Trilight Zone Forum Index Trilight Zone
Privacy & Anonymity is our specialty !
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

not-a-virus:AdWare.DigitalNames.g

 
Post new topic   Reply to topic    Trilight Zone Forum Index -> Security
Author Message
thedark
Second Lieutenant


Joined: 30 Jul 2005
Posts: 1074

PostPosted: Sat Jul 30, 2005 2:38 pm    Post subject: not-a-virus:AdWare.DigitalNames.g Reply with quote
This is a potentially undesirable program. It is written in Visual C++. The installer is a file of 284160 bytes, packed using PECompact.


When launched, the installer extracts the following files from itself. These are installed to the system directory, without the knowledge of the user.
dgtnmres.dll - 101888 bytes
dgtstart.exe - 35840 bytes
dgtuninstall.exe - 19968 bytes
digitalnames.dll - 27648 bytes
\drivers\dgtsys.sys - 8384 bytes
It then registers dgtstart.exe in the system registry. This ensures the file will be executed every time Windows is rebooted
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"dgtstart" = "dgtstart.exe"


This program collects data about which websites are visited using the infected computer, and sends them to the server. This information may be used to determine which advertising popups the program will display.
The program will also download updates from upgrade.digitalnames.net and redirect erroneous http calls to a server which is detailed in the body of the program.
Back to top
Display posts from previous:   
Post new topic   Reply to topic    Trilight Zone Forum Index -> Security All times are GMT
Page 1 of 1

 


Powered by phpBB © 2001, 2005 phpBB Group