SuperAntispyware Free Question

Tonto · Feb 16, 2008

SUPERAntiSpy said:

All of the above detected items are actual threats, none of them appear to be false positives....classic infection found on adult sites....
Click to expand...

Thanks Nick for info i will wait for version 4.0 to see if i can install on my machine.I have uninstalled [can't get updates] and just for the record it uninstalled fine.At a loss to understand Philippe_FR22 statements when i checked in c/program files folder was there but nothing in folder i simply deleted it and no reboot involved .Kind of honoured to make contact with the developer here

I normally see these file c/o driveby AVP infection in pr0n land.You should make sure the victim PC is up todate with M$ patch's and any old versions of Java JRE are uninstalled leaving the most recent version installed.
Click to expand...

Thanks fcukdat good advice i have disabled auto updates on bro's machine seemed to be always updating no surfing,will get him up to date.He is on dialup i have warned him about prOn land to no avail i guess LOL.An older guy 55 and has only been online about a year now.

Question would any of them infections have required him to click Yes to anything.I have repeatedly told him to never do that.He is using Avast would that not have blocked some of this stuff?.

Glad he's got SAS on his machine updating,thanks for everybody's input.

Tonto

fcukdat · Feb 16, 2008

Hi Tonto,

In the case of *driveby* infections there are no end user interaction inorder to become infected.Simply opening an exploit laced url will open the possibility of a driveby if the exploit(s) targets vulnerable softwares/missing security patch's on the OS/browser etc

With reference to AVP i have only ever harvested this infection c/o such an attack vector(driveby).I intentionally run multiple vulnerable softwares(early Java,Acrobat reader/Quicktime/Realplayer)+unpatched OS intentionally to maximise the attack surfaces for mal code to import.

So for security sake it is important for folks to keep their OS & browser up todate with the latest patch's and uninstall/update any known vunerable softwares

With reference to Avast, it would only catch(stop) what it determines as malcode.That is dependent on its target database+ heuritic capabilities for *unknown/repacked* malwares.

Like all black list defenders it will be bypassed by any malcode that is does not flag as bad so inevitably it will be bypassed sooner or later.

HTH

Tonto · Feb 16, 2008

fcukdat said:

Hi Tonto,

In the case of *driveby* infections there are no end user interaction inorder to become infected.Simply opening an exploit laced url will open the possibility of a driveby if the exploit(s) targets vulnerable softwares/missing security patch's on the OS/browser etc

With reference to AVP i have only ever harvested this infection c/o such an attack vector(driveby).I intentionally run multiple vulnerable softwares(early Java,Acrobat reader/Quicktime/Realplayer)+unpatched OS intentionally to maximise the attack surfaces for mal code to import.

So for security sake it is important for folks to keep their OS & browser up todate with the latest patch's and uninstall/update any known vunerable softwares

With reference to Avast, it would only catch(stop) what it determines as malcode.That is dependent on its target database+ heuritic capabilities for *unknown/repacked* malwares.

Like all black list defenders it will be bypassed by any malcode that is does not flag as bad so inevitably it will be bypassed sooner or later.

HTH
Click to expand...

Yepp thanks for that explanation

Log in or Sign up

SuperAntispyware Free Question

Tonto Registered Member

fcukdat Registered Member

Tonto Registered Member

Log in or Sign up

SuperAntispyware Free Question

Tonto Registered Member

fcukdat Registered Member

Tonto Registered Member

Useful Searches