TDS3 And Kaspersky

Discussion in 'Trojan Defence Suite' started by GPF, Jul 5, 2005.

Thread Status:
Not open for further replies.
  1. GPF

    GPF Registered Member

    Joined:
    Jul 5, 2005
    Posts:
    3
    I just updated Kaspersky Personal Pro to 5.0.372, the latest version.

    As it usually does it whinged at me until I did a full system scan.

    While I was in the mood for scanning I ran TDS3.

    Oh my God! I was absolutely overrun with trojans DDoS.RAT.M—¥äÿÿÿÿÿ

    There was one in most every file. Not just .exes and .dlls but .jpgs, .bmps, the works.

    Well I didn't panic as they werent there the other day and there appeared to be no trojan activity at all.

    I suspected they might have to do with KAV's use of ADS to tag files.

    Ran several other scans and nothing showed up.

    Today's update of TDS3's database has solved the problem.

    That was quick! I'm impressed.

    Just a warning for anyone else who might have seen this and panicked, it isn't real.

    Just those little security guys getting bored with not enough to do and deciding to detect one another . . .
    :D
     
  2. Tassie_Devils

    Tassie_Devils Global Moderator

    Joined:
    May 8, 2002
    Posts:
    2,514
    Location:
    State Queensland, Australia
    Good to see GPF, and thanks for the heads up, as some may have indeed wondered what the heck was happening if running those particular apps.

    btw, welcome to Wilders.

    Cheers, TAS
     
  3. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    Hello GPF and welcome to the forum!
    little? You're talking about two major companies here?
    Largest databases ...
    Did you have your KAV down when scanning with TDS as advised all time? Did you run TDS from your admin account or "run as" from a user account?
     
  4. GPF

    GPF Registered Member

    Joined:
    Jul 5, 2005
    Posts:
    3
    Cheers! Been here before as a lurker quite a lot and picked up on a lot of good info.

    Yes I get that a lot too.

    Just kidding! ;)

    Apart from KAV and TDS3 I use Outpost Pro on top of a NAT router and Process Guard, also run with a Hosts file and much of Windows XP2 locked down (see I've been learning! ;) ) and scan regularly with AdAware and Spybot S&D and less regularly with other programs, they don't usually get a lot to do so I got this picture of a couple of bored security guards going down the block and annoying the security guards in another building . . .

    Oh yes good point. I ran TDS from admin but I didn't shut down Kaspersky while doing it. Nevertheless after the database update the signs of "infection" were gone despite failing to shutdown Kaspersky that time also.

    Nothing showed up in anything but the disk file scans, no running processes or anything else suspicious, nothing going over the wire (Ethereal) I wasn't expecting so I'm pretty confident it was a false positive.

    I usually do shutdown Kaspersky while running other stuffs, also when defragging, as there's a load from constantly poking its nose into all the files as other scanners are touching them.
     
Thread Status:
Not open for further replies.