So, who did some malware cleaning up at friends/relatives abodes on T-Day

[Duh_Oz]

Went to bro's house, who finally went from 56K land low low-end SBC DSL
a few months back. First thing I do is boot his computer, update his
anti-virus defs and 'low and behold two malware products. He was
surprised because I checked his computer just a few months back. Argh.

Sorry I forgot to write down the malware names. Booted in safe
mode(W2K) and used AdAware to delete two reg entries and f-prot to
delete the malware. Since his f-prot license expires next week I set
him up the SBC antivirus package (CA I believe).

I also installed the free ZA firewall and gave him a quick demo. Of
course he was annoyed he had to click yes to 'allow so and so to access
the internet'. I assured him that clicking to 'remember this
setting' will not have the same program keep popping up.

One of my many ex-manager was at daughter in law's and they had some
two month old malware on their system. So he did his job for 'duty and
humanity'


So any others out there have the 'pleasure' of ridding
firends/relatives computers of malware after the Thanksgiving feast?

 

[Turan Fettahoglu]

So any others out there have the 'pleasure' of ridding

firends/relatives computers of malware after the Thanksgiving feast?

Happens all the time, even without Thanksgiving. My personal record were
some 175+ hits with Ad-Aware and, believe it or not, a whole directory full
of worm files. The PC owner swears he does not know how he caught the worms.

The mean thing is: mostly you are called by friends and you can't very well
"charge" more than a bottle of wine for the cleaning job.

Happy worm hunting, and enjoy your roast turkey!

Turan

 

[Max Wachtel]

Duh_Oz (e-mail address removed) on 11/25/2005 in

Went to bro's house, who finally went from 56K land low low-end SBC
DSL a few months back. First thing I do is boot his computer,
update his anti-virus defs and 'low and behold two malware products.
He was surprised because I checked his computer just a few months
back. Argh.

Sorry I forgot to write down the malware names. Booted in safe
mode(W2K) and used AdAware to delete two reg entries and f-prot to
delete the malware. Since his f-prot license expires next week I
set him up the SBC antivirus package (CA I believe).

I also installed the free ZA firewall and gave him a quick demo. Of
course he was annoyed he had to click yes to 'allow so and so to
access the internet'. I assured him that clicking to 'remember this
setting' will not have the same program keep popping up.

One of my many ex-manager was at daughter in law's and they had some
two month old malware on their system. So he did his job for 'duty
and humanity'


So any others out there have the 'pleasure' of ridding
firends/relatives computers of malware after the Thanksgiving feast?

I have a thumb drive with various cleaning tools that I bring
along-saves time.
max
--
Virus Removal Instructions: http://home.neo.rr.com/manna4u/
Keeping Windows Clean: http://home.neo.rr.com/manna4u/keepingclean.html
Windows Help: http://home.neo.rr.com/manna4u/tools.html
Playing Nice on Usenet: http://oakroadsystems.com/genl/unice.htm#xpost
To reply by e-mail change nomail.afraid.org to gmail.com
nomail.afraid.org is setup specifically for use in USENET
feel free to use it yourself. Registered Linux User #393236

 

[Wilbur Post]

Since his f-prot license expires next week I set
him up the SBC antivirus package (CA I believe).

e-trust?

It's amazing how many broadband providers give it away for free, yet no one
can find a review or comparative study of the darn program.

 

[Duh_OZ]

e-trust?

It's amazing how many broadband providers give it away for free, yet no one
can find a review or comparative study of the darn program.

===========
I really don't know. Just saw CA, knew it was loaded and got my arse
out of there. At that point I had enough of his computer.

 

[Larry Sabo]

e-trust?

It's amazing how many broadband providers give it away for free, yet no one
can find a review or comparative study of the darn program.

See... http://agn-www.informatik.uni-hamburg.de/vtc/en0407.htm

In July, 2004, the University of Hamburg Computer Science Department
tests placed EZ AntiVirus (INO) on par with Bit Defender and Sophos.
Personally, I think a lot has changed over the intevening year and a
half and doubt these standings are valid today. See the full report
for results in individual test categories.


Table SUM-AV: Survey of Results for AntiVirus Products:
-------------------------------------------------------
===================== AntiVirus Products ====================
Windows-2000 (25) Windows-XP (25) LINUX(SUSE) (11)
-------------------------------------------------------------
Place 1: SCN (17) SCN (17) SCN (16)
2: FSE (16) FSE (16) AVP (15)
3: AVP (15) AVP (15) FSE (13)
More: AVK,PAV (13) AVK,PAV (13) SWP (10)
NAV,RAV (11) NAV,RAV (11) FPR ( 9)
FPR ( 9) FPR ( 9) CMD ( 8)
BDF,INO,SWP ( 8) BDF,INO,SWP ( 8) INO ( 7)
AVA,DRW ( 7) AVA,DRW ( 7) ANT ( 6)
ANT ( 6) ANT ( 6) DRW ( 5)
AVG,CMD,PRO ( 5) AVG,CMD,PRO ( 5)
GLA,VSP ( 4) GLA,VSP ( 4)
IKA,NVC,QHL ( 3) IKA,NVC,QHL ( 3)
FIR,PER,VBR ( 2) FIR,PER,VBR ( 2)
-------------------------------------------------------------
Useless Linux AV products: CLA,OAV ( 0)
-------------------------------------------------------------

Table SUM-AM: Survey of Results for AntiMalware Products:
---------------------------------------------------------
=================== AntiMalware Products ====================
Windows-2000 (25) Windows-XP (25) LINUX(SUSE) (11)
-------------------------------------------------------------
Place 1: SCN,FSE (20) SCN,FSE (20) AVP,SCN (19)
2: FSE (16) FSE (16) AVP (15)
3: AVP (19) AVP (19) FSE (17)
AVK,PAV (17) AVK,PAV (17) FPR,SWP (12)
NAV,RAV (13) RAV (14) CMD (10)
FPR (10) NAV (13) DRW ( 6)
BDF,INO,SWP ( 9) FPR (10)
AVA,DRW ( 8) BDF,INO,SWP ( 9)
CMD ( 7) CMD ( 7)
IKA,NVC ( 4) IKA,NVC ( 4)
VBR ( 3) VBR ( 3)
-------------------------------------------------------------
Useless Linux AV products: CLA,OAV ( 0)



Table ES2: List of AV products in test "2004-07"
================================================
Abbreviation/Product/Version Tested under Platform

----------------------------------------------------------------------
ANT = Antivir: H+B EDV Datentechnik Germany W2K WXP LIN
AVA = Avast! ALWIL Software, Czech Republic W2K WXP
AVG = AVG Antivirus System: GriSoft,Czech Republic W2K WXP
AVK = AntiVirenKit: GData Software, Germany W2K WXP
AVP = Kaspersky Anti-Virus: Kaspersky Lab. Russia W2K WXP LIN
BDF = BitDefender Professional: SOFTWIN, Romania W2K WXP
CLA = CLAM AntiVirus: Open Antivirus Project LIN
CMD = Command Antivirus:
Command Software Systems, USA W2K WXP LIN
DRW = Dr. Web: DialogueScience, Russia W2K WXP LIN
FIR = Fire Anti-virus: Prognet Technologies India W2K WXP
FPR = F-PROT: Frisk Software Intnl. Iceland W2K WXP LIN
FSE = F-SECURE: F-Secure Corporation, Finland W2K WXP LIN
GLA = Gladiator AV: Author="Gladiator" W2K WXP
IKA = Ikarus Virus Utilities:
IKARUS Software Austria W2K WXP LIN
INO = eTrust AV: Computer Associates Intnl. USA W2K WXP
NAV = Norton Antivirus: Symantec, USA W2K WXP
NVC = Norman Virus Control:
Norman Data Defense, Norway W2K WXP
OAV = Open AntiVirus: Open Antivirus Project LIN
PAV = Power AV: GData Software, Germany W2K WXP
PER = Peruvian AntiVirus: PER Systems, Peru W2K WXP
PRO = Protector: Proland Software, India W2K WXP
QHL = Qhickheal: Cat Computer Services India W2K WXP
RAV = RAV Antivirus: GeCAD Software, Romania W2K WXP
SCN = McAfee ViruScan: Network Associates, USA W2K WXP LIN
SWP = Sophos AV: Sophos, UK W2K WXP LIN
VBR = VirusBuster: Leprechaun Australia W2K WXP
VSP = VirScanPlus: Ralph Roth, Germany W2K WXP

----------------------------------------------------------------------

 

[Larry Sabo]

Whoops! Just noticed an error I made in reformatting the tables so
lines don't wrap. In the AntiMalware Products table, the line for
second place should be absent, not...

2: FSE (16) FSE (16) AVP (15)

That's because of the tie in first place. Sorry about that.

Larry

 

[* * Chas]

| Went to bro's house, who finally went from 56K land low low-end SBC
DSL
| a few months back. First thing I do is boot his computer, update his
| anti-virus defs and 'low and behold two malware products. He was
| surprised because I checked his computer just a few months back.
Argh.
|
| Sorry I forgot to write down the malware names. Booted in safe
| mode(W2K) and used AdAware to delete two reg entries and f-prot to
| delete the malware. Since his f-prot license expires next week I
set
| him up the SBC antivirus package (CA I believe).
|
| I also installed the free ZA firewall and gave him a quick demo. Of
| course he was annoyed he had to click yes to 'allow so and so to
access
| the internet'. I assured him that clicking to 'remember this
| setting' will not have the same program keep popping up.
|
| One of my many ex-manager was at daughter in law's and they had some
| two month old malware on their system. So he did his job for 'duty
and
| humanity'
|
|
| So any others out there have the 'pleasure' of ridding
| firends/relatives computers of malware after the Thanksgiving feast?
|

Old news but T-day 2 years ago, I visited with my niece. She asked me to
look at her PC. She had just installed Comcast wireless. Her 7 year old
daughter was surfing and afterward the system slowed down.

They were running the corporate version of McAfee's suite and it was
automatically updating as required by her husband's employer.

I installed Ad-Aware, Spybot S&D, F-Prot DOS plus a few others and found
at least 27 hijackers. She had 127MB of porn that had automatically been
DL the day before by one of the malware programs.

After cleaning everything up, I installed Kerio PFW 2.15. One more
reason I don't like McAfee!

Chas.