Test Site - does it exist ??

[Guest]

I've had MS AS installed for several days now and I've been
to a particular site (www.keygen.us - just try to download
any crack and watch what happens ) that I KNOW sends down
spyware, and MS AS has yet to show or catch anything.

Is there a known webiste to check if the Real Time
Protection is working ?? So far, I'm not very impressed
with MS AS.

Incidently, Mozilla FireFox seems to be immune to the
Keygen site. Maybe because Keygen KNOWS the browser isn't
IE ??

MS just HAS to get this malware/spyware thing under control
or there will be DROVES of people buying Mac's and Linux
based systems in the future. I for one, am fed up with it
and more than willing to go with an 'alternate OS' to Windows.

Bill

 

[Linuxgirl]

I've had MS AS installed for several days now and I've been
to a particular site (www.keygen.us - just try to download
any crack and watch what happens ) that I KNOW sends down
spyware, and MS AS has yet to show or catch anything.

Is there a known webiste to check if the Real Time
Protection is working ?? So far, I'm not very impressed
with MS AS.

Incidently, Mozilla FireFox seems to be immune to the
Keygen site. Maybe because Keygen KNOWS the browser isn't
IE ??

MS just HAS to get this malware/spyware thing under control
or there will be DROVES of people buying Mac's and Linux
based systems in the future. I for one, am fed up with it
and more than willing to go with an 'alternate OS' to Windows.

No one here will believe you Bill. There are some knowledgable people
here who will because they have experience with other OSs but even they
wouldn't admit it in this group. The majority here know nothing except
Windows and that not very well, else why would they be here screaming
for help instead of solving the problems this *pre-beta* release has
caused themselves.

(try Debian)

 

[plun]

I've had MS AS installed for several days now and I've been
to a particular site (www.keygen.us - just try to download
any crack and watch what happens ) that I KNOW sends down
spyware, and MS AS has yet to show or catch anything.

Is there a known webiste to check if the Real Time
Protection is working ?? So far, I'm not very impressed
with MS AS.

Incidently, Mozilla FireFox seems to be immune to the
Keygen site. Maybe because Keygen KNOWS the browser isn't
IE ??

MS just HAS to get this malware/spyware thing under control
or there will be DROVES of people buying Mac's and Linux
based systems in the future. I for one, am fed up with it
and more than willing to go with an 'alternate OS' to Windows.

Maybe this can help you to test:

http://spywarewarrior.com/asw-test-guide.htm

Inside this you have information about common spyware and also
links to vendors.

http://www.pcpitstop.com/spycheck/top25.asp


But its difficult with tests as stated from this virus test
site.

"Using real viruses for testing in the real world is rather
like setting fire to the dustbin in your office to see
whether the smoke detector is working. Such a test will give
meaningful results, but with unappealing, unacceptable risks."

http://www.eicar.org/anti_virus_test_file.htm

 

[Guest]

In my view all these crack & serial sites are a con and
are only there to allow spyware & other related scum to
be passed to your pc including trojans and viruses so
also wouldnt advise doing what the other post says and
trying to get yourself infected

Troj\Favadd-D This Trojan is being spread through
keygen.us
This Trojan is a Windows PE EXE file approximately 67KB
in size.
When installing itself to the system, it creates a file
named crcspider.ico in the Windows root directory.
Internet Explorer does not properly handle object types,
when rendering XML based web sites. This may result in
the possibility of the execution of malicious software.

The problem occurs when Internet Explorer receives a
response from the server when a malicious XML web page
containing an embedded object tag is parsed. Successful
exploitation of this vulnerability could allow a
malicious object to be trusted and as such be installed
and executed on the local system.

Maybe the main problem is the sites you are visiting i
appreciate you think the ms protection should help you
but no one product is 100% safe and if you switched to
another OS im sure you will also have similar problems
when you visit these types of sites

I dont think you should judge MS Antispy at this stage as
its being improved everyday and all the issues raised on
these pages will be addressed and added to future
releases according to there validity,You maybe should
have some other firewalls and anti virus installed as the
ms antispy is still being built with all you guys helping
to improve it by reporting such faults,but ive never
visited these types of sites so cannot be sure what they
transmit but they are providing either bogus or stolen
serials/cracks in my opinion.

I would stay clear of them as half the trojans and
viruses around today steal serials and game passwords
from users pc's so dont think its a coincidence myself
and i think they are all related as in the writers of the
trojans and viruses receive serials from infected
computers then open a site saying they have free serials
so as to attrach more people who they can infect

Thats just my opinion though

Andy

 

[AndyManchesta]

Forgot to add my name to my last post so thought id
resend it incase someone doesnt agree with me and wants
to respond,In my view these sites are well dodgy but dont
use them so maybe other members know better

Regards Andy

 

[AndyManchesta]

I might be mistaken with the sort of codes executed on
these site i think the problem is more to do with
malicious html rather than xml if just experimented by
visiting cracks am as i have plenty of protection on my
pc so thought id experiment and as soon as i entered got
a norton warning saying it had blocked a virus so i think
my original opinion of these sites were correct but maybe
i was wrong on the way they execute files.
The virus was shown as a suspicious script but can now
show what the exploit is

MHTMLRedir.Exploit

This threat allows a malicious Web site to download and
execute programs on your computer.

This threat contains specially-crafted, HTML code that
can download and execute programs without prompting you.
This threat only affects Microsoft Internet Explorer.

When visiting a Web page or receiving an HTML email that
contains this threat, a file can be downloaded and
executed. Under normal conditions, Internet Explorer
would prompt you before allowing any executable content
to be downloaded and executed on the system. This
vulnerability in Internet Explorer allows specially
crafted HTML to bypass this security prompt.

In a Web-based attack scenario, an attacker would have to
host a Web site that contains a Web page that is used to
exploit this vulnerability. An attacker would have no way
to force users to visit a malicious Web site. Instead, an
attacker would have to persuade them to visit the Web
site, typically by getting them to click a link that
takes them to the attacker's site.

A remote code execution vulnerability exists in the
processing of specially crafted MHTML URLs that could
allow an attacker's HTML code to run in the Local Machine
security zone in Internet Explorer. This could allow an
attacker to take complete control of an affected system.


And while im posting there is a patch to address this
problem available from microsoft for anyone using outlook
express

http://www.microsoft.com/technet/security/bulletin/ms04-
013.mspx

So again would advise people to stay off them sites i was
assuming they were malicious but hadnt visited any in the
past so it was just guessing but now can be sure they are
only set up to trick people and infect as many pc's as
possible to gain remote access to their pc's

Regards

 

[PBear]

Please read what I posted to Diana about this issue.

Thanks

 

[John]

Load Linux and then do what with it? Play mp3's, rip dvds, and run your
internet apps on it? If that was all I wanted to do, I guess that would be
a solution.

BUT: It won't play any decent games, it doesn't run the apps I need to run
at work, and after about a week, KDE corrupts and won't load anymore.

Wow, that sure solved a lot of problems.

Sure Windows is going through another annoying phase right now but trying to
get things done with another OS is even more annoying.

I'm currently testing both Solaris 10 and Novell Linux Desktop, I still use
a Windows machine to get work done. Fortunately, I don't need to visit
warez sites or play with p2p apps for free music and movies so I don't have
a spyware/trojan/virus problem like a lot of other people do.

I would really be interested in a quick review of how to fix the KDE problem
from the CLI. Have you got a couple of lines I can type in and fix this
mess?