ATTENTION: You are viewing a page formatted for mobile devices; to view the full web page, click HERE. Software > Drag&Drop Robot

CounterSpy flagged files - query

(1/2) > >>

Carol Haynes:
I installed Drag & Drop to try it out and have also just installed Sunbelt's CounterSpy software and it is flagging two files which I think may be related to this app:

c:\program files\drag and drop shell robot\irunin.lng



Obviously the first one came with this utility - but I am not sure about the second.

Can you confirm if these files are supplied and if so explain what they are used for?

I am sure there is nothing sinister because they triggered a response for threats that are otherwise not present on my system (ie. none of the other files or registry entries associated with the named threats are on my system).


CounterSpy is notorious for false positives and it seems that since the acquisition of Giant by Microsoft the (CounterSpy is a rebadged Giant variant) false positives have increased further as Sunbelt (a rebadging/marketing vendor rather than a dedicated developer) have been forced to take on product deployment in-house.  I'm pretty safe to say this is a perfect example of a false positive, though it would do no harm to check with MS Anti-Spyware, SpyBot and Ad-Aware for peer confirmation.

You may also want to submit any dubious files to the excellent Jotti Malware Scanner: -

these are both files related to the installer used in drag&drop robot.
quite harmless, not sure why counterspy is flagging them as risky. 

a good indication that counterspy is be wildly ridiculous is the fact that the irunin.lng is a plain text file which just contains info about captions to show in the setup program, and all you have to do is open it in a text editor to see that it is not only harmless, but devoid of anything that should even suggest a danger.  sometimes these antispyware/virus apps will react to the strangest things..

what exactly does it say?

ps - this is a good opportunity to remind me - be very careful trusting cleaning apps to properly identify spyware and stuff.
i've yet to run a registry cleaner, for example, that didnt want to remove critical entries from my registry thinking they were spyware when they weren't.  and i always wince when i see that because i wonder how many people just hit ok and let these apps mess up their computer in the name of trying to have a clean registry.

Carol Haynes:
Thanks for the confirmation of the file source.

It's OK I knew they weren't going to pass my credit card details to the Taliban, just an interesting effect.

I have sent of a screaming email to Sunbelt - I'll see if they bother to reply.

I never use AntiSpy type software to do my clearing up - but they can be a useful first stop to see if there is any likely malware on your system.

Trouble is CounterSpy was recently voted the best AntiSpyware programme by a number of magazines and websites, and if people blindly believe they will have real problems with their software and systems!

The other problem I perceive (which is quite sinister) is that writers like you who produce useful little utilities and applications will start to get branded as spyware producers for no good reason (apart from companies who really can't be bothered to do their homework). I really think as a software writer that you should complain to them that their stupidity is jepardising your livelihood !!

It is interesting to note that they also flagged up infected files as supplied in:

Britannica 2005
MS Visual Studio 6 Pro
Cakewalk Sonar
Google Earth

FWIW the messages produced relevant to Drag&Drop are:

2020Search Browser Plug-in  more information...
Details: 2020Search is an Internet Explorer search toolbar with a silent update feature and also bundles additional adware such as ShopNav.
Status: Ignored
Elevated spyware - Elevated threats are usually threats that fall into the range of adware in which data about a user's habits are tracked and sent back to a server for analysis without your consent or knowledge.

Infected files detected

Mass IM Adware  more information...
Status: Ignored
Moderate spyware - Moderate threats may profile users online habits or broadcast data back to a server with 'opt-out' permission. In most cases this type of threat is more along the lines of commercial type adware that offer a premium service in exchange for tracking your user online performance.

Infected files detected
c:\program files\drag and drop shell robot\irunin.lng

what's probably happened, and the way these things tend to happen is that there is some spyware or adward they discover, and they try to pick a piece of it that identifies it, and they end up flagging other similar stuff with the same brush.

you can rest assured i would NEVER put any adware, spyware, etc. in any program i wrote. EVER.

at least its not an antivirus false alarm - occasional an antivirus will flag a program unfairly and its a nightmare because suddenly the author of the program is inundated with people freaking out..


[0] Message Index

[#] Next page

Go to full version