions autoupdate. It is a legitimate
> autoupdating service which has also been abused by adware
> and spyware.

Would Ad-aware not recognise it as being a legit auto update file for his AV
(if thats what it turns out to be) rather than the spyware element tagged
onto other applications? I thought Ad-aware would only alert on spyware and
wouldn't alert on legit files.

Nicky

"nicky" <(E-Mail Removed)> wrote in message
news:LD_Qa.13311$(E-Mail Removed)...
>
> "FromTheRafters" <!(E-Mail Removed)> wrote in message
> news:(E-Mail Removed)...
> >
> > "nicky" <(E-Mail Removed)> wrote in message
> newsNPQa.12515$(E-Mail Removed)...
> > > A quick Google shows it to be spyware. Download Spybot S+D or Ad-aware
> to
> > > clean spyware from your system:
> >
> > This is where a "quick search of google" fails you.
> > The "Backweb" application has many legitimate uses.
> > Removing it with Ad-Aware might just result in no longer
> > having your AV definitions autoupdate. It is a legitimate
> > autoupdating service which has also been abused by adware
> > and spyware.
>
> Would Ad-aware not recognise it as being a legit auto update file for his
AV
> (if thats what it turns out to be) rather than the spyware element tagged
> onto other applications? I thought Ad-aware would only alert on spyware
and
> wouldn't alert on legit files.
>
> Nicky
>
>

Legitimate files *can* be (and are) used maliciously


--
/}
@###{ ]::::::::::ino-Soft Software::::::::::::>
\}
Live WebCam http://www.dino-soft.org/cam

"nicky" <(E-Mail Removed)> wrote in message news:LD_Qa.13311$(E-Mail Removed)...
>
> "FromTheRafters" <!(E-Mail Removed)> wrote in message
> news:(E-Mail Removed)...
> >
> > "nicky" <(E-Mail Removed)> wrote in message
> newsNPQa.12515$(E-Mail Removed)...
> > > A quick Google shows it to be spyware. Download Spybot S+D or Ad-aware
> to
> > > clean spyware from your system:
> >
> > This is where a "quick search of google" fails you.
> > The "Backweb" application has many legitimate uses.
> > Removing it with Ad-Aware might just result in no longer
> > having your AV definitions autoupdate. It is a legitimate
> > autoupdating service which has also been abused by adware
> > and spyware.
>
> Would Ad-aware not recognise it as being a legit auto update file for his AV
> (if thats what it turns out to be) rather than the spyware element tagged
> onto other applications? I thought Ad-aware would only alert on spyware and
> wouldn't alert on legit files.

One would hope so, but the mere presence of that application
trying to access the internet is not necessarily an indication of
plunderware. IIRC someone had Ad-Aware alert on one once
and asked about it here, and a registry search indicated it was
a legit (?) (printer related?) update application.

I would be interested to know if indeed Ad-Aware and Spybot
Search and Destroy were able to discriminate between legit and
non-legit use of this application.

"Sugien" <(E-Mail Removed)> wrote in message news:3E%Qa.122$(E-Mail Removed)...
>
> "nicky" <(E-Mail Removed)> wrote in message
> news:LD_Qa.13311$(E-Mail Removed)...
> >
> > "FromTheRafters" <!(E-Mail Removed)> wrote in message
> > news:(E-Mail Removed)...
> > >
> > > "nicky" <(E-Mail Removed)> wrote in message
> > newsNPQa.12515$(E-Mail Removed)...
> > > > A quick Google shows it to be spyware. Download Spybot S+D or Ad-aware
> > to
> > > > clean spyware from your system:
> > >
> > > This is where a "quick search of google" fails you.
> > > The "Backweb" application has many legitimate uses.
> > > Removing it with Ad-Aware might just result in no longer
> > > having your AV definitions autoupdate. It is a legitimate
> > > autoupdating service which has also been abused by adware
> > > and spyware.
> >
> > Would Ad-aware not recognise it as being a legit auto update file for his
> AV
> > (if thats what it turns out to be) rather than the spyware element tagged
> > onto other applications? I thought Ad-aware would only alert on spyware
> and
> > wouldn't alert on legit files.
> >
> > Nicky
> >
> >
>
> Legitimate files *can* be (and are) used maliciously

Yes, but the question here is whether or not adware and or spyware
detection programs are capable of discerning the difference.

Nicky may be right, but I think I remember at least one instance
of falsely alerting to a legit "backweb" as spyware.

"FromTheRafters" <!(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> I would be interested to know if indeed Ad-Aware and Spybot
> Search and Destroy were able to discriminate between legit and
> non-legit use of this application.

F-Secure Anti-Virus2003 uses Backweb as a means of providing updates. Spybot
S&D ver1.2 detects it by default. Deleting any of the ~20 registry entries
renders the anti-virus application inoperable. I don't recall how Ad-Aware
regards Backweb.

"FromTheRafters" <!(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
>
> "Sugien" <(E-Mail Removed)> wrote in message
news:3E%Qa.122$(E-Mail Removed)...
> >
> > "nicky" <(E-Mail Removed)> wrote in message
> > news:LD_Qa.13311$(E-Mail Removed)...
> > >
> > > "FromTheRafters" <!(E-Mail Removed)> wrote in message
> > > news:(E-Mail Removed)...
> > > >
> > > > "nicky" <(E-Mail Removed)> wrote in message
> > > newsNPQa.12515$(E-Mail Removed)...
> > > > > A quick Google shows it to be spyware. Download Spybot S+D or
Ad-aware
> > > to
> > > > > clean spyware from your system:
> > > >
> > > > This is where a "quick search of google" fails you.
> > > > The "Backweb" application has many legitimate uses.
> > > > Removing it with Ad-Aware might just result in no longer
> > > > having your AV definitions autoupdate. It is a legitimate
> > > > autoupdating service which has also been abused by adware
> > > > and spyware.
> > >
> > > Would Ad-aware not recognise it as being a legit auto update file for
his
> > AV
> > > (if thats what it turns out to be) rather than the spyware element
tagged
> > > onto other applications? I thought Ad-aware would only alert on
spyware
> > and
> > > wouldn't alert on legit files.
> > >
> > > Nicky
> > >
> > >
> >
> > Legitimate files *can* be (and are) used maliciously
>
> Yes, but the question here is whether or not adware and or spyware
> detection programs are capable of discerning the difference.
>
> Nicky may be right, but I think I remember at least one instance
> of falsely alerting to a legit "backweb" as spyware.
>
>

I am not so sure they ( adware and or spyware detection programs ) can tell
the difference; because the same back web can be used by 2 different
applications at the same time , one legitimate and one not there for the
adware and or spyware detection programs would have to be far more powerful
then they are currently and would have to key on running processes instead
of *just* the name of the suspected adware. Hmmmm, I wonder if one were to
rename a backweb.exe file and then simply call and pipe into it using the
changed name if the adware and or spyware detection programs would still
find it? I don't think so; because I think as it stands now they are using
a simple library or list type of detection iow just going by the name of the
offending software and a simple renaming of it would bypass the detection by
the most popular adware and or spyware
detection programs.


--
/}
@###{ ]::::::::::ino-Soft Software::::::::::::>
\}
Live WebCam http://www.dino-soft.org/cam