AudioGalaxy virus - P2P-Zone

napho · 17-01-02, 05:17 AM

There's evidence the AG installer had the Nimda virus.

http://www.computeruser.com/news/02/01/10/news3.html

goldie · 18-01-02, 08:24 AM

Quote:

Originally posted by napho
There's evidence the AG installer had the Nimda virus.

http://www.computeruser.com/news/02/01/10/news3.html

Thanks for the warning!

Just finished reading in another thread that the spyware can be safely removed and was considering dling a newer version. I've kept version 0606 (551 kb) from a previous 10/7/2001 install hanging around. Will dust it off and continue to use it.

Whew

- hate to think I'd have been opening the gates of Hades!

multi · 20-01-02, 11:25 PM

have checkedAGSetup0606.exe(withNAV)and it seems to be OK

exerpt from link above:
The software's installer file, AGSetup0608.exe, triggered the anti-virus software of some music fans who downloaded the program Tuesday from a link at CNET's Download.com site. The link re-directs users to a download server operated by Audiogalaxy.com.

A copy of the file provided to Newsbytes by one of the affected users was confirmed to be infected with Nimda, a variant of the malicious virus that first stormed the Internet last September. The virus scans were performed using two separate anti-virus systems to reduce the possibility of a false positive

i will check the spyware freeand hopfully virus free version
wich has installer:AGSetup0606.exe
heres the read me from it
hope its ok to post this,author?
This is how to get a clean, working installation of 6.08 (without spyware):

* Install the 6.06 version of the satellite by running AGSetup0606.exe. Choose not to install Gator and WebHancer (spyware). When you're trying to run the satellite, a popup window will urge you to upgrade to the newest version. Click OK and the satellite will exit. This is OK for now.

* Copy the files AGSatellite.exe and UI.dll to the folder your satellite is in (for example C:\program files\AGSatellite\) and run the satellite. Choose "yes to all" when asked to overwrite.

That's it! Now, you won't get the popup window anymore and the satellite will function properly!

Go to www.spychecker.com for a definition of spyware. It's not as bad as a virus, so don't worry, it won't damage your computer. But, anyway, it helps companies to monitor what you do on your computer and which internet sites you visit, so it's not something you want, I think.

If you've already (tried to) install 6.08, you might have spyware in your system. Go to www.lavasoftusa.com to get AdAware and use that program to remove spyware from your computer. There is one spyware program that can't be deleted by AdAware (yet). To delete it, do the following:

* Go to Start - Run regsvr32 -u C:\windows\vx2.dll (on Windows 9x/ME) or regsvr32 -u C:\winnt\vx2.dll (on Windows 2K)

* Restart your computer

* Go to C:\Windows and delete vx2.dll

wateengedoe2
will scan 4 virus andBBL-multi

Malk-a-mite · 24-01-02, 03:31 AM

Sorry - asleep at the wheel here.

http://www.cexx.org/vx2.htm

"Advertising Spyware: Blackstone Data Transponder and its derivatives"

Info on how to remove and what it is.

napho · 25-01-02, 05:05 AM

Now we find out there's a file called vx2.dll that spies in an insidious way. It even knows what you put on forms(like credit card info).

http://www.wired.com/news/technology...,49960,00.html

TankGirl · 25-01-02, 05:48 AM

Quote:

Originally posted by napho
Now we find out there's a file called vx2.dll that spies in an insidious way. It even knows what you put on forms(like credit card info).

http://www.wired.com/news/technology...,49960,00.html

The case of VX2 is a good example how uncontrolled things can become if you allow (knowingly or unknowingly) any spyware in your computer. It is scandalous how both AudioGalaxy and OnFlow deny knowing anything about VX2 even if it was installed with their software and somebody paid money to have it installed. How do you like the idea of having your private and confidental information - not only surfing history but perhaps even your passwords - to a third party that nobody seems to know anything about:

Quote:

The only contact information available on the company is a Hotmail address and a post office box in Las Vegas, Nevada. The address belongs to a company that specializes in setting up corporate shelters. E-mail to the Hotmail address went unanswered.

It is bad enough that big commercial vendors like Microsoft push out products with numerous security holes in them... if you want things not to get any worse than that zero tolerance with spyware is the only way to go.

- tg

17-01-02, 05:17 AM	#1
napho Dawn's private genie Join Date: May 2001 Location: the Canadian wasteland Posts: 4,461	AudioGalaxy virus There's evidence the AG installer had the Nimda virus. http://www.computeruser.com/news/02/01/10/news3.html

20-01-02, 11:25 PM	#3
multi Thanks for being with arse Join Date: Jan 2002 Location: The other side of the world Posts: 10,343	have checkedAGSetup0606.exe(withNAV)and it seems to be OK exerpt from link above: The software's installer file, AGSetup0608.exe, triggered the anti-virus software of some music fans who downloaded the program Tuesday from a link at CNET's Download.com site. The link re-directs users to a download server operated by Audiogalaxy.com. A copy of the file provided to Newsbytes by one of the affected users was confirmed to be infected with Nimda, a variant of the malicious virus that first stormed the Internet last September. The virus scans were performed using two separate anti-virus systems to reduce the possibility of a false positive i will check the spyware freeand hopfully virus free version wich has installer:AGSetup0606.exe heres the read me from it hope its ok to post this,author? This is how to get a clean, working installation of 6.08 (without spyware): * Install the 6.06 version of the satellite by running AGSetup0606.exe. Choose not to install Gator and WebHancer (spyware). When you're trying to run the satellite, a popup window will urge you to upgrade to the newest version. Click OK and the satellite will exit. This is OK for now. * Copy the files AGSatellite.exe and UI.dll to the folder your satellite is in (for example C:\program files\AGSatellite\) and run the satellite. Choose "yes to all" when asked to overwrite. That's it! Now, you won't get the popup window anymore and the satellite will function properly! Go to www.spychecker.com for a definition of spyware. It's not as bad as a virus, so don't worry, it won't damage your computer. But, anyway, it helps companies to monitor what you do on your computer and which internet sites you visit, so it's not something you want, I think. If you've already (tried to) install 6.08, you might have spyware in your system. Go to www.lavasoftusa.com to get AdAware and use that program to remove spyware from your computer. There is one spyware program that can't be deleted by AdAware (yet). To delete it, do the following: * Go to Start - Run regsvr32 -u C:\windows\vx2.dll (on Windows 9x/ME) or regsvr32 -u C:\winnt\vx2.dll (on Windows 2K) * Restart your computer * Go to C:\Windows and delete vx2.dll wateengedoe2 will scan 4 virus andBBL-multi Last edited by multi : 20-01-02 at 11:45 PM.

24-01-02, 03:31 AM	#4
Malk-a-mite Join Date: Mar 2001 Posts: 7	Sorry - asleep at the wheel here. http://www.cexx.org/vx2.htm "Advertising Spyware: Blackstone Data Transponder and its derivatives" Info on how to remove and what it is. __________________ Malk-a-mite =================== Insert clever .sig file here ===================

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

25-01-02, 05:05 AM	#5
napho Dawn's private genie Join Date: May 2001 Location: the Canadian wasteland Posts: 4,461	Now we find out there's a file called vx2.dll that spies in an insidious way. It even knows what you put on forms(like credit card info). http://www.wired.com/news/technology...,49960,00.html