From: Frank on 06/12/2005
If you are getting popups you may have a trojan called "lastad", it's spamware / spyware.Adaware does not detect this, but the program "antivir" (free) detected it and tells you where the "DLL" file is.
However, at startup this DLL will get re-loaded because there's a program called "furj" that runs at startup.
Here's what I did. If you are a complete idiot, don't try this, it's not fool proof.
Start the computer but keep pressing "F8" key over and over till you get to the safemode screen and start up in safemode.
Now use Start->Programs->Accessories->Windows Explorer (I don't know why they buried it like that but's it's a great little thing).
Now go to your C: drive, then Windows->System32
And in the "tools" pull down menu go to folder options and click on the "show hidden files" so you can see hidden files (like it should be anyway).
Now look for three files (I found three) that start with "furj" and move them to your main C: drive (or some other folder you made, just get them out of there). One of them is a ".exe" so make sure it's really moved out!
If this messes up something you can always put them back, that's why we just moved them out. Now shut down again and start as usual then see if antivir detects the trojan anymore.
Another thing to check in these situations is what programs are starting up when you boot. You do that by going to Start->Run and then type in "msconfig" and click on the "startup" tab, it shows all things that startup and you can shut them off from there and see if that helps.
In this case, even if you turn them off, the "DLL" file was still there and it could re-infect the machine, so starting up in safemode and getting rid of the damn files is a good way.
