Warning

 

Close

Confirm Action

Are you sure you wish to do this?

Confirm Cancel
Member Login
Posted: 9/25/2004 11:41:59 AM EST
I've Google'd and Yahoo'd it but I can find nothing.

I get a "High Risk" warning that oddlsx.exe is trying to access the internet with the recommendation to block it each time, so I do.

What is it trying to do?
Link Posted: 9/26/2004 3:47:15 AM EST
bump
Link Posted: 9/26/2004 3:48:52 AM EST
what port(s) is it trying to access?

i found nothing on symantec's web site.
Link Posted: 9/26/2004 3:53:56 AM EST
I'd delete that file if I were you.
Link Posted: 9/26/2004 3:57:31 AM EST

Originally Posted By Specop_007:
I'd delete that file if I were you.





Link Posted: 9/26/2004 4:23:50 AM EST

Originally Posted By Palo_Duro:

Originally Posted By Specop_007:
I'd delete that file if I were you.








I think I sould now that I've pulled the below from my Norton log...


Outbound TCP Connection
Remote address,service is (download.callinghome.biz(199.107.188.140),http(80))
Process name is "C:\WINDOWS\System32\oddlsx.exe"
Link Posted: 9/26/2004 4:26:16 AM EST

Originally Posted By sherm8404:

Originally Posted By Palo_Duro:

Originally Posted By Specop_007:
I'd delete that file if I were you.








I think I sould now that I've pulled the below from my Norton log...


Outbound TCP Connection
Remote address,service is (download.callinghome.biz(199.107.188.140),http(80))
Process name is "C:\WINDOWS\System32\oddlsx.exe"



terminate... with extreme prejudice
Link Posted: 9/26/2004 4:28:17 AM EST
Forgot to add, I'm running Hijack This, Spybot, and Lavasoft Adaware. They haven't picked it up either.
Link Posted: 9/26/2004 4:50:08 AM EST
[Last Edit: 9/26/2004 4:58:26 AM EST by Who_Me]
Interesting...Are you sure of the spelling?

Kinda sounds likes some kind of adware to me. Maybe a newer version of one?
Hard to say.



Edited to add:
Check this out: download.callinghome.biz/
And this: www.callinghome.biz/

Even more: www.kephyr.com/spywarescanner/library/callinghome.biz/whois_callinghomebiz.phtml
Link Posted: 9/26/2004 5:32:20 AM EST

Originally Posted By sherm8404:
Forgot to add, I'm running Hijack This, Spybot, and Lavasoft Adaware. They haven't picked it up either.



Which version of Adaware are your running? This thing looks like malware. Newest version of Adaware should pick it up, unless it's a really new deal.
Link Posted: 9/26/2004 5:51:03 AM EST
If all else fails, go here: www.lavahelp.net/submit/

Good luck, let us know how it goes.

Link Posted: 9/26/2004 5:53:58 AM EST
Ad Aware and Spybot S&D are all you should need. A word of warning, some of these anti-(hijack, cookie etc) programs are themselves mal-ware.
Search the registry for any reference to that file name, restart, delete the file and use Firefox for a browser.
Link Posted: 9/26/2004 5:56:25 AM EST
Tagged.
Link Posted: 9/26/2004 7:19:59 AM EST

I freaking hate spyware. Get a software
firewall and log outgoing requests. Oh,
and let me be the first to say:

Link Posted: 9/26/2004 7:30:46 AM EST
Stay away from the pr0n and you wouldn't have this problem!
Link Posted: 9/26/2004 8:27:22 AM EST
[Last Edit: 9/26/2004 8:28:30 AM EST by JB69]
callinghome.biz is a data-mining domain. Spyware.....

oddlsx.exe is more than likely a new/renamed version of their crap... delete it.

also, do a thorough search on your computer for other copies of this .exe..... mayy times there's more than one, using their previous history as a judge.... delete all you find, as well.

You'll need to remove all registry references to this file also. Can pretty much guarantee it's listed as a boot-up file... starts when you start the computer.

If you dont know how to search the registry and delete entries, just leave it alone. since the .exe's are deleted, it wont be able to run them, and will just produce an error log entry, which won't cause any other problems. There's lots of errors in a registry that you never know about, unless you are experienced in manually editing/cleaning such. Eventually they just add up and can/will slow down the computer, but this takes time...

I wouldn't worry too much about it. Just delete ALL instances you find of oddlsx.exe and you should be good to go...

Hope this helps some....

JB
Top Top