http://www.giveawayoftheday.com/forums/ Giveaway of the Day Forums Tag: trojan en Fri, 04 Jul 2008 07:53:45 +0000 http://www.giveawayoftheday.com/forums/topic/719/page/4#post-35844 Sat, 21 Jun 2008 07:41:35 +0000 my_name_is_brad 35844@http://www.giveawayoftheday.com/forums/ <p>nah i never got the activation for that I believe. I may be thinking of the initial download for that, so I could be mistaken. I was thinking there was another one that was that way. Could just be the old memory crapping out again. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-35724 Fri, 20 Jun 2008 15:36:26 +0000 mikerb 35724@http://www.giveawayoftheday.com/forums/ <p>ah, that would be the infamous <a href="http://www.giveawayoftheday.com/flex-gif-animator/">Flex GIF Animator</a> that only about 2 people managed to get. were you one of them brad? </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-35527 Thu, 19 Jun 2008 06:44:14 +0000 my_name_is_brad 35527@http://www.giveawayoftheday.com/forums/ <p>i have seen a couple of offers lately that have required a validation from the developer site, and that is not such a bad thing really as it helps the developers keep up with stats on how well this site works for them.</p> <p>there was one that troubled me though, and I can't recall the name off hand. It required a second download from their site. To me this poses a huge security risk, and I hope you guys avoid this in the future because you have no way to validate what they decide to change it to.</p> <p>Even if I could remember the developer/software I wouldn't name them since their offer did pass the spyware/virus scanners on my computer even at the late time that I typically download. it's just a thought </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-34951 Mon, 16 Jun 2008 02:09:16 +0000 You Wont See Me 34951@http://www.giveawayoftheday.com/forums/ <p>PC Tools' "Threatfire reports that SAGA.exe is logging keystrokes". I'm not sure if this is something normal for games that the game is supposed to do but having a keylogger built into the game surely made me uninstall it. I posted this in the comments but it was Modded out so I figure I'll throw it up here. </p> <p>False Positive? Threatfire uses behavioral based detection so I was just wondering if this is something that is common for games to function and should be allowed to continue or not. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-34020 Mon, 09 Jun 2008 14:33:24 +0000 chuck11 34020@http://www.giveawayoftheday.com/forums/ <p>Following-up on the BurnAware issue, AVG also quarantined most of the files as being infected with Klone P. I contacted the software supplier and got a few cryptic notes back that they no longer support the Home Edition and that I should upgrade to their v.2. However, contrary to what is shown in my / GAOTD registration summary - 'eligible for upgrades for 1 year' - I was informed that only paying customers are eligible for this free upgrade. Not liking this 'bait &#38; switch' approach - when a promised is made...it should be kept. If someone from GAOTD could check into this, I sure everyone who d/l'd this software would appreciate it. Also, if you want, I can forward their e-mail responses.</p> <p>chuck11 </p> http://www.giveawayoftheday.com/forums/topic/2476#post-31242 Wed, 28 May 2008 03:39:55 +0000 Paulga 31242@http://www.giveawayoftheday.com/forums/ <p>Folks i am at present using Wondershare Photo Story having downloaded it from GAOTD, none of my security programs indicated then, nor after scanning,that there was anything amiss?<br /> Comodo Anti Virus<br /> Comodo Anti Malware<br /> Spycatcher Express<br /> A-Squared Free<br /> Ad-Aware<br /> Rogue Remover<br /> Panda Nano Scan<br /> Sophos Anti Root<br /> plus a few more, not a trace? </p> http://www.giveawayoftheday.com/forums/topic/2476#post-31164 Tue, 27 May 2008 13:23:12 +0000 copmom 31164@http://www.giveawayoftheday.com/forums/ <p>On this one, when I tried clicking on setup, my McAfee popped up a trojan message and wouldn't allow it to even proceed! Tried a couple of times, then figured if it's that hard to install, it's not meant to be. I'm happy with Microsoft's Photo Story 3 for Windows, that works great. </p> http://www.giveawayoftheday.com/forums/topic/2476#post-31121 Tue, 27 May 2008 05:42:30 +0000 infotekkie 31121@http://www.giveawayoftheday.com/forums/ <p>Wondershare Photo Story Virus detected 5/26/08</p> <p>TrendMicro Internet Security Program Version: 16.10.1079; Engine Version: 8.710.1002; Pattern Version: 5.297.50; last updated May 26, 2008 detected the tmd5.dll as a trojan generic and quarantined it. OS Winxp Pro Sp3. This is not AVG and it shows found this file also to be a trojan virus. Please advise. </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30891 Mon, 26 May 2008 14:24:29 +0000 leskris 30891@http://www.giveawayoftheday.com/forums/ <p>I am not that knowledgable about these threats. Is this file safe or not?</p> <p>Thanks </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30889 Mon, 26 May 2008 13:50:09 +0000 alexmg2420 30889@http://www.giveawayoftheday.com/forums/ <p>Indeed, there is a trojan in the installer. AVG detected it on both the standard installation and the Windows Vista "install this program with recommended settings". Oh, well. Also, in response to "copmom"'s post, the new AVG 8.0 isn't as bad as 7.5, it takes less of a toll on your system, and you never have more than two items in the Task Manager (avgtray.exe and avgscanx.exe are all). </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30888 Mon, 26 May 2008 13:35:15 +0000 BuBBy 30888@http://www.giveawayoftheday.com/forums/ <p>Any Antivirus that does real time detection/scanning will have one or more background processes running.</p> <p>It's how well those processes have been written that determines how much you notice the antivirus. The perfect antivirus program you could install, and have it continue to detect at the highest levels - but you are left unaware of any impacts on performance on your computer usage. No major slowdowns, popups, or other interference getting in your way. In my opinion, unless there is a problem the Antivirus cannot handle - it should be invisible. </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30887 Mon, 26 May 2008 13:21:38 +0000 copmom 30887@http://www.giveawayoftheday.com/forums/ <p>This is why I've removed AVG from my computer.. it had a way of taking over, had 4 items running in my Task Manager, was always running in the background, etc. I did not like that at all! </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30880 Mon, 26 May 2008 11:50:51 +0000 BuBBy 30880@http://www.giveawayoftheday.com/forums/ <p>The problem is with the AntiVirus developers not the software developers. There is no Virus present - it is because the description of what a virus looks like isn't stringent enough - so completely innocent programs get detected as having viruses.</p> <p>Sometimes this can happen after a piece of software has been installed for months or years - an update of the installed AntiVirus program/definitions suddenly detects a previously safe program as having a suspected virus. Clearly the developer cannot predict the future changes made by the antivirus software.</p> <p>Some AntiVirus programs are better than others, they have fewer of these false positives. The past track record, I have found that AVG is almost always one of the culprits detecting perfectly safe programs as a "detected virus" (which is really a "suspected" virus).</p> <p>9 times out of 10 - a report of such a problem to the developer will result in them contacting the antivirus developer to retest and update their definitions, releasing a more "accurate" definition of what the "detected" virus really looks like, that doesn't include the false positive application code.</p> <p>You need to remember - from the viewpoint of the AntiVirus developers - it is not always easy to accurately describe what a virus looks like, when there are so many variations and you cannot test against every available piece of software.</p> <p>To date I have not seen a reported piece of software offered as a giveaway that has confirmed to be infected by any virus or trojan etc. In 100% of the cases so far the problem has ALWAYS been a problem/deficiency with the Antivirus program - and reporting to the developers the problem usually gets repaired with a subsequent AntiVirus definition update. </p> http://www.giveawayoftheday.com/forums/topic/2476#post-30879 Mon, 26 May 2008 11:32:50 +0000 cabolet 30879@http://www.giveawayoftheday.com/forums/ <p>Instead of sending mail and requests to all anti-virus producers, I suggest to send 1 email to Wondershare and ask them to produce software that don’t come up with this kind of messages. I really wonder how this people develop. Don’t they use virus protection software? </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-30099 Wed, 21 May 2008 00:04:30 +0000 Paulga 30099@http://www.giveawayoftheday.com/forums/ <p>iBizCard-Stud.......i just clicked to your link <a href="http://www.download3k.com/Antivirus-Report-iBizCard.html" rel="nofollow">http://www.download3k.com/Antivirus-Report-iBizCard.html</a></p> <p>and it sure started alarms going on my computer, dangerous....and so forth, where as the second link had no problem and gave a 100% free of virus ++, did you download from the first link??</p> <p>Paulga </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-30049 Tue, 20 May 2008 18:03:14 +0000 TK_M 30049@http://www.giveawayoftheday.com/forums/ <p>I updated my AVG Free to version 8.0 from the 7.5 last week and as soon as I did, BurnAware has been thowing up virus reports. This explains why it is suddenly giving reports, it seems to be due to the update.</p> <p>If you go to History/Virus Vault in AVG, you can highlight the quarrentined items and send them to Grisoft to be re-analysed if you feel they are false positives. I have just done that, only to find BurnAware have notified them as well.</p> <p>While in the virus vault, you can restorew the quarrentined files and BurnAware should then work normally.</p> <p>You can also click on "ignore" these files during a scan leave them in place until Grisoft gets them sorted out.</p> <p>I tried Avira as it has better detection rates than AVG, but had to go back to AVG as I got far too many false positives from Avira. Not only that, but it was hard to submit reports of false positives to Avira and even when I persevered, they said one false positive was real. Now it looks like AVG have increased their detection rate, but at the cost of more false positives. I will stick with them (at least temporarily) as at least they have made it easy to report suspected false positives. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-29999 Tue, 20 May 2008 09:14:09 +0000 hotdoge3 29999@http://www.giveawayoftheday.com/forums/ <p>BurnAware Home Edition is suddenly getting virus alerts from Antivirus. The developers are aware of the problem and have reported it to AVG. They say it is a false positie.<br /> It be fix with a update I had this with Nero 7 wen it fist come out update fix it be a false positie as it new,so keep it be fix be for long. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-29911 Mon, 19 May 2008 12:29:42 +0000 Dragonlair 29911@http://www.giveawayoftheday.com/forums/ <p>BurnAware Home Edition is suddenly getting virus alerts from AVG. The developers are aware of the problem and have reported it to AVG. They say it is a false positie. Their site shows it is both the home and free edition affected. The odd part is I have a friend who started getting the messages Saturday night. I didn't start getting it until this morning's boot. It showed up during the boot, not by trying to use the product.</p> <p>We have the same version of BurnAware (we both got it here) and we have the same version and level of AVG Free (8.0) having downloaded/installed it the same day. We also have almost the same OS (She has Vista Home Premium SP1 and I have Vista Ultimate SP1). Why did she start getting the messages about 36 hours before I did?</p> <p>As the product was not essential to me (I have Roxio Creation 9 from my original PC purchase), I have uninstalled it to be safe. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-29369 Tue, 13 May 2008 21:13:54 +0000 zubterfuge 29369@http://www.giveawayoftheday.com/forums/ <p>The Myspace Editor had a "trojen.adclick" and I was using NAV. The virus isn't found until after the product is installed. How disappointing. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-27781 Tue, 29 Apr 2008 14:48:50 +0000 OiMack 27781@http://www.giveawayoftheday.com/forums/ <p>Same problem here. After installing iBizCard Bitdefender found two infected files in the E_4 directory. Both infected with Trojan.Peed.Gen.<br /> The files are<br /> - EXMLParser.fne<br /> - shell.fne </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-27759 Tue, 29 Apr 2008 10:19:52 +0000 iBizCard_Studio 27759@http://www.giveawayoftheday.com/forums/ <p>Thebeo:Thank you for your report. we will contact Avira and deal with this problem as soon as possible.Please set assured,our produc is 100% Clean</p> <p>download3k.com Antivirus Report: <a href="http://www.download3k.com/Antivirus-Report-iBizCard.html" rel="nofollow">http://www.download3k.com/Antivirus-Report-iBizCard.html</a><br /> softpedia.com Antivirus Report: <a href="http://www.softpedia.com/progClean/iBizCard-Clean-98324.html" rel="nofollow">http://www.softpedia.com/progClean/iBizCard-Clean-98324.html</a> </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-27754 Tue, 29 Apr 2008 10:03:39 +0000 Thebeo 27754@http://www.giveawayoftheday.com/forums/ <p>to iBizCard_Studio, for your information.<br /> The program Bizcard.exe creates a Temp directory "E_4". In this directory it creates al kind of files. One of them is identified as the Trojan. Maybe this narrows the search to the problem. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-27750 Tue, 29 Apr 2008 08:50:42 +0000 iBizCard_Studio 27750@http://www.giveawayoftheday.com/forums/ <p>our product "ibizcard" have not any virus, it's 100% Clean<br /> download3k.com Antivirus Report: <a href="http://www.download3k.com/Antivirus-Report-iBizCard.html" rel="nofollow">http://www.download3k.com/Antivirus-Report-iBizCard.html</a><br /> softpedia.com Antivirus Report: <a href="http://www.softpedia.com/progClean/iBizCard-Clean-98324.html" rel="nofollow">http://www.softpedia.com/progClean/iBizCard-Clean-98324.html</a><br /> to Thebeo:I will contact Avira to Correct this wrong virus report. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-27745 Tue, 29 Apr 2008 08:26:49 +0000 Thebeo 27745@http://www.giveawayoftheday.com/forums/ <p>After installing iBizCard, Avira Antivir detects trojan "TR/Crypt.XPACK.Gen".<br /> Please look in to this. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-23513 Mon, 24 Mar 2008 16:02:33 +0000 turkishvan007 23513@http://www.giveawayoftheday.com/forums/ <p>I use Norton online protection and antivirus tool, I have AnVir Task Manager and Mamutu. My Norton is updated daily and is current. I'm running Windows XP SP2.</p> <p>My system found the trojan Hacktool.Rootkit in Robotask idlehook.dll yesterday/today and in my easttec backup files under the Robotask product backup. I downloaded Robotask and haven't used it since I downloaded it on September 28, 2007 and east tec backup was used October 12, 2007. Norton Antivirus did not find this trojan until this mornings scan so the trojan ended up in this file somehow but I don't know how.</p> <p>I'm not saying this virus was downloaded in Robotask or EastTec Backup's original download from GAOTD because I routinely do full system Virus Scans (once a week) and quick scans whenever I restart my computer and they haven't been found until now. What I'm saying is to please do a full system scan on your computer to make sure you catch this trojan if your computer has somehow received it. The trojan has been removed from my computer as of this morning. </p> <p>Symatec provided this information on the Trojan.</p> <p>Hacktool.RootkitRisk Level 1: Very LowPrinter Friendly Page<br /> SUMMARY TECHNICAL DETAILS REMOVAL Discovered: September 27, 2001<br /> Updated: February 13, 2007 11:38:00 AM<br /> Type: Trojan Horse<br /> Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP</p> <p>Hacktool.Rootkit comprises a set of programs and scripts that work together to allow attackers to break into a system. If Hacktool.Rootkit is detected on a system, it is very likely that an attacker has gained complete control of that system. All files that are detected as Hacktool.Rootkit should be deleted. Infected systems may need to be restored from backups or patched to restore security.</p> <p>Rootkits first appeared on the UNIX operating system. Administrator/Superuser accounts on UNIX systems are called root. Rootkits are kits of programs that are designed to gain root access on a system. The term rootkit now refers to any set of tools that can be used to gain unauthorized access to a system.<br /> ProtectionInitial Rapid Release version September 27, 2001<br /> Latest Rapid Release version March 24, 2008 revision 004<br /> Initial Daily Certified version September 27, 2001 revision 007<br /> Latest Daily Certified version March 24, 2008 revision 005<br /> Initial Weekly Certified release date September 27, 2001<br /> Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.</p> <p>Threat AssessmentWildWild Level: Medium<br /> Number of Infections: More than 1000<br /> Number of Sites: More than 10<br /> Geographical Distribution: Low<br /> Threat Containment: Easy<br /> Removal: Moderate<br /> DamageDamage Level: Medium<br /> DistributionDistribution Level: Low </p> <p>Writeup By: Jimmy Shah</p> <p>Hope this helps someone else out. </p> http://www.giveawayoftheday.com/forums/topic/387#post-19731 Thu, 28 Feb 2008 00:07:51 +0000 copmom 19731@http://www.giveawayoftheday.com/forums/ <p>I had that hupigon3arcw pop up here the other day as a back door trojan horse, and it showed it was in Vidmorph.exe which might have been one I installed through GOTD, not positive if it was one of the offerings here or if I picked up on it from a mention in one of the forums. Anyhow, I've uninstalled Vidmorph, and have been doing some major housekeeping on here running all the different spyware/trojan/virus programs I have. Good luck nannydru! </p> http://www.giveawayoftheday.com/forums/topic/387#post-19708 Wed, 27 Feb 2008 21:35:57 +0000 Lee 19708@http://www.giveawayoftheday.com/forums/ <p><a href="http://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32%2fHupigon" rel="nofollow">http://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32%2fHupigon</a> </p> http://www.giveawayoftheday.com/forums/topic/387#post-19702 Wed, 27 Feb 2008 20:27:31 +0000 nannydru 19702@http://www.giveawayoftheday.com/forums/ <p>how can Iget rid of Hupigon ? </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-19595 Tue, 26 Feb 2008 23:21:46 +0000 BuBBy 19595@http://www.giveawayoftheday.com/forums/ <p>My first reaction (and years of experience) as soon as I see a virus report and AVG mentioned - I immediately think "false positive".</p> <p>can I ask you to disable your antivirus (and on-access checking) which will allow you to upload the file for checking. If the file is infected you only need worry if you actually execute/run the program - just selecting the file and loading it to a website should not matter.</p> <p>Please upload to</p> <p><a href="http://virusscan.jotti.org/" rel="nofollow">http://virusscan.jotti.org/</a></p> <p>as the above can often be busy, an alternative</p> <p><a href="http://www.virustotal.com/metodos.html" rel="nofollow">http://www.virustotal.com/metodos.html</a></p> <p>you can either upload or email the file (check the instructions for email)</p> <p>If you could make a note of the results. Often you can tell from some of the "better AV products" and the general consensus across the products overall as to whether the file is a false positive or not.</p> <p>You should check with AVG for the procedure to provide them with the file so they can correctly classify the file.</p> <p>After all this - Don't forget to turn your AntiVirus scanning back on again. </p> http://www.giveawayoftheday.com/forums/topic/719/page/4#post-19578 Tue, 26 Feb 2008 19:03:00 +0000 copmom 19578@http://www.giveawayoftheday.com/forums/ <p>I'm running AVG and it just picked up a trojan horse from Vidmorph.exe .. says" backdoor, hupigon3.arcw .. just thought I'd pass this on for what it's worth! I do believe I got this from GOTD awhile back. </p>