Not-A-Viruses->kategorija Non-Malware

1

Not-A-Viruses->kategorija Non-Malware

offline
  • Pridružio: 16 Apr 2005
  • Poruke: 2908

Malo da pojasnimo , koji su od ovih programa maliciozni, koji su benigni, sta brisati, sta ne? Kako ih bez real time protekcije uopste zaustaviti?Nije Malware a nije da nije Shocked Confused

Not-A-Viruses
1. not-a-virus:AdWare.Cydoor
The program normally contains the following files: cd_clint.dll cd_load.exe cd_htm.dll cd_swf.dll iMesh.ex The cd_clint.dll file provides the main functionality. The program is capable of working with P2P networks such as Kazaa and Imesh. The program creates the following registry keys:...

2. not-a-virus:AdWare.DigitalNames.g
This is a potentially undesirable program. It is written in Visual C++. The installer is a file of 284160 bytes, packed using PECompact. Installation When launched, the installer extracts the following files from itself. These are installed to the system directory, without the knowledge of the...

3. not-a-virus:AdWare.Look2Me.ab
This adware program is potentially undesirable. It is written in Visual C++, and packed using Neolite. The installer is approximately 580KB in size, and the DLL file which it installs is approximately 230KB in size. Installation The installer creates two copies of the dynamic link library (DLL) in...

4. not-a-virus:AdWare.WildTangent.a
This program is effectively harmless. However, it can be installed on the victim machine without the user's knowledge or consent. The program is a DLL file approximately 280KB in size, written in Visual C++. No packer is used. The file is often called wtkernel0100.dll The program is a web driver...

5. not-a-virus:JavaClass.Port25
This JavaClass.Port25 applet contains the "paint" function. This function is named after the HTML file with the same name. While starting it creates a new socket for the host www.netscape.com:25. If the connection is successful the function will display the following message: Success connecting to...

6. not-a-virus:RemoteAdmin.Win32.RAdmin.21
This program, named 'Remote Administrator' is intended to be used for remote administration. The author is Dmitry Znosko, http://www.famatech.com/. In some configurations, this program may be utilized by a remote malicious user with the owner of the computer being aware of this. Functionally,...

7. not-a-virus:Tool.Win32.AIDA.3862
This program will harvest information about the infected computer, included all system components. It incorporates tests which can be used to check system performance and functionality. It may send this data to another computer, and it's possible that this information may be used to semi- automate a...

8. not-a-virus:Tool.Win32.Reboot
This program is detected by Kaspersky Anti-Virus extended databases. When launched the program will restart Windows, and either shut down the computer or end the current user's session. It does not have any other payload, but it may be used by other malicious programs as a utility. The file name...

9. not-a-virus:Tool.Win32.RegPatch.a
This program is approximately 5KB in size (when packed) and packed using UPX. It is designed to change system registry values. The file overlay contains an encrypted (xor 90h) .REG file. When launched, the file is saved in C:\ParaTemp.reg using the following command: regedit.exe -s C:\ParaTemp.reg....

10. not-a-virus:Tool.Win32.TPE.a
This program is a patch constructor i.e. it can be used to create programs which will modify other software. It has a wide range of functionality and configuration options. The program is used to produce small (less than 20KB) EXE files, which will modify other program files and the system registry....

I zbog ovih programa, moj AV poludi Sad

http://www.viruslist.com/en/virusesdescribed?chapter=152540533



Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.
offline
  • Pridružio: 24 Avg 2005
  • Poruke: 74
  • Gde živiš: Novi Sad

Hm......nijedan spijunski program nije bezopasan. Cydoor-cest pratilac ranijih verzija Opere, zaduzen za reklame. Po meni bezopasan.
Look 2me.ab-klasican adware, s tom razlikom sto moze da skida svakojaku gamad s weba, a ponasa se i kao hijacker - vrlo nezgodan program zato sto moze da ti dovuce gomilu trojanaca, i ostalih cuda.
DigitalNames.g-klasican adware, prati sta posecujes i na osnovu toga izbacuje popapove s reklamama, - vise je dosadan nego sto je or-opasan.
WildTangent.a- web drajver, neophodan za igranje web igrica, bezopasan.
Remote administration legalan program, koristan ali moze biti opasan u pogresnim rukama, za udaljeno upravjljanje racunarom- ako ga ne koristis bolje ga eliminisi.
Tool.Win32.AIDA.3862- cini mi se da je ovde u pitanju alat za benchmarking, proverava performanse sistema i salje podatke serveru gde se uporedju je s performansama drugih racunara. Vrlo korisno.

Tools- neki od ovih alata sluze za "obradu" softvera.........
Mr. Green

Generalno moj ti je savet da svu ovu gamad obrises, ne skidaj programe koji imaju spijune, udri KAV na maximum i ne boj se. I naravno NIKAD ama bas NIKAD ne iskljucuj real-time protection.



offline
  • Pridružio: 16 Apr 2005
  • Poruke: 2908

Ako izbrisem ovaj WildTangent.a- web drajver, neophodan za igranje web igrica moci cu da igram igrice?

Znam samo da sam izludela od KAV 2006 na medium protection , ali sve tri grupe- i ad aware, riskware, non -stop izbacuje prozorce, A2 squre je pronasao par malware fajlova , to sam izbrisala, a KAV 2006 je pronasao 76 i dalje ih pronalazi, toliko dll fajlova da nije normalno Sad Shocked

Mislim, bas ovoliko?

offline
  • Pridružio: 20 Feb 2005
  • Poruke: 1715
  • Gde živiš: Beograd

offtopic
Jasmina svaka cast, a odakle tebi naprasno ovakvo interesovanje za zastitu Shocked

offline
  • Pridružio: 16 Apr 2005
  • Poruke: 2908

Ja samo imam trenutno neka pitanja, inace ja zastitu pratim bez uplitanja , oduvek, ok? Ima puno toga sto sam naucila, puno toga sto nisam znala, a da je naprasno i nije, s obzirom da je medju mojim prvim postovima jedan u zastiti, zatim jos jedan, o anty-spy programu Spy Emergency, itd...

Mislim, ja ne smem da pitam ili?

Doduse, mogu i preko PP-a da se snadjem, ali ako ce ovo i drugima pomoci, zasto da ne? Confused

offline
  • Pridružio: 27 Jul 2005
  • Poruke: 109

Kav 5 može i sa extended update-om, plus Spy Sweeper povremeni scan će rešiti tvoj problem.Kav 5 nikada me nije "davio" sa spy-jevima. I briši samo ono što ti Sweeper pronadje, Kav je sjajan ali antivirus.

...wildtangent.a da nećeš se više moći igrati na njihovom sajtu ako ga obrišeš.

offline
  • m4rk0  Male
  • Administrator
  • Administrator tech foruma
  • Marko Vasić
  • Gladijator - Maximus Decimus Meridius
  • Pridružio: 14 Jan 2005
  • Poruke: 15766
  • Gde živiš: Majur (Colosseum)

I jos par stvari da dodam:

1. AdWare.Cydoor takodje dolazi sa neregistrovanom verzijom flashget-a. Nakon registracije taj Cydoor "nestaje"

2. AdWare.DigitalNames.g smesta se u startup i pokrece se sa win-om. U registry bazi se smesta u okviru sledeceg path-a:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"dgtstart" = "dgtstart.exe"

3. Tool.Win32.Reboot se smesta u rootu sistema i nalazi se u vidu fajla pod nazivom HCW848UN.EXE

4. Predstavlja reg fajl cijim se pokretanjem vrsi izmena nekih kljuceva u reg-u.

BTW:
Citat:Mislim, ja ne smem da pitam ili?
Naravno da smes..i da pitas i da odgovaras niko ti ne sme nista zabraniti !
POz.

offline
  • Pridružio: 24 Avg 2005
  • Poruke: 74
  • Gde živiš: Novi Sad

Citat:Ako izbrisem ovaj WildTangent.a- web drajver, neophodan za igranje web igrica moci cu da igram igrice? Ne na sajtu koji koristi taj drajver. A sto se tice detekcije, ja ovoliko trojanaca nisam video u svom zivotu Shocked Nego, da ti ne posecujes neke hm.......malo zanimljivije sajtove Very Happy . I naravno koristi firefox jer je opera malo........busna.

offline
  • Pridružio: 16 Apr 2005
  • Poruke: 2908

Very Happy Mr. Green Nisam bas razumela, odnosno pravicu se da nisam razumela Mr. Green

A sto se tice ovoliko trojanaca, ja sam isto zaprepascena koliko i ti, ali da bude najcudnije od svega, nema ih u bazi podataka, pola, jednostavno ne postoji. Shocked

Da se uozbiljim , jer nije za zezanje, ovo je sve posledica mog downloada jedne male rar arhive.

offline
  • Pridružio: 14 Apr 2005
  • Poruke: 381
  • Gde živiš: Drugo ćoše levo iza Nedođije

Ako Real-Time Protection u KAV-u podidnes na maksimum nece propustati trojance. Da bi obrisala ono sto trenutno imas, najlakse je da skeniranje (On Deman Scan) podesis na maksimum, iskljucis system restore iz windowsa pa propustis KAV da ih sredi.

Ko je trenutno na forumu
 

Ukupno su 466 korisnika na forumu :: 7 registrovanih, 0 sakrivenih i 459 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: drimer, ladro, Marko Marković, Rakenica, samsung, W123, zexoni