yes, it works great!

this converter is good and everything but becuase its not the full version it will only convert 50% of the video to my i-pod :( so whats the point of putting this on here??

I used to use McAffe Site Advisor. It said that GOTD's site was swarming with infections (the giveaway's). When I clicked more info, it had a comment from GOTD, saying that it is ok now, because they now scan it. I think thier scanner needs to be more accurate.

Sorry, never tried this out. Hadn't got time.

That's a good list, I'd say. I approve. :)

I hope GOTD starts scrutinizing their offerings a bit more as a result of this incident, at any rate. Hopefully, nothing like this ever happens again.

@Spectere - I can't really say if there have been similar cases. Some optional 'sponsor module' - maybe once, if any at all.
About the novices - like I said, there are different kinds of people. Some read what they're installing, some don't. I don't want to believe a company like Plato would distribute 'bad' spyware. Although - who knows?
Let's recap our ideas so far:
1) Nobody likes spyware.
2) You should read what you install.
3) There are two kinds of people - those who read what they're installing, and those who don't.
4) Second kind are mostly novices, and are more likely to end up in a mess of spyware.
5) As long as a 'sponsor module' does only what's stated in the EULA, it is legal.
6) That doesn't mean it will do no harm to you.
7) GOTD didn't meet their own claim, but they still offer a choice.

@KsbjA: If that is the case with the "NO ADWARE, NO SPYWARE" claim, GOAD is just being misleading. I haven't been visiting this site for very long; do you know if there have there been other cases like this in the past?

Most of the novices that I've seen tend to get tripped up and flustered when it comes to software installs. While I know I don't speak for all computer users, many of them just want to use their software. They don't care about the nitty gritty. If your mom does read through all of the information when you're not around, bless her. :) I haven't seen very many people that do that.

I would, however, like to emphasize my point about how people might know that spyware is bad but not know exactly what spyware is. If what Fubar posted is the actual EULA, it kind of makes the whole thing sound like an innocent research program. By reading a blurb like that people might think that they're participating in something good as opposed to the reality of the situation: that they're installing a piece of spyware that could potentially be monitoring, say, their online banking (not saying that RelevantKnowledge goes out of its way to do this, but the possibility still exists that it could report something a bit too personal).

#116, Phaedron, thanks for the amusing post. Clearly, you're no lawyer. There are no "differing powers". There is no "opportunistic deception" here. Clearly, you didn't read the EULA. It's remarkably concise and clear for a EULA. In fact, it's one of the shortest EULAs I've ever read (a single short paragraph). Have you ever read a EULA by say, Microsoft, Adobe, Yahoo!, etc.? You could die of old age before you finished. This EULA didn't even try to hide the bad stuff near the end, like most do. Anyone who even bothered to read the first sentence would immediately know that this was something different and potentially dangerous. Don't make public posts trying to claim that you know something of the law, when clearly you don't. Following is the EULA. Note that it very clearly states that they are going to collect as much information about you and every other user of the same computer as they can, and match that information with every database that they can get their hands on. It also clearly states that they are going to collect information about your hardware and software, and your use of any applications on your computer. Are there some obfuscating phrases and sentences? Of course. But all the bad stuff is stated quite plainly.

"In order to provide this free download, RelevantKnowledge software, provided by TMRG, Inc., a comScore, Inc. company, is included in this download. This software allows millions of participants in an online market research community to voice their opinions by allowing their online browsing and purchasing behavior to be monitored, collected, aggregated, and once anonymized, used to generate market reports which our clients use to understand Internet trends and patterns and other market research purposes. The information which is monitored and collected includes internet usage information, basic demographic information, certain hardware, software, computer configuration and application usage information about the computer on which you install RelevantKnowledge. We may use the information that we monitor, such as name and address, to better understand your household demographics; for example, we may combine the information that you provide us with additional information from consumer data brokers and other data sources in accordance with our privacy policy. We make commercially viable efforts to automatically filter confidential personally identifiable information and to purge our databases of such information about our panelists when inadvertently collected. By clicking Accept, you acknowledge that you are 18 years of age or older, an authorized user of this computer, and that you have read, agreed to, and have obtained the consent to the terms and conditions of the Privacy Statement and User License Agreement from anyone who will be using the computer on which you install this application."

@Spectere - that is, of course, true about the “NO ADWARE, NO SPYWARE”. But then again, maybe they were talking only about 'hidden' spyware and adware, that gets installed without you even knowing about it. Maybe they rely on the users and believe they will read what they are installing. Btw, I really think the novice users are more careful and they might even read the EULAS from the beginning to the end (rather than randomly clicking 'next, next, next, install'), while more experienced users usually just click Next. I am sure, if my mom (she's kinda a novice user) had to install something without my assistance, she would read all possible information before clicking anything at all.
Of course, there are different kinds of people. GOTD did their best to give users at least a choice. I don't say it's good to implement spyware. I don't say you have to read long EULAs. I just say, be careful with what you install.

Note to Fubar: Thanks for your technical contributions, however, I detect that you're not anyone who works closely with the law. Parties of differing powers are obviously not evenly matched and the law recognises this disparity and adjudges accordingly. Complex and lengthy EULAs that are recognised as unlikely to be fully read nor taken professional advice upon come into the same ambit. The average punter needs remedies provided against opportunistic deception.

But, thanks again.

KsbjA: I agree with you to an extent, but the fact of the matter is that GAOTD, in this case, was dishonest with their "NO ADWARE, NO SPYWARE" claim with this download. Most people who use computers don't want to learn about all the little intricacies. They just want to be able to surf the web, check their e-mail, and manage whatever portable devices that they might have.

Most people know that malware is bad because they heard that it was bad. My mother, for instance, knows that spyware is a Bad Thing(tm) but if I were to ask her what it did she wouldn't be able to give me a good answer. When people see a banner from a fairly reputable site saying that something is clean they have a tendency to believe it. Even if they did read through the license agreement they probably wouldn't understand the implications of it.

Face it, GAOTD dropped the ball on this offering. I certainly blame them more than I'd blame the novice users who got burned by this.

Lol, people didn't like my previous post. Not a big surprise. They will like this one even less.
Why do people install spyware and then complain about it? It is written there what is this additional product, and a choice is offered. Read what it is, choose whether you want it. And if you just say 'Yes, yes, I don't care what it is, install it!' and afterwards 'zomg they're evil they brainwashed me so that I install their spyware', then it's not their fault. Like Joe Momma said, they don't have to give their software away for free, and if they do, say thanks, don't bash them for your own mistake. If you can read the big letters 'Do you want to install Relevant Knowledge?', you shouldn't have problems.
Go ahead, gimme thumbs down. I don't care. But think about this! Who's fault is that you don't read what are you installing?

Help - the only programme I've ever downloaded off this site and I've got myself a damn spyware programme. Can anyone tell me where I can find a programme to automatically remove Relevantknowledge? I can't do it manually. I'll happily pay to get rid of it. So much for Give Away of the day. Like being given the clap....and the next day they're giving away a Spyware remover. How fitting.

Jeez, what are you guys complaining about? You're getting the spyware for FREE, aren't you? If you don't want it, don't download it. Some people are SOOOOOOO ungrateful.

#101 Bond007

HEAR! HEAR! MR BOND !

"To add insult to injury, when this software is downloaded from plato’s site no spyware is bundled, so it seems it is a special present for GAOTD to budle the spyware with the installer!"

Okay, I can take a hint.
GAOTD removed from the bookmarks.

I'm sorry, but it's your fault if you don't even read what is that second agreement for. There are loads of programs with 'sponsor modules' out there. I didn't install the spyware. It's not a very good way for a company to earn money, but they're at least fair and offer you the choice. It really surprises me how many people just click 'next' and hope that only what they want will get installed anyways.

#14, Amy, #101, Anita, if .rm files don't show up in the Converter's file-open dialog box, try entering them (with the extension) manually. Plato Converter takes anything entered manually (I don't have any .rm files, so I don't know if it will convert correctly). BTW, Vista has something like auto-complete when you enter files (and paths) manually, which is very handy.

#95, Jeff, multiple realtime scanners are nearly always a bad idea. Since you don't give enough information, I don't know what your anti-malware scanners were alerting on. It could be the temporary installation files, which exist even if they aren't used. It could be because some of the installation files modify the memory of other installation files.

I couldn't care less how many thumbs-down I get for telling the truth. From the comments, one would conclude that the average mental and emotional age of most of the people here is about 2. To all the people who say "this never happens with other software", get real. All sorts of spyware, adware, toolbars, and browser home page and search page changes have been a part of a great many software installations for a long time. It is absolutely the responsibility of users to select or deselect the options they want (when they're given options) at installation time. It is absolutely the responsibility of users to read the EULAs before installing software. You all act like "I'm hungry, but I'm too lazy to get up and get anything. Would you bring me some food? Oh, and I'm too lazy to feed myself. Would you spoon-feed me?" #97, TK, and some others, get real. No crimes have been committed. To the people who say "I know better, but I have some non-techie friends and relatives who don't", they need to learn basic computer security. The Internet is a dangerous place. If you're behind the wheel of a car, you don't get an exemption from knowing the road rules and proper operation of your vehicle because of age or inexperience. If someone doesn't know that a received email with a subject of "Bomb her womb with your huge manhood!" is spam, how are they going to handle spam emails that appear to be from friends or relatives, how are they going to recognize phishing sites and emails, etc.? People have to learn things, they have to take responsibility for their own actions.

As I stated, when I posted my comment #11, no posts had cleared moderation. It's unfortunate that mine posted after #2. Notice the difference in tone. The bundled spyware is a non-issue, you simply decline it. None of the "OMG, GOTD is targeting me, personally, with vile and evil spyware. How dare they! I just want free, free, free stuff! I deserve free, free, free stuff! Why are they doing this to me?"

To the people who say "use a sandbox", that's a nice concept, but I find it to be generally useless. First off, the risk from this spyware is from Internet monitoring. Either the sandbox won't allow that, or if it does, the spyware may still be active (you typically only have one Internet connection, and it can't be virtualized). Typically, security software can't see into sandboxes, so you won't be alerted to malware in sandboxes. Further, I find that most software won't install into a sandbox, particularly in Vista. And most installation-trace software won't work in sandboxes (although you can get some limited information from the sandbox itself).

Regarding this spyware and VirusTotal, my comment #79 is correct, and TheBlindBat's comment #89 is partially correct. The other people who talked about VirusTotal were mostly incorrect. VirusTotal will detect virus and malware signatures (as will all decent anti-virus programs). If a GOTD .zip file has an Activate.exe, then it's encrypted. If it only has a Setup.exe, then it's encrypted. The scanners have no way to scan the contents of encrypted files. Therefor, you must have a realtime anti-malware scanner running on your PC, as I stated.

Hmmm. So this spyware business in GAOTD, is this the first time? I haven't had any before but I haven't been coming here since the beginning.

Anyway, you won't need today's giveaway, or ANY converter giveaway because you can get good converters for free. A lot of people suggest SUPER but I hate that because of it's interface. I just found FormatFactory a few days back and I think I can remove all sorts of converters I ever had (including DVD rippers) as it can convert ALL to various media file formats, iPod, PSP, 3GP, etc... even ISO to CSO.

I've just ripped a DVD with it two days ago and it was good - high quality - I can select the language track as well as the subtitles and all will be embedded in a high-quality divx/wmv/whatever. On top of that, I can even do the conversion by right-click - including converting graphic formats.

Just to share because using either SUPER or FormatFactory, you will never need ANY of these "specialized" converter/ripper tools. Why is it that these developers bother to keep on creating? To rip DVDs or to rip us off? Simple isn't it? If they can bother to rip us off, what's a bit of spyware to them, eh?

BTW, FormatFactory also seems to do some phoning home but I think it's to check for updates. Well, can someone help verify?

FWIW... The key in the readme file works on the trial version, which also works with Universal Extractor - ONLY files present were those for the program. That's not saying other comments were right or wrong - I have no idea.

Otherwise, if you want info on Relevant Knowledge, including what it installs, where, I suggest:
[http://ca.com/us/securityadvisor/pest/pest.aspx?id=453097949]

I just want to thank you for your wonderful software. I had a major system crash and had to totally restore my hard drive, so I lost all the programs I had accumulated. I can't tell you how much I miss them. I could never afford to buy them all. I just wanted you to know how much I do appreciate your offerings! And I'm on the lookout again!

I too got the ad/spy-ware warning from 2 different programs protecting my system. I immediately quarantined the app and rolled it back off. This is VERY bad practice for 2 reasons...1) including it, and 2) not disclosing it in the first place. To me this is tantamount to trying to sneak a peak over my shoulder and steal my bank account number while I write a check! HUGE thumbs down!

The description says it converts rm files. I installed it (without the spyware) but rm doesn't show up in the file types.

I have found that a lot of free software has built in spyware, the way around it , is you use the free anti virus called AVAST from avast.com, it DELETE'S offending spyware completely from your PC before the install is even complete, so this way your PC is not infected

Hello, Mrs Moneypenny speaking.
Mr Bond is underway on a delicate mission through China. The authorities have specifically prohibited him from using the internet during his stay in that country. I have order to deliver precisely what he wants to tell you, Jim Stone, comment 002. To be honest, his thoughts appear to me pretty sophisticated. But ... never mind, geeks.

"You find it very disturbing, Jim, that GOTD would feature a program and a company that would exhibit such scummy behavior? Oh my dear, hasn't the evilness of man trickled down to your mind yet?! Let me explain what's behind all this. I feel a touch of irony that the current Olympics fit perfectly into that play. Reminds me of some scenarios of mine ...

Draw a line beginning in (1) Berlin 1936 , going further to (2) Moscow 1980 and ending in (3) Beijing 2008. These three only were the Games when the Olympic spirit was sacrificed to totalitarianism.

Add to (1) the name Zuse , to (2) CCCP Games("Some company") , to (3) Plato Software (located in China's capital).

Nice mixture of poisened swill, baahhh!!
In this case it won't matter if you drink it shaken or stirred.

G.S.T.Q.,
JB"

Hey #11 thanks for that website!!!!

I use Comodo firewall pro. it is free and is 3rd on the charts. I highly recommend it.

On to the giveaway... thanks but no thanks there are many other converters that do the same thing better. Plus I own a Creative Zen and I still have not found a converter that supports it.

Thanks Anyways

ok #91

I think the developer doesn't seem to care about their customers. It's normal to sometimes see spyware bundled with free software, but I've never seen spyware in commercial software and developers shouldn't include spyware in software you have to pay for.
Btw, you can deinstall the included spyware by deleting rk.exe somewhere within windows folder.

I personally do not trust the decline spyware install option. I downloaded after reading the many posts just to check it out. It seems that 2 out of the 4 virus monitoring applications that I use (lol), registered it as being a harmful program even after I declined the spyware install. Thanks GAOTD, but I am a little nervous about what you guys are releasing now a days.

Oh and another thing:
For everybody who whines about "another converter?"
They all convert different things, people.
They're split up to maximize profit for the developer, but you can't get just one.

So don't go after GAOTD on that score. It's unfair.

When the software isn't riddled with spyware, as it is with this one provider, a rarity, it's the best tryout deal you'll ever get.
The converters are probably the best offerings you'll get here and I appreciate them.

For those of you who do not visit the forum, here are the only comments about today's giveaway:

Today's (8/17/08) giveaway, Plato iPod PSP 3GP Converter (http://www.giveawayoftheday.com/plato-ipod-psp-3gp-converter/) contains spyware called "RelevantKnowledge".

There's no need for a detection scan as it actually pops up a screen *telling* you this at the beginning of the install (albeit in tiny print).

You can find more information about this particular spyware at http://www.benedelman.org/news/062907-1.html among other places.

According to the message at the beginning of this topic, "The GOTD Team do scan the giveaways prior to making them available, using multiple tools, and take every precaution to ensure that giveaways are virus, spyware or malware free."

I really find it hard to believe that they're really checking for malware if they missed something *this* blatant. Simply reading the text on the first install screen would have alerted them.

Meanwhile, there's been no response from the GAOTD admins despite the multiple warnings of spyware in the comments.

How many people got infected with this garbage because they downloaded and installed it before my warning -- it's the second comment -- got out of the "awaiting moderation" stage and became visible? For that matter, there are probably still people installing it without reading the comments first.
Posted 7 hours ago #
#

GAOTD lover to hater in 1 day
Member

As jstone says: "Today's (8/17/08) giveaway, Plato iPod PSP 3GP Converter (http://www.giveawayoftheday.com/plato-ipod-psp-3gp-converter/) contains spyware called "RelevantKnowledge".

There's no need for a detection scan as it actually pops up a screen *telling* you this at the beginning of the install (albeit in tiny print)."

This has totally destroyed my confidence in GAOTD. Despite their claims, they obviously DO NOT check the software carefully enough. I have recommended this site to several non-technical friends and now I'll have to advise them that it can no longer be trusted.

As of now GAOTD is gone from my bookmarks. Some may say that it's only one instance but that is one instance too many. A sad day indeed.
Posted 2 hours ago #

Here is the relevant(no pun intended)point, aptly put by #87 ALF
"I think Giveawayoftheday should make a statement, what their angle is in all of this. Failing to do so will easily been seen as disrespecting and neglecting there (sic) visitors".

#89 should read

"The forum set up here is a (insert adjective here)joke."

Went to the forum section to discuss this problem. The forum set up here is a (insert adjective here).

WTF

I know, not a productive comment. It is out of frustration.

Warning, DO NOT DOWNLOAD AND INSTALL. It install (by default) RelevantKnowledge spyware. Your normal add/remove program will not show it, but it puts up an icon in the toolbar. Very annoying and I hope GAOTD will be warn this in the future.

Spiritwolf, many malware scanners can't see an embedded virus/trojan/etc in an installation package until it is unpacked, usually by the installation itself. When compressed/encrypted in the installation package it's invisible to most scanners.

Scanners are designed to pick up on potential harmful code once it's in its true state--uncompressed and ready to execute. The monitor then intercepts it before it can execute and prevents harm to your computer. This is why uploading the installation file to this VirusTotal site couldn't detect it. Scanners monitor in real time watching for malicious files in their ready-to-execute state and they also watch for potentially harmful behavior in code that tries to executes (encrypted or 'morphing' code has to decrypt itself before it can execute).

You need a real time scanner running in your system for true protection from malware. Scanning installation executables will not do. When they execute is when this malware reveals itself and this is what the plethora of various scanners are detecting as reported by GAOTD users.

5:58 PM 8/17/2008
A-Squared informs:

File properties:
File name: rkinstall.exe
Description: RelevantKnowledge
Company: TMRG, Inc.
Version: 1, 0, 0, 78
Copyright: Copyright ?2007

Process details:
Run as service: No
Started by autorun: No

I will comment on the software offered today which partly is spyware. So this is very much ON topic.

It is not a far fetched statement that nobody likes giving away private information on internet while not knowing they do.
In fact this does happen all the time where marketeers try to profile you as an inertnet visitor. Of course you still don't have to like that.
As soon you have the ability to stop that you would be inclined to do so.
As soon as spyware is installed on your, no it is 'YOUR', pc you have a good change to do something against it. First of all trying to prevent a spyware infection, using all kind of security measures and procedures.
This makes many malware going to be stealthy applications.
But if you are going to be informed and you give your approval it is in fact a form af informed consent, making you responsible for what you approved.

This type of reasoning is what RelevantKnowledge uses to claim to be innocent of any type of mal intent.
Would a 'You agreed, don't complain'-type of reasoning keep up against moral aor even legal standards?
I don't think so, because it is also a known fact that many people don't read all the blablabla on installation.
Yes, that is not a good thing, but still a well known fact, as even this site demonstrates daily when people do not read the readme file.

Bearing knowledge about this fact, would it be sufficient to ask consent only by an 'opt out/opt in' after numbing the reader with lenghty and boring blablabla while being concentrated on installation of something (the converter ;-) very much wanted?
I don't think so and I'm sure the spyware maker does so too, taking advantage of that. I think such a spyware maker is to blame for this.

So first of all it is to blame to RelevantKnowledge. Secondly it is to blame to Plato because they bundel this with their product. The installer asking for your concent shows you that Plato does know about this.
And then there is Giveawayoftheday. Did they know this? Did they agree that this was OK? Or didn't they know and feel terrible about this too. Should they have tried them self, especially while claiming 100% not to offer spyware. Did they try and miss it? Didn't they try and is this a case of neglect?
Giveawayoftheday can not hide behind 'You agreed, don't complain'-type of reasoning either (nor can RK nor can Plato), not with the claim of not offering any spyware. Ofcourse every visitor has their own responsibily, but this is not like just surfing the internet. This is about luring and misleading though, against what people want, harming them in their privacy, which is really their own.

These are serious things.
I think Giveawayoftheday should make a statement, what their angle is in all of this. Failing to do so will easily been seen as disrespecting and neglecting there visitors.

I'm disappointed that a piece of software would be offered that contains even the possibility of spyware being installed. Those who have suggested that the end user is ultimately responsible have a good point - we should read what we agree to. In spite of that, however, it is extremely disappointing that software that is clearly bundled with dangerous spyware would even be offered by the GOTD site. If they take their own promises seriously, they will remove this program from being offered.

I downloaded and installed this even though I already have a converter... This is my first time visiting this site, and the one thing I don't like about this software promo (aside from the fact they try to sneak spyware in there) is that it can only be installed while in the promo period. I am rebuilding my computer in about 4 days, so I won't get much use of it before then.

Dear Spiritwolf,...
i agree with you but this software has no virus. It comes bundled with spy-/adware, so your virus-scan is right but its a false negative while the malware is not found. A virus is different from most malware, so your virustotal may good for a virus-scan but it scans and find only a little malware because, it is a service for virus-scanning, not specially for malware.
You go wrong, when you trust these scans, it can be only an indicator but no 100% guarantee.

@CharPaula:

As to GAOTD having an offer with spyware… Read before you click

Yeah, I read a huge and shiny 100% CLEAN. NO ADWARE! NO SPYWARE! logo right at the homepage with the product description. Yet this POS installs an extremely intrusive piece of spyware proxy. This is called deceptive advertising no matter how "free" this offer is, and involves legal liability. So, what on earth are you babbling about?!

#55 john oving

You are right on the mark when you say. "IT MAKES ME WONDER WHAT GOTD HAS BEEN UP TO ALL ALONG"

Makes me wonder too. As so many other posters are wondering.

It's not like this is the first time that GOTD software has had spyware virus, trojan, malware, spyware etc.

This particular offering is most offensive as to what the spyware does.

I used to look forward to coming here each day because it was fun to see what might be offered. I downloaded a few things some good, or so I thought, and a few bad. I wasn't here to get everything I need to operate my computer. Just some odds and ends to play with.

It makes me wonder now if what I have already downloaded has some hidden agenda which has not yet revealed itself.

I'm not afraid to spend money on software I really want. Like I said this sight was just for fun.From this offering and the comments being seen here I believe that GOTD will lose many of it's following.

It's just disappointing that such a good idea , GOTD, has now become a concern for suspicious activity.

It is good to see so many comments here calling GOTD to task. Wish all of you freedom from attack. GOOD LUCK !

WILL THEY LISTEN? WILL THEY RESPOND?

TIME WILL TELL !

Wow - a lot of carping about repetitive software titles and so on, starting at COMMENT #3 and then just piling on from there. Just an FYI - new people arrive every day and they did not see the previous offerings you saw. Hopefully they won't come to feel any sense of entitlement to "exciting never-before-seen freebies" that so many here have.

GOTD offers a pretty nice service, and more often than not the titles are not my cup of tea. When I'm not interested in the title offered, I MOVE ON TO THE REST OF MY LIFE and try to check back the next day.

Just a thought, folks - get over yourselves!

Now to the software at hand - STUPENDOUS! Thanks very much, GOTD!

:-)

Mark

While I have to agree that seeing the same stuff over and over sucks, you have to remember that not everybody has access to this site ( especially if they don't know about this site yet ), so they don't get to download any special offers.

One good thing about seeing the similar software showing up again, is that if you missed one of the days where they were giving away software like it for free, then you now have another chance at downloading one like it. While I really don't want to sit here and say that people are selfish in doing that, because it annoys me sometimes too, it's clear that some people are only thinking about themselves when commenting things like that, just because you don't have something new to download.

Think of this way: If this site didn't do anything like this, whether it was the way you wanted it or not, then you might not have had access to free programs/software that you've downloaded. At least they are giving you the chance to download free stuff, so quit complaining people, and show a little thanks.

As usual, I'm astonished by most of today's comments. Most of you shouldn't be allowed near computers.

If you accept license agreements without reading them, that's your fault. If a license agreement said "By accepting the terms of this license, you agree to give us your left arm, right testicle/breast (as appropriate), and your firstborn", most of you would gleefully click "I accept". There's nothing sneaky or underhanded about today's offering. The license agreement clearly informs you that it's going to install spyware which collects as much information about you as it possibly can, and that they are going to do whatever they want with that information. It clearly states the companies involved in the data collection. That's not enough information for you to make a decision? You have to do a bunch of "research" to determine whether that's a good or bad thing?

So, despite the clear terms of the spyware license agreement, most of you click "I accept" anyway, and then you complain because your anti-malware software (the few of you running any) gives you alerts.

As I said, all you have to do is click "I decline". How hard is that? "Oh, I can't trust them, it might install spyware anyway". Statistics show that most GOTD visitors are first-timers, so many of you may not know that I frequently post here. I do a trace of everything I install, and Plato Converter's installation was clean, as I stated back at comment #11. Also, my security software is significantly better than what most people here use, based on what they report they're using. Most of you who think you have good security software have essentially zero protection. Someone asked my opinion of Emsi products on their last giveaway. I'm hesitant to get into the pros and cons of various security products because it's a complex issue, and many people here don't have any security software. Here's my opinion: Emsi products suck.

#73, 74, Spiritwolf, it's nice that you're trying to be helpful, but there's no need for such lengthy posts, and you need to learn some more about malware and scanners. There's no need to report known malware to various organizations. The GOTD Activate/Setup file is encrypted, so it does no good to scan it. You should use excellent realtime protection, and upload suspicious installed files for checking. VirusTotal only checks signatures of known malware, it doesn't install the software and can't check for malware behavior, nor can it check for the damage that most software installations do.

There is no doubt that on-line virus services are invaluable - I use them myself, particularly since the AVG I use is somewhat known for giving false positives.

ON THE OTHER HAND, this online service result (#74) could suggest that all this "whining" is without merit. Might I suggest that the RK spyware might be downloaded after "selecting" the "I accept", so that it would simply not be found in the program proper?

I can assure you that RelevantKnowledge appears this very minute in Zone Alarm Program Control and sits there "pretty as you please". Which in my opinion is not so pretty. I changed its settings there to four "x"'s to block it from doing anything.

Maybe I can say something in Plato Software's favor, which, at least today, is almost against my religion. I uninstalled the program (today's offering) and ran CCleaner. CCleaner did not seem to mention anything about Relevant Knowledge. Then I re-installed, this time clicking "Deny". As a result, possibly, a search, a few minutes ago, in the windows directory for "rlvknlg.exe, rk.exe and rlls.dll" produced no results.

So, I might be able to conclude that if you re-install the proggie, and select "Deny", the previous install of RK may be removed as a result. Sounds almost "pie in the sky", but it would be nice to believe it. Feedback from other (likely unwilling) participants would be useful.

(It could be that my reasoning is flawed. So if it should be corrected, anyone who has worked with this should please feel free to chime in.)

Good luck to us all.

@Spiritwolf-#74:
You are making a major mistake here. Not every program with mal intend can be found by a virus- or malwarescanner.
I could make some code to try for you (only using genuine api calls provided by windows itself, rearranging your partion tables or whatever nasty stuff)) where no scanner would blow a whistle and yet your puter would be severely harmed at execution.
Normally malware tries to be sneaky and uses uncommon ways to achieve things. This is the behaviour that makes scanners blow the whistle. If malware wasn't doing that you would find it and remove and/or block it.
The spyware we're talking about now, is not hiding at all, will not be coded in suspicious ways, and will not alarm a virusscanner only by behaviour (by signature would be very much possible).
This spyware lures you into giving your approval in being installed and being functional.
You cannot ignore the fact that at installation it even tells you it is doing so (though I can very much understand many people would have missed that, the spyware makers understand that too).
It is there, no virustotal 3245 scanners can deny that.

When I installed Plato, I chose to decline its offer to install Relevant Knowledge and Plato installed fine and registered fine.
So far, I've found no evidence that RelevantKnowledge installed after I declined the offer.

I wonder if the developer included RelevantKnowledge and then took it out or what, since all but one scan engine reported Plato as clean.

Incidentally, the zip file also scanned clean with Spybot Search & Destroy. SaferNetworking is the developer of Spybot S&D.

Here is the link to SaferNetworking's Spyware & Adware Removal Database, RelevantKnowledge is one of many entries here.
http://www.safer-networking.com/spywaredatabase.php

You have to be careful too, to make sure to avoid Rogue Antispy/Antivirus programs or scanners too, when you google for info, scans, etc!
Best Rogue database I've found so far, which includes links to other databases
http://www.spywarewarrior.com/rogue_anti-spyware.htm

Spiritwolf, the installation tells you that you are installing Spyware that will view EVERYTHING you do, even on secure pages. It states that your personal financial details such as your bank card numbers will be recorded and logged. This is, as such, NOT a false positive and the virustotal.com site is not really the best tool for detecting spyware as many of the anti-virus programs listed have separate programs for detecting spyware rather than viruses which is specifically what Virus Total is for - the 2 are separate entities.

VirusTotal report for today's Giveaway

File has already been analysed:
MD5: b08486eb138ad156c4a6f8625467f598
First received: 08.17.2008 10:40:57 (CET)
Date: 08.17.2008 10:40:59 (CET) [<1D]
Results: 1/36
Permalink: analisis/503197cd38ca9e27247b41d29128acf5

File PlatoiPodPSP3GPConverter.zip received on 08.17.2008 10:40:17 (CET)
Current status: finished

Result: 1/36 (2.78%)
Compact Print results
Antivirus Version Last Update Result
AhnLab-V3 2008.8.15.0 2008.08.15 -
AntiVir 7.8.1.19 2008.08.16 -
Authentium 5.1.0.4 2008.08.16 -
Avast 4.8.1195.0 2008.08.15 -
AVG 8.0.0.161 2008.08.16 -
BitDefender 7.2 2008.08.17 -
CAT-QuickHeal 9.50 2008.08.16 -
ClamAV 0.93.1 2008.08.16 -
DrWeb 4.44.0.09170 2008.08.17 -
eSafe 7.0.17.0 2008.08.14 -
eTrust-Vet 31.6.6035 2008.08.15 -
Ewido 4.0 2008.08.16 -
F-Prot 4.4.4.56 2008.08.16 -
F-Secure 7.60.13501.0 2008.08.17 -
Fortinet 3.14.0.0 2008.08.17 -
GData 2.0.7306.1023 2008.08.16 -
Ikarus T3.1.1.34.0 2008.08.17 -
K7AntiVirus 7.10.417 2008.08.15 -
Kaspersky 7.0.0.125 2008.08.17 -
McAfee 5362 2008.08.15 -
Microsoft 1.3807 2008.08.17 -
NOD32v2 3361 2008.08.16 -
Norman 5.80.02 2008.08.15 -
Panda 9.0.0.4 2008.08.16 Suspicious file
PCTools 4.4.2.0 2008.08.16 -
Prevx1 V2 2008.08.17 -
Rising 20.57.61.00 2008.08.17 -
Sophos 4.32.0 2008.08.17 -
Sunbelt 3.1.1546.1 2008.08.15 -
Symantec 10 2008.08.16 -
TheHacker 6.3.0.3.052 2008.08.17 -
TrendMicro 8.700.0.1004 2008.08.16 -
VBA32 3.12.8.3 2008.08.15 -
ViRobot 2008.8.16.1338 2008.08.16 -
VirusBuster 4.5.11.0 2008.08.16 -
Webwasher-Gateway 6.6.2 2008.08.17 -


As you can see, out of a number of scanning engines, only one reported a suspicious file, which is more indicative of a false alert since only one out of many detected anything and the rest reported clean scans.

Page where report can be viewed
http://www.virustotal.com/analisis/503197cd38ca9e27247b41d29128acf5

In situations where an antivirus/anatispy program gives you an alert, I want to recommend scanning the suspect program with an online scanner such as Virus Total.

http://www.virustotal.com/

VirusTotal is a service developed by Hispasec Sistemas, an independent IT Security laboratory, that uses several command line versions of antivirus engines, updated regularly with official signature files published by their respective developers.

This is a list of the companies that participate in VirusTotal with their antivirus engines.

AhnLab (V3)
Aladdin (eSafe)
ALWIL (Avast! Antivirus)
Authentium (Command Antivirus)
AVG Technologies (AVG)
Avira (AntiVir)
Bit9 (FileAdvisor)
Cat Computer Services (Quick Heal)
ClamAV (ClamAV)
CA Inc. (Vet)
Doctor Web, Ltd. (DrWeb)
Eset Software (ESET NOD32)
ewido networks (ewido anti-malware)
Fortinet (Fortinet)
FRISK Software (F-Prot)
F-Secure (F-Secure)
G DATA Software (GData)
Hacksoft (The Hacker)
Hauri (ViRobot)
Ikarus Software (Ikarus)
K7 Computing (K7AntiVirus)
Kaspersky Lab (AVP)
McAfee (VirusScan)
Microsoft (Malware Protection)
Norman (Norman Antivirus)
Panda Security (Panda Platinum)
PC Tools (PCTools)
Prevx (Prevx1)
Rising Antivirus (Rising)
Secure Computing (Webwasher)
BitDefender GmbH. (BitDefender)
Sophos (SAV)
Sunbelt Software (Antivirus)
Symantec (Norton Antivirus)
VirusBlokAda (VBA32)
Trend Micro (TrendMicro)
VirusBuster (VirusBuster)

I've scanned several GAOTD files at VirusTotal after one of my own security programs gave me a malware alert. Most recently, my a-squared gave me an alert on a Giveaway but all but one of the virus total scan engines (VirusTotal gives you results for each engine in a list so you know which scanning engine found what result) was clean.

False positive alerts happen with all antivirus/antimalware programs, some are more prone to false alerting than others. That's why I always do a multiple engine scan before saying a file came with malware.

I also always check the developer's page before downloading a program, to see the details, faqs or other useful information, etc.

I haven't downloaded this yet because I have no use for it at this time, although I intend to download it and install it for future use should I need it, AFTER I carefully read and verify whether or not its own site actually states malware is bundled with it or not.

If anyone deserves to be criticized for malware, it's the program developer.
The DEVELOPER is the one who included malware, and is the one who could also take the malware OUT! (Providing of course, that multiple scan engine reports verify the presence of malware)

In my opinion, no reputable software developer would market their paid programs with malware bundled into them (except for Microsoft, whose dominance lets them get away with spyware being a part of their programs all the time!)

If there really IS adware/spyware/malware bundled into this program, then this should be reported to security sites such as StopBadware, CastleCops, etc.

http://wiki.castlecops.com/CastleCops
http://www.stopbadware.org/home
http://www.spywareguide.com/
http://www.cexx.org/adware.htm


Once again, it would be well worth it to bookmark this site as a very useful online free site where you can have programs multiply scanned and get a detailed report.
http://www.virustotal.com/

I must add that I've downloaded many programs from GAOTD, Game GAOTD, as well as from GAOTD's freeware collection, and so far haven't yet downloaded anything that showed malware detected by more than one scanning engine. One engine reporting malware out of a number of different engine scans findings, logically points to a false alert.

It's also wise to check more than one malware database when researching too, because some databases are more accurate and up-to-date on their information than others.

Hope this info is helpful.