[anti tiib]

mingil x ajal lööb ette musta akna,nagu igasuguste mängukeste puhul, yleval ääres on umbes taoline pealkiri ~ducins. ja aken kaob kohe ära ka. kas võib olla miski keylogger või troojakas ?

[High-Q]

mingi teema NAV-iga, nagu google pakutud asjad pajatavad (kuigi mitte väga otsesõnaliselt).
Küsimus: kas sa kasutad norton antivirust? Kui jah, proovi disableda live update. vaata kas asi kaob.

Vot selline inf:
take the 5th! NIS isn't distributed in a corporate version, AFAIK the
closest is Client Security.

Out of curiosity I chose to use a 98SE machine as a sacrificial lamb which
had NIS 2004 installed.
Started by Ghosting C: (Main OS), D: (Apps) and E: (Data).
Uninstalled NIS/NAV 2004 and rebooted.
Cleared out the Temp, TIF and Cookies.
Ran RegCommander along with RegEdit to search out/destroy any remaining
NIS/NAV entries and rebooted.
Copied NIS 2005 CD to F:, ran Setup and rebooted.
Bypassed activation, setup the firewall and ran live update.

During the install of the updates out popped the DUCINS~1 DOS screen that is
a wonder to many so I veer away from the reboot button.
I searched high and low using many different search terms and came up empty.
Rebooted and ran LU once more with no reappearance of the DOS window.

I decided to have a look-see in an XP SP2 box w/NIS 2004.
Lo and behold there sits DUCINS~1.EXE-37DAA82F.pf in the Prefetch folder.
So's I open it in Notepad and The first line on page 1 has:
 SCCA ªA D U C I N S ~ 1 . E X E

and on page 213 I find:

\ D E V I C E \ H A R D D I S K V O L U M E 1 \ D O C U M E N T S A N D
S E T T I N G S \ A L L U S E R S \ A P P L I C A T I O N D A T A \ S Y
M A N T E C \ L I V E U P D A T E \ D O W N L O A D S \ E X I T E M 5 0 3 2
_ A V E N G E $ 2 0 1 . 5 $ 2 0 M I C R O D E F S 2 $ 2 0 N A V 2 0 0 4 _ M
I C R O D E F S B . C U R D E F S _ S Y M A L L L A N G U A G E S \ D U C I
N S ~ 1 . E X E

So's I head off to that folder and find:
avenge$201.5$20microdefs2$20nav2004_microdefsb.curdefs_symalllanguages_livetri.zip

Opening the .zip reveals 3 files, liveupdt.grd, liveupdt.sig and
liveupdt.tri.
The contents of liveupdt.tri are:
[LiveUpdate]
Legal=Copyright 1995-2000 (c) Symantec Corporation
LastModified=20050303 11:54AM
Type0=Updates
Type1=Add-Ons
Type2=Documentation

[Item2088]
ItemSeqName=VirusDef
ItemSeqData=2005030208
FileName=enncurd2.x86
Size=71772
ActionItem=NAVCURD2.DIS
TypeName=Updates
ItemName=Virus Definitions
ItemDetails=Norton AntiVirus Definitions
Platform=x86
NAVPATCH=FALSE

[ExItem5032]
ItemSeqName=LiveUpdate
ItemSeqData=20050217
FileName=duc.x86
Size=255341
ActionItem=DUC.DIS
TypeName=Updates
ItemName=Avenge 1.5 MicroDefs2 NAV2004
ItemDetails=Disk space check for virus definitions.
Platform=x86
LUVersion=2.5.0.0
IncrementalPackage=FALSE

Hope this helps put the concerned at ease. If anyone that matters really
cares to see the files mentioned, I'll be happy to forward them or post em
to a page on my site.