Chip 2003 February

home *** CD-ROM | disk | FTP | other *** search

/ Chip 2003 February / Chip_2003-02_cd1.bin / sharewar / slunec / app / 3092_4438.exe / {app} / Includes / Hijackers.nfo < prev next >

Wrap

INI File | 2002-11-11 | 8KB | 202 lines

[AllCyberSearch] Company=Unknown Product=AllCyberSearch Threat=Browser hijacker CompanyURL=http://www.allcybersearch.com/ CompanyProductURL= CompanyPrivacyURL= Functionality=Redirects IE standard search pages to the AllCyberSearch search page. Same Family as EzCyberSearch and GoCyberSearch (which is also listed as AllCyberSearch). Includes also TinyBar which seems to be the same page. Privacy=Couldn't find a privacy statement Description=There is no privavy statement on their website, so nobody knows what they data they collect and what they use it for. EditDate=20021020 [GoCyberSearch] Company=Unknown Product=GoCyberSearch Threat=Browser hijacker CompanyURL=http://www.gocybersearch.com/ CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy=Couldn't find a privacy statement Description=There is no privavy statement on their website, so nobody knows what they data they collect and what they use it for. The list of keywords is unprotected at http://www.gocybersearch.com/searchbar/log-clicks-bar.csv . The same directory also contains some scripts giving statistics to everyone who wants to look at them. EditDate=20021020 [Cool-XXX] Company= Product=Cool-XXX Threat=Browser hijacker CompanyURL=http://www.cool-xxx.net/ CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description= EditDate=20021020 [Duolaimi] Company= Product= Threat=(Unverified) Browser hijacker CompanyURL=http://www.duolaimi.net/ CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description=According to the CEXX forum, resets start page to use duolaimi.net as a forwarder to the real start page, and locks the start page settings. Clicking on a category on duolaimi.net also opens a hidden window doing some very memory-intensive script operations. EditDate=20021020 [IStartHere] Company=Istarthere Product= Threat=(Unverified) Browser hijacker CompanyURL=http://www.istarthere.com/ CompanyProductURL= CompanyPrivacyURL=http://www.istarthere.com/static.php?pg=privacy Functionality= Privacy= Description=Sets IE start page, uses an unidentified ActiveX component to uninstall settings. EditDate=20021020 [PassThisOn] Company= Product= Threat=Browser hijacker CompanyURL=http://www.passthison.com/ CompanyProductURL= CompanyPrivacyURL=http://www.passthison.com/ Functionality= Privacy= Description=Asks you continously to set your IE start page. More info at http://news.com.com/2100-1023-253074.html?legacy=cnet EditDate=20021020 [RocketSearch] Company= Product= Threat=Browser hijacker CompanyURL= CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description=Asks to be set as start page when visiting http://www.netperception.com/ , currently for sale. EditDate=20021020 [UnderageHost] Company= Product= Threat=Browser hijacker CompanyURL= CompanyProductURL=http://www.loading-lolita.com/ CompanyPrivacyURL= Functionality= Privacy= Description=Silently sets itself as IE start- and search pages (furthermore done by a file on every system start), and adds some favourites. Anyone visiting the site that installs it is sick! EditDate=20021020 [SuperSexPass] Company= Product= Threat=(Unverified) Browser hijacker CompanyURL= CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description=Redirects MSN search for URLs that could not be resolved. EditDate=20021020 [NetzAny] Company= Product=NetzAny Threat=Browser Hijacker CompanyURL=http://www.netzany.com/ CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description= EditDate=20021020 [FindTheWebsiteYouNeed] Company=FindTheWebsiteYouNeed Product=FindTheWebsiteYouNeed Threat=Browser Hijacker CompanyURL=http://www.findthewebsiteyouneed.com/ CompanyProductURL= CompanyPrivacyURL= Functionality= Privacy= Description=Seems to install using some exploit - user doesn't get asked, but on next IE start, start & search pages are set. EditDate=20021020 [7FaSSt] Company=EMERgency Twenty Four, Inc. Product=7FaSSt Search Threat=Browser Hijacker/BHO CompanyURL=http://www.7search.com/ CompanyProductURL=http://7search.com/fasstsearch.htm CompanyPrivacyURL= Functionality=Search add-on for IE Privacy=From the License Agreement:%0D%0A"You are in full agreement that to gather the information necessary to provide our Information service requires our Software to gather URL and duration information of all web sites visits by the person using your computer while browsing the Internet. This information is then transferred to our database in order to provide you and other users with our 7FaSSt Search (tm) traffic reports. You are in full agreement to the transfer of any and all information necessary to provide the 7FaSSt Search(tm) services to others." Description=Storing the tracked data in a database is bad enough, but what is meant by the last sentence? Transfer of all data to make the search engine services available to /others/?.%0D%0AAfter installation, the user is asked to enter user name and email address as if that would be necessary for use. EditDate=20021020 [CnsMin] Threat=Browser hijacker CompanyURL=http://www.3721.com/ EditDate=20021020 [System1060] Threat=Browser hijacker Description=Set of files that do everything to appear as system files. Named taskmgr.exe and twunk_64.exe, both even have the original Microsoft description in their properties, but they don't have the original functionality. Instead, they begin phoning home on system start. EditDate=20021020 [Xupiter] Threat=Browser hijacker/BHO Description=A hijacker that comes with it's own IE toolbar. CompanyURL=http://www.xupiter.com/ CompanyProductURL=http://www.xupiter.com/ EditDate=20021020 [RapidBlaster] Threat=BHO Functionality=Offers porn Description=Runs in background and connects in short intervals to the internet. CompanyURL=http://www.rapidblaster.com/ CompanyProductlURL=http://www.rapidblaster.com/ CompanyPrivacyURL=http://www.rapidblaster.com/privacy.html Privacy=For your convenience, Rapid Blaster auto installs new versions of the download to ensure your software is working to its highest capacity.%0D%0ARapid Blaster is not responsible for the privacy policies or the content of websites that are using the Rapid blaster.%0D%0ARapid Blaster reserves the right to modify this Privacy Policy, as well as the other Terms of Use, from time to time, without notice. [SearchAndBrowse] Threat=BHO/Hijacker Company=WebEnhancement Corp. companyURL=http://www.searchandbrowse.com/ CompanyProductURL=http://www.gtawarehouse.com/ Description=Installs a new toolbar upon leaving page. %0D%0ASee more information here: http://and.doxdesk.com/parasite/SearchAndBrowse.html [FriendGreetings] Threat=Malware Company=Permissioned Media companyURL=http://www.permissionedmedia.com/ CompanyProductURL=http://www.friendgreetings.com/pickup/pickup.aspx?code=%recipient%&id=%code% Description=Upon installation, sends mails to all people on your email contact list. See also http://vil.nai.com/vil/content/v_99760.htm [WebEntrance] Threat=Hijacker Company=Morfit CompanyURL=http://www.3dstate.com/ (???) CompanyProductURL=http://www.web-entrance.com/ [SearchBy] Threat=Hijacker CompanyURL=http://searchby.net/ companyProductURL=http://www.ultimatepopupkiller.com/ CompanyPrivacyURL=http://searchby.net/whyhomepage.html Description=The browser start page gets reset to this page if you install Ultimate Popup Killer from their homepage for free. To get rid of it, you have to uninstall Ultimate Popup Killer. EditDate=20021109 [FreeHQMovies] EditDate=20021109 CompanyProductURL=http://www.freehqmovies.com/ Description=Pages installs dialer and hijacks IE to itself.