Giveaway of the Day Forums » Tag: virus

Giveaway of the Day Forums » Tag: virus - Recent Posts http://www.giveawayoftheday.com/forums/tags/virus Giveaway of the Day Forums » Tag: virus - Recent Posts en-US Wed, 25 Nov 2009 21:27:14 +0000 http://bbpress.org/?v=1.0.2 <![CDATA[Search]]> q http://www.giveawayoftheday.com/forums/search.php nrshapiro on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-68097 Mon, 23 Nov 2009 18:04:02 +0000 nrshapiro 68097@http://www.giveawayoftheday.com/forums/ Norton Internet Security 2010 will not allow activate.exe to run. It won't allow it to stay either--deleting it. I could disable NAV of course, but then if activate.exe did contain a virus I'd be screwed, especially since it needs to be run with admin privileges. So I think GOTD needs to work this out with Norton. Quantum Dragon on "What's that site?" http://www.giveawayoftheday.com/forums/topic/6579#post-68042 Sun, 22 Nov 2009 02:17:28 +0000 Quantum Dragon 68042@http://www.giveawayoftheday.com/forums/ Three sites I know of offer this kind of service! The one site I use the most is SiteAdvisor, they offer an award-winning, free browser plug-in (for FireFox and IE) that gives safety advice about Websites before you click on a risky site. For more on this program and site, go here: <a href="http://www.siteadvisor.com/howitworks/index.html">What is SiteAdvisor?</a> The site for WoT (Web of Trust) is here: <a href="http://www.mywot.com/">Free Internet Security, WOT warns you about risky websites</a> On top of SiteAdvisor and Web of Trust, there is also a less well know site: <a href="http://safeweb.norton.com/">Norton Safe Web</a>. ===================================================================================== But regardless of which one you use first, it is important to check on all because these sites rely mostly on user feedback and said users (operating under nicknames) may not always be well intentioned or well informed. So before panicking and picking up torches, just breathe and take it with a grain of salt. For more information, you might also try reading reports at these sites: Here: <a href="http://www.stopbadware.org/home/users">Information for Internet Users (StopBadware)</a> and here: <a href="http://www.truthorfiction.com/">Get the truth about virus warnings, hoaxes, scams and other opinions (Thruth or Fiction)</a> ===================================================================================== Here are the links to the opinions about GOTD from these three sites: 1) <a href="http://www.siteadvisor.com/sites/giveawayoftheday.com?version=2&core_ver=1.0&pip=true&premium=false&client_ver=2.9.260&client_type=IEPlugin&suite=true&aff_id=0&locale=fr-CA&os_ver=5.1.3.0">SiteAdvisor</a> 2) <a href="http://www.mywot.com/en/scorecard/www.giveawayoftheday.com">Web of Trust (WoT)</a> 3) <a href="http://safeweb.norton.com/report/show?url=http%3A%2F%2Fwww.giveawayoftheday.com%2F&x=9&y=9">Norton Safe Web</a> ===================================================================================== Hope this helps Quantum Dragon AKA Paul Chip on "What's that site?" http://www.giveawayoftheday.com/forums/topic/6579#post-68041 Sun, 22 Nov 2009 01:36:27 +0000 Chip 68041@http://www.giveawayoftheday.com/forums/ This may be what your looking for: <a href="http://www.siteadvisor.com/">http://www.siteadvisor.com/</a> You just type the websites name in the box at the right under where it says "View a Site Report" and you are taken to a page that gives it a green, yellow, or red rating. It also gives you user reviews as well as a chart of all sites the site in question connects to. Dragonlair on "What's that site?" http://www.giveawayoftheday.com/forums/topic/6579#post-68040 Sun, 22 Nov 2009 01:22:38 +0000 Dragonlair 68040@http://www.giveawayoftheday.com/forums/ Firefox has an add-in for WOT. You don't need a toolbar. It just has a little circular icon beside the home page icon with a color indicating it's ranking. If you haven't "voted yourself", there's an asterisk in the upper left edge of the circle. Also, if you access a site it doesn't have a good rating for, you get a warning message. You can have it block you but I don't have it set that way. Terri218 on "What's that site?" http://www.giveawayoftheday.com/forums/topic/6579#post-68039 Sun, 22 Nov 2009 00:25:49 +0000 Terri218 68039@http://www.giveawayoftheday.com/forums/ Web of Trust (WOT) gives you a toolbar that shows a green, yellow or red indicator based on users' evaluations and experiences of that site. I don't know if that is what you are referring to but I found it in these forums and have been very happy with it. PlainVanilla on "What's that site?" http://www.giveawayoftheday.com/forums/topic/6579#post-68038 Sun, 22 Nov 2009 00:11:27 +0000 PlainVanilla 68038@http://www.giveawayoftheday.com/forums/ A while back I was reading one of the many topics in here and it mentioned something about a site that would list other sites as either redflagged or (insert name here, I had a brain fart), based on if they were adware/spyware/otherwise iffy. What site was it? Steve on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-68005 Sat, 21 Nov 2009 02:56:51 +0000 Steve 68005@http://www.giveawayoftheday.com/forums/ <a href="http://www.giveawayoftheday.com/photo-stamp-remover/" rel="nofollow">http://www.giveawayoftheday.com/photo-stamp-remover/</a> OS = Windows XP Pro, sp3, IE8, all patches. Stamp Remover has been on this machine since the giveaway, although I don't think I ever used it after the giveaway. SAV 9.0.7.1000, scan engine 91.2.1.10, virus definitions version 11/18/2009 rev. 3. auto-protect scan detected c:\program files\photo stamp remover\StampRemover.exe as a threat called "downloader". default action = clean (failed). backup action = quarantine (failed). final action taken by SAV = delete. The file was deleted successfully. Very suspsicious if you ask me, especially since I wasn't even using the software. I was starting another software (radioget) at the time. leofelix on "RegTidy worm" http://www.giveawayoftheday.com/forums/topic/6514#post-67519 Tue, 10 Nov 2009 17:44:59 +0000 leofelix 67519@http://www.giveawayoftheday.com/forums/ It is a known <a href="http://en.wikipedia.org/wiki/Rogue_software">Rogue</a> <a href="http://www.emsisoft.com/en/malware/Adware.Win32.RegTidy-remove.aspx" rel="nofollow">http://www.emsisoft.com/en/malware/Adware.Win32.RegTidy-remove.aspx</a> I asked GOTD Team why they offered Malware as a giveaway, but I never got a reply MilesCh on "RegTidy worm" http://www.giveawayoftheday.com/forums/topic/6514#post-67517 Tue, 10 Nov 2009 17:09:06 +0000 MilesCh 67517@http://www.giveawayoftheday.com/forums/ Using WinXP, SP2, Malwarebytes free brief scan found a worm from RegTidy, worm.autorun.B. Also identified as a Rogue in 4 places in Docs & Settings. Note that I had downloaded this program and was suspicious and uninstalled it. Not found by AVG free, hijack this, cw shredder, & spybot s&d. FYI, no firewall other than a hardware router. This is the first bug I've had in years and prior had used Eset NOD32; guess you get what you pay for! Perhaps I'll try Avira free prior to returning to NOD32 which I believe still has a sound reputation. As much as I enjoy Download of the Day at this stage am questioning it's use -- checked the website and found several others had also reported this bug. TeXaCo on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-67025 Sun, 01 Nov 2009 16:55:24 +0000 TeXaCo 67025@http://www.giveawayoftheday.com/forums/ After installing IOBIT 360 reported it the dll file as a trojan. Then after scanning my whole system, it came up with 15 other files from regtidy as a virus. As the program was taking me to (I'm assuming the software website). Avira blocked the website from being displayed saying it was known to be a malicious website and WOT also blocked it. Now I know there have been false positives in the past but this seems to be too much to be false. perz on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-66963 Sat, 31 Oct 2009 21:46:02 +0000 perz 66963@http://www.giveawayoftheday.com/forums/ RegTidy trojan detected and identified by Avira AntiVir Premium: Virus or unwanted program 'TR/Drop.arte.410624 [trojan]' detected in file 'C:\Program Files\RegTidy 2009\RegTidy.dll. Action performed: Deny access leofelix on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-66949 Sat, 31 Oct 2009 19:27:32 +0000 leofelix 66949@http://www.giveawayoftheday.com/forums/ RegTidy is a misleading application, it will brings to false positive detection, more it can mess up you system. <a href="http://www.emsisoft.com/en/malware/?Adware.Win32.RegTidy" rel="nofollow">http://www.emsisoft.com/en/malware/?Adware.Win32.RegTidy</a> <a href="http://www.mywot.com/en/scorecard/regtidy.com" rel="nofollow">http://www.mywot.com/en/scorecard/regtidy.com</a> I wonder GOTD team didn't check it watcher13 on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-65804 Wed, 14 Oct 2009 19:03:20 +0000 watcher13 65804@http://www.giveawayoftheday.com/forums/ Not sure. It has a small AV module. Maybe it was checking for updates. As you probably saw, it also had links to other bundled software and "recommended" softwares. If you didn't deselect all that stuff, it might have been trying to contact one of them. Also, I haven't got around to installing yet, but I read over in the comments section that it still has nag screens to get you to upgrade. It may have been trying to download one of them. I'm thinking it's one or two of these annoying, but semi-harmless functions. prs on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-65801 Wed, 14 Oct 2009 17:56:29 +0000 prs 65801@http://www.giveawayoftheday.com/forums/ Today,s offer has rave reviews from the regulars. Would hate to let this go. I posted this in the comments section today and I find that my comment is "moderated" So here goes. Had this evaluated at virustotal and jotti.org. The result is 1/41 and 1/21 detecting Trojan. Kaspersky in those two lists is happy. Zone Alarm on my computer informs me that AnVir is trying to contact two particular destination IP. What does that mean ? notblocklox on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-65795 Wed, 14 Oct 2009 16:28:03 +0000 notblocklox 65795@http://www.giveawayoftheday.com/forums/ No, my Kasper is quite happy with AnVir. prs on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-65789 Wed, 14 Oct 2009 14:16:04 +0000 prs 65789@http://www.giveawayoftheday.com/forums/ Todays offering by AnVir had my Kaspersky Internet Security crying foul. It is detected as a Trojan. I added AnVir to exclusions. Anyone else have this trouble ? gtoal on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-65788 Wed, 14 Oct 2009 13:57:56 +0000 gtoal 65788@http://www.giveawayoftheday.com/forums/ Today's signature update to McAfee just flagged the 22 Jan PDFZilla executable as "Generic.dx!fua" (and deleted it). rezidue on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-63537 Sun, 06 Sep 2009 22:48:10 +0000 rezidue 63537@http://www.giveawayoftheday.com/forums/ VirusTotal scan of webgalery.exe from <a href="http://www.giveawayoftheday.com/softorbits-html-web-gallery-creator/">SoftOrbits HTML Web Gallery Creator given away on September 4, 2009</a> Trojan-Downloader.Win32.Adload.jot <a href="http://www.virustotal.com/analisis/1d243e423585d8295a62d5d465644c66767c0a7b5454a12ea5cce3cc0e3691cf-1252275170" rel="nofollow">http://www.virustotal.com/analisis/1d243e423585d8295a62d5d465644c66767c0a7b5454a12ea5cce3cc0e3691cf-1252275170</a> rezidue on "Review Trojan/Virus Reports" http://www.giveawayoftheday.com/forums/topic/719/page/6#post-63142 Sun, 30 Aug 2009 00:04:15 +0000 rezidue 63142@http://www.giveawayoftheday.com/forums/ <a href="http://www.giveawayoftheday.com/2009/08/14/">Batch Image Resizer given away on August 14, 2009</a> Backdoor.Win32.Hupigon.htas Please note the wrapper was removed for this scan to verify that it had nothing to do with the bundled Software Informer application. <a href="http://www.virustotal.com/analisis/f2fb709f74ecf276846fffb5e0da1edc784bcf124b48b124958bda6892cbbe7d-1251589760" rel="nofollow">http://www.virustotal.com/analisis/f2fb709f74ecf276846fffb5e0da1edc784bcf124b48b124958bda6892cbbe7d-1251589760</a> In fact out of the 9 offerings from SoftOrbits.com only 4 applications scanned 100% clean at VirusTotal, the rest scan as containing a trojan or adware. Sorry I didn't see this sooner, Regards, Damian Tailteann on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-63040 Thu, 27 Aug 2009 17:03:52 +0000 Tailteann 63040@http://www.giveawayoftheday.com/forums/ I'm not an expert but I've had good luck with the free version of Malwarebytes and recommend it highly. I'd up-date all my anti-virus/anti-spyware program definitions and then run complete scans, one after the other with Malwarebytes first, in safe mode (F8). I think you can download a free trial of the -paid version- of Avast (that has a boot time scanner) and then delete it or subscribe after 30 days...but you'd have to check first. GMMan on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-63014 Wed, 26 Aug 2009 21:40:52 +0000 GMMan 63014@http://www.giveawayoftheday.com/forums/ It's probably not Induc as it won't say Windows Security. Instead, it'll infect other Delphi projects and is relatively harmless (from what I heard). ants on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-63013 Wed, 26 Aug 2009 21:04:04 +0000 ants 63013@http://www.giveawayoftheday.com/forums/ Hello, Terri218 What was the infection name Avira showed? It may be possible to look what it was in the 'virus vault' if Avira has one. Did you install Gold Audio Suite from August 21, 2009? It had a .dll ´infected by "win32:Induc" before updating the build. look here for more: <a href="http://www.giveawayoftheday.com/forums/topic/719/page/6" rel="nofollow">http://www.giveawayoftheday.com/forums/topic/719/page/6</a> <a href="http://blog.avast.com/2009/08/19/win32induc-new-concept-of-file-infector/" rel="nofollow">http://blog.avast.com/2009/08/19/win32induc-new-concept-of-file-infector/</a> watcher13 on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62769 Sat, 22 Aug 2009 23:12:52 +0000 watcher13 62769@http://www.giveawayoftheday.com/forums/ I rarely ever do facebook, so I'm no expert. I have heard about that, however, though most of what I've heard about facebook security is good. My guess is they simply can't keep up with everybody, since there's SO many pages. Terri218 on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62767 Sat, 22 Aug 2009 22:36:57 +0000 Terri218 62767@http://www.giveawayoftheday.com/forums/ I'm pretty sure these things are coming from Facebook. I've been staying off of it but today I was on it (trying to win the free game) for a few minutes and the warning came on right after that. No more Facebook for me on this computer. Terri218 on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62766 Sat, 22 Aug 2009 22:33:25 +0000 Terri218 62766@http://www.giveawayoftheday.com/forums/ I'm glad I trusted my instincts and didn't click on the initial warning. watcher13 on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62757 Sat, 22 Aug 2009 20:40:01 +0000 watcher13 62757@http://www.giveawayoftheday.com/forums/ Terri, I'm assuming GM's right. The only thing with that name in Windows is Windows Security Center. I'm also assuming you've seen that and that's not what you're talking about. But, to be sure we're on the same page, Security Center is a Control Panel program that is shown as Security in the new Control Panel or as Security Center if you use the Classic View of the Control Panel. Again, in case you're not familiar, all Security Center does is warn you if all of your security devices are not on and using optimal settings. In other words, are your firewall, your anti-virus amd your anti-malware (at least Windows Defender. Security Center doesn't always detect every AV and anti-spyware) all turned on; and are you using other optimal settings? That's such as using Protected Mode in IE and using your User Account Control in Vista. If any of these things get disabled, the Security Center is supposed to warn you (and usually does). As GM rightly says, it does do any scanning or malware monitoring. <a href="http://en.wikipedia.org/wiki/Windows_Security_Center" rel="nofollow">http://en.wikipedia.org/wiki/Windows_Security_Center</a> On the other hand, if you were surfing and had a page or dialog box saying something line "Windows Security alert" and "you computer is infected with dangerous programs" this, as I'm sure you've guessed, is a dangerous malware "spoof" (what a polite word for such a nasty attempt to hack you) and they're trying to get something malicious on your computer. They're might be a 3rd party scanner with that name, but I can't find one by searching. Unless you're talking about Windows Live OneCare or the Malicious Software Removal Tool, it's almost certainly malware. MS just doesn't use that term that way. I'd say you either didn't get it cleaned off last time, or you've got infected by a new one. Unless it's a Windows Defender alert, but I doubt that and it would say Windows Defender. I'd run a couple of scanners. Avira maybe got everything. The popup might just have been trying to trick you into redownloading or downloading another one of these spoofing malwares. Avira may or may not have gotten it. Myself, I just use Avira and Defender and, if I suspect a problem, I'll use an online scanner, like Kaspersky, or Windows Live, or BitDefender (although that leaves a little persistent junk on your system). You might want to get a 2nd scanner, you can scan with as many as you want. The only problems can come from more than one doing active monitoring. That's one of the things I like about Defender. It really isn't much protection, but it doesn't fight with Avira, and it's good about preventing programs from dropping "run at startup" keys in my registry. So, if you already have it, I'd turn it on and also scan with it. HappyPerson on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62753 Sat, 22 Aug 2009 19:43:35 +0000 HappyPerson 62753@http://www.giveawayoftheday.com/forums/ OOPS, I misspoke....my original post on Rogue Security programs and 2009 recommended Anti-Virus programs was in the Software Talks forum. So very sorry about that. Cheers, Happy Person HappyPerson on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62752 Sat, 22 Aug 2009 19:41:46 +0000 HappyPerson 62752@http://www.giveawayoftheday.com/forums/ Hi Terri & Other GOTD members, Below is a post I listed in the Software Talks forum - this is right on topic with your question about viruses, and GMMan's response about rogue security programs: This may not address your specific issue, but it may give you some useful tips/hints. The link to my original post (in General Discussion forum) is below (hope this helps): _______________________________________________________________________________ <a href="http://www.giveawayoftheday.com/forums/topic/6027">GOTD Forum Post About Rogue Security Programs and Top-Ten 2009 Anti-Virus Programs.</a> Best regards, Happy Person GMMan on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62750 Sat, 22 Aug 2009 18:38:27 +0000 GMMan 62750@http://www.giveawayoftheday.com/forums/ I'm assuming you've got a rogue security software. Windows itself will never tell you about infections, unless it's Microsoft Malware Removal Tool. Try going to some online scanners and see if you can clean it up. Check this page out: <a href="http://www.computing.net/answers/security/windows-security-virus/22816.html" rel="nofollow">http://www.computing.net/answers/security/windows-security-virus/22816.html</a> Terri218 on "Virus question" http://www.giveawayoftheday.com/forums/topic/6030#post-62741 Sat, 22 Aug 2009 16:59:24 +0000 Terri218 62741@http://www.giveawayoftheday.com/forums/ Today for the first time EVER I received a warning from Windows Security saying my computer had been infected and listed about 6 items. I then got a warning from Avira with only one listed and deleted that one using Avira. I was nervous about accepting the Windows Security "fix" because when I got the bad virus about 6 weeks ago, it masqueraded as being from Windows Security. I ran a full scan using Avira and it came up clean. Then I turned off my computer for a while. Does anyone think there is anything else I should do at this point or do you think I'm OK? Should I run a full scan through Windows Security? I'm assuming that since I shut off my computer, the one showing on my system is the legitimate one. Thanks for all your help.