Smart UAC Replacement 1.0

[maymoons]

Quote:

Smart UAC Replacement description
Smart and much more comfortable UAC Replacement for first-rate computer defense

Overwhelmed with Windows Vista's alerts and tired of clicking Continue ten times a day? Then Replace Vista User Account Control with Smart UAC now. Since thousands of malicious programs can disable your operating system, a defense-in-depth security feature for your computer is needed - and that is Smart UAC Replacement, which is easier, more comfortable and definitely less irritating than the standard Windows UAC.

In contrast to standard Windows UAC, Smart UAC will not annoy you with confirmational dialog boxes every minute - it remembers your choice and will apply it automatically unless you change your mind.

Smart UAC has the ability to detect more than 400,000+ known threats and can remove them automatically.

The Smart UAC Replacement is the most appropriate damage preventing system for your computer, which can be used not only with Windows Vista but with earlier versions of Windows too.

Run The Smart UAC Replacement and use its training mode to create and edit your own security rules. Update programs' database

regularly to have the most effective and up-to-date damage preventing system. Once tuned up, Smart UAC determines automatically if the certain program's action can be allowed or not.

Smart UAC prevents not only viruses, spyware, adware and trojans, but even fights setting up and running rootkits, which hide the fact of malicious programs existence on your computer. Tracking harmful and suspicious processes allows Smart UAC Replacement to find unknown malicious programs and prevent their activity.

Save your time and forget the strain on the nerves because of too complicated to use security system! Smart UAC Replacement is free of all Microsoft Windows UAC disadvantages and presents effective and up-to-date methods of providing security both for Windows Vista and for earlier versions of Windows.

Here are some key features of "Smart UAC Replacement":

General
· Replaces Windows UAC with more clever and non-disturbing one
· Turn standart UAC into "silent" mode
· Monitors actions of different programs and alerts user of their potentially malicious behaviour
· Ability to allow or deny alerted actions or programs
· Ability to make UAC automatically allow or deny any actions of alerted program without further prompts
· Automatically scans every run program and DLL with an extensive database of more than 300 000 known threats and prevents malicious programs from running
· Prevents installation of rootkits (i.e. malicious programs that intercept

Windows core functions)
· Full customizability and fine tuning support
· Full time professional support

Security components
· Kernel-mode security driver
· User-mode controlling service
· Four interface applications

Interface
· User-friendly and handy interface

Compatibility
· Compatible with other antivirus / antispyware / security / firewall solutions

http://www.softpedia.com/get/Securit...lacement.shtml

http://www.replaceuac.com/

http://www.replaceuac.com/images/alert.jpg

http://www.replaceuac.com/images/red_alert.jpg

http://www.replaceuac.com/images/options_status.jpg

[dja2k]

Just downloaded to test out doesn't seem to do anything at XP! Gonna try it on Vista next...

dja2k

[sukarof]

Quote:

Originally Posted by dja2k

Just downloaded to test out doesn't seem to do anything at XP!

Well that is not a big surprise since XP doesnt have UAC

Quote:

Overwhelmed with Windows Vista's alerts and tired of clicking Continue ten times a day

Wow! 10 times a day, jeez what a burden

Other than that to me this seems a bit like SuRun with malware detection. Looks interesting though, it would be nice if one could skip AV using this and if it remebers software like Processmonitor and other software that need deep access into windows (and UAC only alert when the file changes) it could be a keeper. I will try it when I come home.

[dja2k]

Quote:

Originally Posted by sukarof

Well that is not a big surprise since XP doesnt have UAC

Yeah I know that's no surprise since only Vista has UAC but the main site http://www.replaceuac.com/ says "Works with Windows 2000/2003/XP/Vista".

dja2k

[sukarof]

Oh.. My ignorance shines through again.
I had no idea that XP could have anything to do with UAC, even remotely. sorry.

[sukarof]

So if it works for XP it must mean that this proggie gives a UAC to XP, sort of HIPS lite? XP doesnt have any UAC to replace.
That sure would be a nice move. (Well, at least when someone actually notice it doing anything in XP that is )

[alloucho]

Quote:

Originally Posted by sukarof

So if it works for XP it must mean that this proggie gives a UAC to XP, sort of HIPS lite? XP doesnt have any UAC to replace.
That sure would be a nice move. (Well, at least when someone actually notice it doing anything in XP that is )

I just tested it with xp sp2 and it works.

[doktornotor]

Quote:

Originally Posted by alloucho

I just tested it with xp sp2 and it works.

Confirmed working on W2003 (and quickly uninstalled as I hate UAC prompts and this looks way too much like the original UAC). Anyway, if M$ made their UAC stuff at least this usable, people wouldn't hate it so much.

[Meriadoc]

Dev = Security Stronghold still = rouge software?

Quote:

About : Security Stronghold company was founded in 2004 by three computer security professionals. Since then Security Stronghold has released four best selling products (True Sword, Active Shield, Security Suite, Registry Cleaner) which help users all over the world to successfully fight with spyware, adware, viruses, trojans and privacy breakers. Our fifth product - Smart UAC Replacement - was developed to help Windows Vista users get rid of irritating User Account Control alerts while raising the overall level of computer protection up to new height. We combined five years of computer security experience with one year of development to bring you this state of art product which will make your work and entertainment really pleasant. With help of Smart UAC Replacement you don't need to worry of your computer security anymore.

Perhaps there's a statement somewhere letting users know they have changed their ways.

SiteAdvisor

Quote:

Since 2006 our practice has changed dramatically. I can guarantee that all our products are free from false positives and agressive advertising and provide quality antispyware and antitrojan protection to our customers. We have been excluded from "Rogue/Suspect Anti-Spyware Products List" mentioned by one of reviewers. Here you can see the proof: spywarewarriordotcom. We have also changed our Refund Policy to more moderate one. We will give immediate refund if the customer is dissatisfied with our product. We are looking forward long and procutive collaboration with SiteAdvisory and our respected customers.

Spywarewarrior:

Quote:

Note on TrueSword: TrueSword was listed on this page because of concerns with false positives. Testing with the latest version of the program indicates that the problems with earlier versions have been satisfactorily resolved. Thus, we can no longer consider TrueSword to be "rogue/suspect" anti-spyware.

[sukarof]

Quote:

Originally Posted by Meriadoc

Dev = Security Stronghold still = rouge software?

Thanks for the hint.

[silver0066]

Quote:

Originally Posted by sukarof

Thanks for the hint.

Strange that there is no price for this product on their website. It very well could be malware.

[sukarof]

Quote:

Originally Posted by silver0066

Strange that there is no price for this product on their website. It very well could be malware.

I thought it was free since it is not mentioned anywhere that it will cost money.

I have now installed it. Initially the increase of popups compared to UAC is about 1000% (well, maybe not but I havent seen this many popups since I used HIPS damit!!)
Every software that I start gives a prompt saying:

Quote:

"This program is going to make change to the registry key that doesnt belong to it"

I mean whatta...

Firefox, Shadowprotect, Windows mail you name it...
Sure you can white list the prompts, but if I was getting off of clicking on prompts I´d rather use a HIPS like SSM or Ghost security.
No good first impression imo.

[webster]

Softpedia says it`s free http://www.softpedia.com/get/Securit...lacement.shtml

I don`t trust them. Still blocked by HP Hosts http://hosts-file.net/?s=www.securitystronghold.com

[MysteryFCM]

Interesting ........ from license.txt

Quote:

The user is granted a non-exclusive license to use True Sword on one or several computers for any legal purpose. The registered software may not be rented or leased, but may be permanently transferred, if the person receiving it agrees to terms of this license. If the software is an update, the transfer must include the update and all previous versions.

Emphasis mine ....... and from the PAD file thats included in the installer;

Code:

<Company_Info>
		<Company_Name>Бла-бла-бла</Company_Name>
		<Address_1>69-16/1 28 Army Street</Address_1>
		<Address_2 />
		<City_Town>Astrakhan</City_Town>
		<State_Province />
		<Zip_Postal_Code>414056</Zip_Postal_Code>
		<Country>Russian Federation</Country>
		<Company_WebSite_URL>http://www.dancingsnakegames.com</Company_WebSite_URL>
		<Contact_Info>
			<Author_First_Name>Konstantin</Author_First_Name>
			<Author_Last_Name>Artemev</Author_Last_Name>
			<Author_Email>support@dancingsnakegames.com</Author_Email>
			<Contact_First_Name>Konstantin</Contact_First_Name>
			<Contact_Last_Name>Artemev</Contact_Last_Name>
			<Contact_Email>support@dancingsnakegames.com</Contact_Email>
		</Contact_Info>
		<Support_Info>
			<Sales_Email>sales@dancingsnakegames.com</Sales_Email>
			<Support_Email>support@dancingsnakegames.com</Support_Email>
			<General_Email>manager@dancingsnakegames.com</General_Email>
			<Sales_Phone>N/A</Sales_Phone>
			<Support_Phone>N/A</Support_Phone>
			<General_Phone>N/A</General_Phone>
			<Fax_Phone>N/A</Fax_Phone>
		</Support_Info>
	</Company_Info>
.... snipped.....
		<Expire_Info>
			<Has_Expire_Info>Y</Has_Expire_Info>
			<Expire_Count />
			<Expire_Based_On>Days</Expire_Based_On>
			<Expire_Other_Info>60 minutes of gameplay</Expire_Other_Info>
			<Expire_Month />
			<Expire_Day />
			<Expire_Year />
		</Expire_Info>
..... snipped .....
	<Web_Info>
		<Application_URLs>
			<Application_Info_URL>http://www.dancingsnakegames.com/</Application_Info_URL>
			<Application_Order_URL>http://store.esellerate.net/s.asp?s=STR2129824678&amp;Cmd=BUY&amp;SKURefnum=SKU88198397698</Application_Order_URL>
			<Application_Screenshot_URL>http://www.dancingsnakegames.com/images/screenshots/screenshot_3.jpg</Application_Screenshot_URL>
			<Application_Icon_URL>http://www.dancingsnakegames.com/files/ds_icon.gif</Application_Icon_URL>
			<Application_XML_File_URL>http://www.dancingsnakegames.com/files/DanceDanceSnake_pad.xml</Application_XML_File_URL>
		</Application_URLs>
		<Download_URLs>
			<Primary_Download_URL>http://www.dancingsnakegames.com/download/game/DanceDanceSnake.exe</Primary_Download_URL>
			<Secondary_Download_URL />
			<Additional_Download_URL_1 />
			<Additional_Download_URL_2 />
		</Download_URLs>
	</Web_Info>
	<Permissions>
		<Distribution_Permissions>You must disclose that this is evalution version with functional limitations.
Full version is not free. Evalution version can be turned into full version by entering 
registration code that you'll receive when buy it. 
You may include evalution version on any CD compilation.
You may not sell the evalution copy.</Distribution_Permissions>
		<EULA>License

Dance Dance Snake 
Copyright (C) 2006-2007 Dancing Snake Games
All Rights Reserved
SOFTWARE LICENSE

Trial Version
-----------------------
The trial version of this software may be used for evaluation purposes at the user's own risk. To activate all programs' features the user must purchase a license.
The trial version may be freely distributed, provided the distribution package is not modified. No person or company may charge a fee for the distribution of Dance Dance Snake  without written permission from the copyright holder. 

Licensed Version
---------------------------------
On payment of the appropriate license fee, the user is granted a non-exclusive license to use Dance Dance Snake on one computer (i.e. a single CPU) or by one person (but not both), for any legal purpose, at a time. The registered software may not be rented or leased, but may be permanently transferred, if the person receiving it agrees to terms of this license. If the software is an update, the transfer must include the update and all previous versions. 
While every care has been taken in the construction and testing of this software, it is supplied subject to the condition that the user undertakes to evaluate the suitability of the control for his/her purposes. Dancing Snake Games makes no representation of the software's suitability for any purpose, and the user agrees that Dancing Snake Games has no responsibility for any loss or damage occasioned by the use of this software.
TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE SOFTWARE AND DOCUMENTATION ARE PROVIDED AS IS AND DANCING SNAKE GAMES DISCLAIMS ALL OTHER WARRANTIES AND CONDITIONS, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, CONFORMANCE WITH DESCRIPTION, TITLE AND NON-INFRINGEMENT OF THIRD PARTY RIGHTS. 
TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL DANCING SNAKE GAMES BE LIABLE FOR ANY INDIRECT, INCIDENTAL, CONSEQUENTIAL, SPECIAL OR EXEMPLARY DAMAGES OR LOST PROFITS WHATSOEVER (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF BUSINESS PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, OR ANY OTHER PECUNIARY LOSS) ARISING OUT OF THE USE OR INABILITY TO USE THE SOFTWARE PRODUCT, EVEN IF DANCING SNAKE GAMES HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. IN ANY CASE, DANCING SNAKE GAMES' CUMULATIVE AND ENTIRE LIABILITY TO YOU OR ANY OTHER PARTY FOR ANY LOSS OR DAMAGES RESULTING FROM ANY CLAIMS, DEMANDS OR ACTIONS ARISING OUT OF OR RELATING TO THIS AGREEMENT SHALL NOT EXCEED THE PURCHASE PRICE PAID FOR THIS LICENSE.
Should any term of these terms and conditions be declared void or unenforceable by any court of competent jurisdiction, such declaration shall have no effect on the remaining terms hereof. 
If you do not agree to these conditions you should uninstall this software.</EULA>
	</Permissions>

Couldn't be bothered to change it to reflect the application it actually comes with?

Ref:
http://64.233.183.104/search?q=cache...lnk&cd=5&gl=uk

There doesn't appear to be anything at dancingsnakegames.com now, but there was in April, as evident by the cache from Google.

.... and in January;

http://web.archive.org/web/20071209104424/www.dancingsnakegames.com/download/

But lets get to something more recent from this company shall we?

http://www.siteadvisor.com/sites/securitystronghold.com
http://www.emsisoft.com/en/malware/?....Active+Shield

... and from July 08;

http://www.americanchronicle.com/vie...?authorID=3195

... and these articles do one thing - very badly - promotion of TrueSword, via deception. Why via deception? lets take a look at one of the pages shall we;

http://www.americanchronicle.com/articles/69968

Quote:

You do not need to be a PC whiz to spare svchost.exe error message with help of my Fix Wizard! My Svchost Fix Wizard is a complex solution for more than 20 different kinds of svchost.exe error message. Use Svchost Fix Wizard to fix svchost error you have now in one click. Just run the Svchost Fix Wizard and your svchost error message will be immediately destroyed. If your problem with svchost.exe is not fixed after you run my Fix Wizard, every cent of your payment will be automatically returned to your account. Your order of svchost.exe problem solution is totally secured with my iron-clad moneyback guarantee.

... and where does "My Svchost Fix Wizard" lead to? yep;

http://www.securitystronghold.com/solutions/svchost.exe-generic-host-process-win32-services-encountered-problem.html#fix

Step 1 proudly displays;

Quote:

Use our award winning program - True Sword - to remove svchosts.exe, svchost.exe, Generic.exe and svcchost.exe virus infection.

... with a lovely little "Trusted Vendor" badge next to it. Trusted by who? clicking it doesn't tell me, it just takes me to a download for TrueSword - not very trusted!

Step 2, the actual "Fix Wizard" that the articles mention, says;

Quote:

In case you do not have svchost.exe virus and True Sword confirms this fact, then use our Svchost Fix Wizard to fix generic host process error and all other similar errors of svchost.exe. We created this Wizard specially for our clients who encounter Generic Host Process for Win32 Services error which is not related to spyware or trojan activity. To get Svchost Fix Wizard right now, perform the following steps:

1) Purchase True Sword if you have not yet done this. Please note that along with complete win32 generic error solution you receive one of the most powerful anti spyware and anti trojan scanners in the world which finds and solves more than 180 000 other dangerous threats including trojans, spyware, adware, riskware, problemware, keyloggers, dialers and other kinds of malicious programs in several seconds.

2) Send your order number to GetFixWizard@securitystronghold.com and ask for Svchost Fix Wizard. We will immediately send you Svchost Fix Wizard and assist in solving all your svchost.exe-related problems.

DOH! ......... since your articles are pushing this "Fix", you shouldn't be requiring people pay for TS before they can actually use the damn thing!.

Quote:

Relax! This is guaranteed!

Oh, thats alright then! ......... NOT!

Worse still, step 2 is telling people to purchase TS if TS has claimed they don't actually have the infection that the fix is actually for?. What does this fix actually do? if the rest of the page is anything to go by then;

Quote:

1) Scan your PC for the following viruses: CashToolbar Downloader-MY, System1060, CoolWebSearch Svchost32, ADCLICK-AG, ADCLICK-AX, ADUYO-A, AGENT-V, AGOBOT-KL, AUTOTROJ-C

... did you just pick random infections out of a hat for this one?

Not a single one of the articles seems to mention the fact the poor sod has to pay your company, irrespective of whether they are actually infected or not, simply because they've got to pay for the damn "Fix Wizard" .........

Now, lets get back to ReplaceUAC shall we? extracting the installer, which for some reason, seems to want to tell me it is a zip file (probably to try and confuse Universal Extractor - pity I know how to extract it manually isn't it?).

What is "EvilProgram.exe" doing there?, and why does it have options to create whatever Preved.exe is? Since preved.exe is a 0KB file when created, and doesn't seem to have anything when viewed with a hex editor, and similarly the registry entry when created, is also empty - what is this for?



http://www.virustotal.com/analisis/7...3e8816a681e927

Just for the hell of it, here's 3 other sites he apparently runs;

vipdefense.com
qwertystudios.com
vistaglance.com

... and umm?

qwertystudios.com/products/tspyware-scanner/

Quote:

With TSpywareScanner you can build your own Spyware\Adware scanner in several hours

Really? and here's me thinking you needed a database of stuff to actually detect aswell - I highly doubt it is going to provide this. I also doubt it's going to be of any use to people that want to develop an AM that actually detects malware, rather than just claiming it has.

Quote:

Registrant:
KONSTANTIN ARTEMEV
28 Army Street 16/1, flat 69

Astrakhan, ASTRAKHAN 414056
Russian Federation

Registrar: DomainPeople, Inc.

Domain Name: dancingsnakegames.com
Created on .............Wed Nov 07 06:49:31 2007
Expires on .............Fri Nov 07 06:49:31 2008
Record last updated on .Thu Jun 26 05:54:27 2008
Status .................LOCK,

Quote:

Registrant:
KONSTANTIN ARTEMEV
28 Army Street 16/1, flat 69

Astrakhan, ASTRAKHAN 414056
Russian Federation

Registrar: DomainPeople, Inc.

Domain Name: replaceuac.com
Created on .............Mon May 12 08:53:59 2008
Expires on .............Tue May 12 08:53:59 2009
Record last updated on .Thu Jun 26 09:57:15 2008
Status .................LOCK,

Quote:

Registrant:

28 Army Street 16/1, flat 69

Astrakhan, Astrakhan 414056
Russian Federation

Registrar: DomainPeople, Inc.

Domain Name: vipdefense.com
Created on .............Wed Mar 01 23:59:59 2006
Expires on .............Sun Mar 01 23:59:59 2009
Record last updated on .Fri Jul 04 06:48:21 2008
Status .................LOCK

Quote:

Registrant:

28 Army Street 16/1, flat 69

Astrakhan, Astrakhan 414056
Russian Federation

Registrar: DomainPeople, Inc.

Domain Name: qwertystudios.com
Created on .............Tue Jan 20 23:59:59 2004
Expires on .............Tue Jan 20 23:59:59 2009
Record last updated on .Thu Jun 26 09:47:43 2008
Status .................LOCK,

Quote:

Registrant:

28 Army Street 16/1, flat 69

Astrakhan, Astrakhan 414056
Russian Federation

Registrar: DomainPeople, Inc.

Domain Name: vistaglance.com
Created on .............Wed Feb 08 23:59:59 2006
Expires on .............Sun Feb 08 23:59:59 2009
Record last updated on .Thu Jun 26 09:51:33 2008
Status .................LOCK,

[sukarof]

omg..that doesnt look good imo.

[EASTER]

Shucks

It was beginning to look like a useful XP alternative that mimiced UAC for Vista but i guess thats a bit too much to expect right?

Looked good on type though. But then some things often do only to found out their not compatible or worse.

EASTER

[MysteryFCM]

As an addendum, TrueSword is still generating ludicrous false positives ...... IMHO it should be re-added to the SWW rogue list.

Ignoring the cookies, the only file it actually flagged that wasn't an F/P (the rest, including those it claimed were malware in the registry, were F/P's), was an installer for RelevantKnowledge, that came with KiwiAlpha (and it wasn't actually installed - was just sitting amongst 400+ other malware samples that TS actually missed, including Nuwar samples, lol)

Code:

ClickSpring
	1.	C:\WINDOWS\security\tmp.edb

Win32.TrojanPWS.Lmir
	2.	C:\WINDOWS\system32\GroupPolicy\Machine\Scripts\scripts.ini

Agent BIQ Trojan
	3.	C:\WINDOWS\system32\drivers\npf.sys

Marketscore(Netsetter)
	4.	E:\Misc\Malware\kiwialpha_com\kiwialphafree\{sys}\rkinstaller.exe

Adware.Emusic
	5.	{1E796980-9CC5-11D1-A83F-00C04FC99D61} at key HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar

Win32.Trojan.Downloader
	6.	run at key HKEY_CURRENT_USER\software\microsoft\windows nt\currentversion\windows

MyCleanerPC
	7.	HKEY_CLASSES_ROOT\tabdlg.sstab
	8.	HKEY_CLASSES_ROOT\tabdlg.sstab.1

Toolbar.Softo
	9.	HKEY_CLASSES_ROOT\toolband.xbtb04482
	10.	HKEY_CURRENT_USER\software\microsoft\windows\currentversion\ext\stats\{01e69986-a054-4c52-abe8-ef63df1c5211}

Hijacker.Qyule
	11.	HKEY_LOCAL_MACHINE\system\currentcontrolset\services\npf\enum

Win32.Trojan.Agent
	12.	Window title at key HKEY_CURRENT_USER\software\microsoft\internet explorer\main

Win32.Generic.PWS
	13.	C:\WINDOWS\system32\sessmgr.exe at key HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list

Win32.Trojan.MatrixHasYou
	14.	C:\WINDOWS\system32\sessmgr.exe at key HKEY_LOCAL_MACHINE\system\controlset001\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list

Win32.Winshow
	15.	:Range at key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\internet settings\zonemap\ranges\range1

FindFM Toolbar
	16.	HKEY_CURRENT_USER\software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01E69986-A054-4C52-ABE8-EF63DF1C5211}\iexplore
	17.	Count at key HKEY_CURRENT_USER\software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01E69986-A054-4C52-ABE8-EF63DF1C5211}\iexplore
	18.	Type at key HKEY_CURRENT_USER\software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01E69986-A054-4C52-ABE8-EF63DF1C5211}\iexplore
	19.	Time at key HKEY_CURRENT_USER\software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01E69986-A054-4C52-ABE8-EF63DF1C5211}\iexplore

Tracking cookies
	20.	steven burn@tacoda[2].txt
	21.	steven burn@atdmt[2].txt
	22.	steven burn@adbrite[1].txt
	23.	steven burn@doubleclick[1].txt
	24.	steven burn@cams[1].txt
	25.	steven burn@cms.trafficmp[1].txt
	26.	steven burn@tripod[1].txt
	27.	steven burn@www.etracker[1].txt
	28.	steven burn@apmebf[1].txt
	29.	steven burn@statse.webtrendslive[2].txt
	30.	steven burn@adultfriendfinder[2].txt
	31.	steven burn@bravenet[1].txt
	32.	steven burn@bs.serving-sys[1].txt
	33.	steven burn@trafic[1].txt
	34.	steven burn@mediaplex[1].txt
	35.	steven burn@ad.yieldmanager[1].txt
	36.	steven burn@cgi-bin[2].txt
	37.	steven burn@specificclick[2].txt
	38.	steven burn@www.burstnet[2].txt
	39.	steven burn@rambler[1].txt
	40.	steven burn@advertising[1].txt
	41.	steven burn@clickbank[1].txt
	42.	steven burn@serving-sys[1].txt
	43.	steven burn@statcounter[2].txt

[MysteryFCM]

Oh and, if you want it to "fix" more than 3 things without paying for it, forget it .....

[LoneWolf]

Quote:

Originally Posted by MysteryFCM

TrueSword is still generating ludicrous false positives ...... IMHO it should be re-added to the SWW rogue list.

It is here.........
http://www.malwarebytes.org/roguenet.php?id=90

[MysteryFCM]

hehe yep, MB has had it listed for a while