AntiVirus 2008?

David H. Lipman wrote:

> 1. Ignore what Butts has posted.

Just a point to Charliec that both you and I, David, didn't totally make
clear:

PCButts is posting recently using the nym "The Real Truth MVP" when
in fact he is neither of those.

It has been mentioned by others that installing his purloined and
massaged Remove-It VB script will add/change/overwrite your HOSTS file,
to write one that blocks legitimate anti-malware web sites. Why does he
do that? Because his own site is listed in the HOSTS files provided by
reputable people.

--
-bts
-Friends don't let friends drive Windows

Dustin Cook wrote:
> Charliec <charliec.DeleteThis@invalid.address.com> wrote in
> news:lj48c49bjbim3009u375sp3u697t0jjjj9@4ax.com:
>
>> I searched the messages here, but did not see an answer to this item.
>> I had AntiVirus 2008 come up twice saying there were viruses on my
>> system and offering to install software to remove them. I declined
>> each time.
>>
>> Question, how does this item get to your machine to popup this
>> message? Does it install anything on your system at this point?
>
> It's a rogue application. We have very high success rates removing
> it. You may wish to give MalwareBytes antimalware a try.
>
> http://www.malwarebytes.org
>
>> Is there anything else I need to do to be completely safe from this
>> item, except to decline the install?
>
> Update your java, and adobe.

I can see why java could be relevant, but adobe? Is the XP 2008 spreading in
PDF files?

--
tommy

You are a terrible researcher you don't even know you own product. That's
probably why it took you over a year to fix a false positive in Bughunter.
MBAM has problems and instead of lying about it try to find out why and have
it fixed, I gave enough details.


--
Cyberstalking is a crime. If you had one as bad as I did simply ignoring
them is not an option.




"Dustin Cook" <bughunter.dustin.DeleteThis@gmail.com> wrote in message
news:Xns9B13826A21D6BHHI2948AJD832@69.16.185.247...
> "The Real Truth MVP" <toidi.DeleteThis@tpap.com> wrote in
> news:0r0xk.21835$89.11901@nlpi069.nbdc.sbc.com:
>
>> Yes it does, I test it all the time when doing my Remove-it updates.
>> AVG does not and MBAM and SAS paid version with real-time protection
>> does not even catch it. MBAM will clean it but it does not repair the
>> damage done after cleaning like fixing the desktop tabs etc....
>> Remove-it fixes all that. MBAM real-time protection is also a
>> resources hog on Vista which causes delays when opening or right
>> clicking files. I do not recommend it for the paid version.
>
> That's not true. MBAM catchs and kills it, 100%; all known variants. And
> we
> do reverse any policy key lockouts performed by most malware these days.
>
> Remove-it is a stolen script, and it's not 100%.
>
>
>
>
> --
> Regards,
> Dustin Cook, Author of BugHunter
> BugHunter - http://bughunter.it-mate.co.uk
> MalwareBytes - http://www.malwarebytes.org
>
>

From: "ASCII" <f DeleteThis @l.se>

| David H. Lipman wrote:
>>From: "ASCII" <f DeleteThis @l.se>

>>| Charliec wrote:
>>>>I'm running WinXP SP3 and IE7 with all the latest
>>>>updates.

>>| Speaking of updates...
>>| I just got one of those emachines that WalMart was pushing
>>| and it came with something called "BigFix", is that any good?

>>No.

| Does it do any harm, or just fails to do any good?

The latter and its more of a placebo.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

From: "Tommy McClure" <tmDELccDEL72AThalDASHpcDOTorg>


| I can see why java could be relevant, but adobe? Is the XP 2008 spreading in
| PDF files?

| --
| tommy

No but theere are vulnerabilities in Adobe that can be exploited resulting in any kind of
malware infection the exploiter chooses.

The latest, and now common, exploit in Adobe is an exploit in the function;
Collab.collectEmailInfo()
Once exploied it creates a buffer overflow condition which leads to an elevation of
priveledges and the result is a download and installation of malware.

It isn't just Adobe or Sun Java. There are vulnerabilty/exploit vectors in Adobe Falsh,
ReadAudio and Quicktime as well. These are only a few examples. The fact is miscreants
can use a laundry list of exploits and once a vulnerability is detected in an application,
it can be exploited to their advantage.

The point is updating the OS is not enough. You have to make sure ALL applications are
patched and vulnerabilities are mitigated.

As I mentioned earlier in this thread...
To verify if your PC is up-to-date with vulnerability mitigation, use the services of
Secunia OSI (Secunia Software Inspector).
http://secunia.com/vulnerability_scanning/online/ It will tell you what software has
vulnerabilities and need to be updated/patched to mitigate the exploitation of the
vulnerabilities.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

Charliec <charliec.DeleteThis@invalid.address.com> wrote in
news:5qpac4thsn5336rsqt1alum598jd5hd4gs@4ax.com:

>>On Mon, 08 Sep 2008 16:42:26 GMT, Dustin Cook
>><bughunter.dustin.DeleteThis@gmail.com> wrote:
>
>>Charliec <charliec.DeleteThis@invalid.address.com> wrote in
>>news:lj48c49bjbim3009u375sp3u697t0jjjj9@4ax.com:
>>
>>> I searched the messages here, but did not see an answer to this
>>> item. I had AntiVirus 2008 come up twice saying there were viruses
>>> on my system and offering to install software to remove them. I
>>> declined each time.
>>>
>>> Question, how does this item get to your machine to popup this
>>> message? Does it install anything on your system at this point?
>>
>>It's a rogue application. We have very high success rates removing it.
>>You may wish to give MalwareBytes antimalware a try.
>>
>>http://www.malwarebytes.org
>>
>>> Is there anything else I need to do to be completely safe from this
>>> item, except to decline the install?
>>
>>Update your java, and adobe.
>
> I downloaded and ran Malwarebytes and it did not report anything,
> which I take as a positive sign! Right?
>
> When you say "update your java, and adobe" - I think everything is
> up-to-date. I'm running WinXP SP3 and IE7 with all the latest
> updates. Is there a setting in IE7 that I need to check for latest
> version of java?
>
> I know, a lot of questions

www.java.com, Be sure your running the latest flavor.

It's not built into IE, so no you can't update it that way.
Our new MBAM build should have flagged it, if you actually were infected
with it.


--
Regards,
Dustin Cook, Author of BugHunter
BugHunter - http://bughunter.it-mate.co.uk
MalwareBytes - http://www.malwarebytes.org