【軟體】PAPAGO R15的安裝問題

[SunClony]

我在安裝PAPAGO R15時
卡巴KIS 7.0說我安裝的有兩個檔案有廣告軟體
一個TMC_PC.exe另一個Advertise_PC.exe
請問這個是正常的嗎?卡巴誤判嗎?
還是...?

[ㄚ一]

樣本附上來,或是自己上報
否則沒人知道是不是誤報

[lkkcrt]

Hello,

Advertise_PC.exed - not-a-virus:AdWare.Win32.AdAgent.i,
TMC_PC.exed - not-a-virus:AdWare.Win32.AdAgent.k

These files are Advertizing Tools, they are detected by
extended databases set. See more info about
extended databases here: http://www.kaspersky.com/extraavupdates

s-Wr.txt

No malicious code was found in this file.

Please quote all when answering.

--
Best regards, Denis Maslennikov
Virus analyst, Kaspersky Lab.
e-mail: [email protected]
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.



> Attachment: Virus.zip

> <DIV>&nbsp;
> <DIV>
> <DIV>&nbsp;</DIV></DIV></DIV><br><span style="font-size:13px">--- ?????HiNet WebMail ---</span>yMDA0NjlB

這是上傳給卡巴的檔案(無密碼)及回覆

[wcw]

我在安裝PAPAGO R15時
卡巴KIS 7.0說我安裝的有兩個檔案有廣告軟體
一個TMC_PC.exe另一個Advertise_PC.exe
請問這個是正常的嗎?卡巴誤判嗎?
還是...?

這二個程式小紅傘也是拚命叫，煩死人了
回報給小紅傘，沒回信

[hysz]

我的F-SECURE client security 7.01也出現相同狀況，檔案名稱:
adware win32.exe 為間諜程式`,必須移除，我也傻眼了，
很奇怪的事件，看來很多防毒軟件都發現了這個問題，該如何善後呢? 談談大家的看法吧!!!

[wcw]

一個星期後，小紅傘回信了，還是認定有問題

File ID　　　　　　Filename　　　　　　　Size (Byte)　　　　　Result
1108589　　　　TMC_PC.exe　　　　　　6.5 KB　　　　　　MALWARE
1108588　　　　Advertise_PC.exe　　　6.5 KB　　　　　　　MALWARE

The file 'TMC_PC.exe' has been determined to be 'MALWARE'. Our analysts named the threat ADSPY/AdAgent.K. The term "ADSPY/" denotes adware or spyware. This type of malware is able to change browser settings for example by manipulating registry settings or by using of NTFS-streams. Very often IEexploits are used to manipulate the browserhelp.dll.Detection is added to our virus definition file (VDF) starting with version 6.39.00.160. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Malware.

The file 'Advertise_PC.exe' has been determined to be 'MALWARE'. Our analysts named the threat ADSPY/AdAgent.I. The term "ADSPY/" denotes adware or spyware. This type of malware is able to change browser settings for example by manipulating registry settings or by using of NTFS-streams. Very often IEexploits are used to manipulate the browserhelp.dll.Detection is added to our virus definition file (VDF) starting with version 6.39.00.160. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Malware.

[timma]

KIS 6.0.621也有這種情況，而且連R12也有@@a

訊息如下

檔案 C:\Program Files\Maction\PAPAGO! R15\TMC_PC.exe: 偵測到 廣告軟體「not-a-virus:AdWare.Win32.AdAgent.k」.
檔案 C:\Program Files\Maction\PAPAGO! R12 PC\Advertise_PC.exe: 偵測到 廣告軟體「not-a-virus:AdWare.Win32.AdAgent.j」.

[darksnow]

Papago R12的TMC_PC.exe 現在也被掃出有Trojan-Downloader.Win32.Small.eym

[diy123]

Papago R12的TMC_PC.exe 現在也被掃出有Trojan-Downloader.Win32.Small.eym

上週五在掃電腦時也有掃到這個東西

檔案 C:\Program Files\Maction\PAPAGO! R12 PC\TMC_PC.exe: 偵測到 特洛伊木馬程式「Trojan-Downloader.Win32.Small.eym」.
檔案 c:\program files\maction\papago! r12 pc\advertise_pc.exe: 偵測到 廣告軟體「not-a-virus:AdWare.Win32.AdAgent.j」.

當時被嚇了一跳=.=
想說怎麼突然間會掃出木馬呢
記得之前掃過幾次都沒問題的
結果趕緊砍掉papago12
不曉得現在到底是哪間公司的問題

[algolee]

papago 公司想轉行當防毒公司
所以先放些毒出來做風向球？ 奈米逃~~