|
-
May 13th, 2002, 03:30 AM
#1
waht the heck is this? "- encoder-crack hag-10261"
I found this very suspicious thing in c:/windows and found a site about it HERE, but it's in German. I used AltaVista to translate the page, but it did a pretty poor job.
Insights anyone, please!
TIA...
------------------
^dAvEy^
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 04:00 AM
#2
just did a quick browse of their site and I think I'd stay away (full of dialers and such) 
-
May 13th, 2002, 04:07 AM
#3
hi there IMM - thanks.
ya, I certainly didn't intentionally hook up to this thing - I got rid of the exe and a couple shortcuts - not sure what else to look for...
you think it's a trojan?
any further suggestions?
wondering if it's got anything to do with all the ZA hits I've been getting...
TIA...
------------------
^dAvEy^
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 04:44 AM
#4
dunno anything about it - could look where it makes you nervous if you can point me at where you think you got it. For example - do you think that the original download was called decrypter.exe or similar (appears to be a upx packed thingy)
[This message has been edited by IMM (edited 05-13-2002).]
-
May 13th, 2002, 04:51 AM
#5
thanks, but no clue, man
------------------
^dAvEy^
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 05:34 AM
#6
thanks again, guys...
a search for *decrypter* (included *) came up clean, johnking & IMM...
have ZA running and on ADSL...
I have never used a "dialer" on this pc, and don't plan to.
I have already dumped it, John - just looks slimy to me!
a-v comes up clean, but haven't scanned for trojans - been waiting for ANTS 3.0
>>Dialup Networking folder
searched for this too, John - do I likely even have such a directory?
------------------
^dAvEy^
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 05:41 AM
#7
didn't that site say something in German about winZip?
I found the following along this path:
C:\WINDOWS\Temporary Internet File...\X81POU7U\dialer_winzip[1].htm
------------------
^dAvEy^
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 06:04 AM
#8
Thanks John
>>Double click My Computer, the Dial-Up Networking folder is in there...
- nope, not in there
>>That is the site you posted
- um, thanks
ran regcleaner and found this little sucker in startup!
don't know how it got there or understand:
GrpConv
------------------
^dAvEy^
[This message has been edited by ^dAvEy^ (edited 05-13-2002).]
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
-
May 13th, 2002, 07:08 AM
#9
-
May 13th, 2002, 07:15 AM
#10
>>Hey Davey, you on a paranoia trip?
- haha! apparently?
look, when I find something I know nothing about like that "hag" thing, for instance, I check out stuff like startup, etc...
One thing's for sure, GrpConv hasn't been in there for long, so while looking for anything that's changed recently, I found one - apparently an irrelevant one though.
Thanks for settling me down, johnking!
Originally posted by saturnsl:
Run adaware daily.
oh, sometimes twice!
------------------
^dAvEy^
[This message has been edited by ^dAvEy^ (edited 05-13-2002).]
^dAvEy^
Wow!!! Love at first byte. Ain't it grand.
Scottlr
Registered VDr (at 50+/- yrs): 10-03-1999
Offline: 06-05-2002
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
