xp on vmware and spyware

ddaas · 02-02-2006, 10:53 AM

Hi,
I have installed vmware-5.5 on FC4 and win xp as the guest os.
I was very surprised when clamav fount the following.
What do you think?

Quote:

--------------------------------------
Scan started: Thu Feb 2 10:57:28 2006

--------------------------------------
Scan started: Thu Feb 2 10:57:32 2006

/home/vmware/Windows XP Professional/Windows XP Professional-s001.vmdk: Adware.Cydoor-2 FOUND
/home/vmware/Windows XP Professional/Windows XP Professional-000001-s001.vmdk: Adware.Cydoor-2 FOUND
/home/vmware/Windows XP Professional/Windows XP Professional-000001-s002.vmdk: Adware.Cydoor-2 FOUND
/home/vmware/Windows XP Professional/Windows XP Professional-Snapshot1.vmem: Adware.Cydoor-2 FOUND
/home/vmware/Windows XP Professional/Windows XP Professional.vmem: Adware.Cydoor-2 FOUND
/home/vmware/Windows 2000 Professional/Windows 2000 Professional.vmdk: Adware.Cydoor-2 FOUND

unSpawn · 02-02-2006, 11:26 AM

What do you think?
Neat.

sundialsvcs · 02-02-2006, 12:29 PM

Bear in mind that, even for a guest OS, you need to run the guest OS as a non-administrator user (of that guest). It is much harder to remove malware once it gets in, than it is to keep the malware out in the first place. A disciplined approach to using "limited users" will greatly simplify this process.

ddaas · 02-02-2006, 12:32 PM

The guest OS has no network access.
That's why is curious ....
I didn't install any strange software on it.

It seams that it has come with another program...

Do you think it is dangerous or I can ignore it...(I don't want to install antivirus, anti-spyware on win, it is only for my wife for a specific program). I would not install it ....I am full of $M bullshit

unSpawn · 02-02-2006, 12:48 PM

If you run ClamAV, AVG or any trial AV from within Wintendo and it appears as if system32/cd_clint.dll is infected then that's a FP IIRC.