Red sheriff

[BILLW]

Hey all. I found this lil critter doing my AdAware cleanup. Checked it out
on web and said it is spyware that even AdAware can't protect me from.

Is there anything I can do or is it not worth the effort.

Tks

I use IE 6.0, WIN 98SE

bye

bw

 

[Kevin]

Never heard of it. Whatever it is. What is the name of the alleged
malware? What does a scan with Spybot Search and Destroy, Pest Patrol or
Hijack This! turn up?

 

[..:: Wesley Snipes ::..]

Hey all. I found this lil critter doing my AdAware cleanup. Checked
it out on web and said it is spyware that even AdAware can't protect
me from.

Is there anything I can do or is it not worth the effort.

Tks

I use IE 6.0, WIN 98SE

bye

bw

Don't worry, it's not true that Ad-aware can not clean it... I do it almost
every second day using Ad-aware and I'll tell you that it kills it without
any problem... just be sure to download every new reference file (update)...
I also use Spybot -Search and Destroy, HiJackThis, BHODemon etc. but
Ad-aware is the only one that warns me about Red Sherif...

 

[Mike Burgess]

BILLW,

Is there anything I can do or is it not worth the effort"

You can use my HOSTS file that targets\blocks Red Sheriff

# [IMR Worldwide][Tracking Service][Restricted Zone site]
127.0.0.1 measurement.redsheriff.com
127.0.0.1 www.redsheriff.it
127.0.0.1 www.redsheriff.com
127.0.0.1 www.redsheriff.com.au
127.0.0.1 www.RedSheRRif.com
127.0.0.1 server-au.imrworldwide.com
127.0.0.1 server-dk.imrworldwide.com
127.0.0.1 server-it.imrworldwide.com
127.0.0.1 server-no.imrworldwide.com
127.0.0.1 server-nz.imrworldwide.com
127.0.0.1 server-oslo.imrworldwide.com
127.0.0.1 server-sg.imrworldwide.com
127.0.0.1 server-uk.imrworldwide.com
127.0.0.1 server-us.imrworldwide.com
127.0.0.1 www.imrworldwide.com
____________________________________________________________
Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
http://www.mvps.org/winhelp2002/hosts.htm [updated 02-07-04]
Please post replies to this Newsgroup, email address is invalid
--

 

[Mike Burgess]

Wesley Snipes,

"I do it almost every second day using Ad-aware"

IMHO that's certainly the wrong approach ........
The object is to "prevent", not cleanup after the fact.
You can use a HOSTS file to block access, or you could
set your Cookies to those servers to "Always Block"
____________________________________________________________
Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
http://www.mvps.org/winhelp2002/hosts.htm [updated 02-07-04]
Please post replies to this Newsgroup, email address is invalid
--

 

[..:: Wesley Snipes ::..]

Wesley Snipes,
IMHO that's certainly the wrong approach ........
The object is to "prevent", not cleanup after the fact.
You can use a HOSTS file to block access, or you could
set your Cookies to those servers to "Always Block"

For sure it's not wrong, it could be just "slower way around", but not
wrong. I really don't visit those sites so offten to be forced to install
some additional programs that starts everythime I start my Windows... I
really don't want so much things take up my system resources. I am not lazy
guy, so it's not problem for me to do it manually from day to day...

Cheers !

 

[Mike Burgess]

Wesley,

"I really don't visit those sites so offten"

You stated in a previous post you were removing these every two days?

"to be forced to install some additional programs that starts everythime I

start my Windows"
Huh? .... a HOSTS file is NOT a installed program, it's simply a file that
Windows\IE reads when connecting in or out .....
--
<quote> (from LavaSoft Support)
Unlike most conventional spyware, imrworldwide.com's Red Sheriff is loaded
as a Java applet embedded in a Web page you visit. Once loaded, it sends
information about your Internet usage (how long the page took to load, how
long you stayed, etc.) to the parent company, supposedly bypassing
firewalls, cookie blockers and the like.
</quote>
[more info]
http://www.cexx.org/sheriff.htm
http://www.spywareinfo.com/newsletter/archives/april-2003/2.php
http://www.kalsey.com/2002/11/java_spyware
____________________________________________________________
Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
http://www.mvps.org/winhelp2002/hosts.htm [updated 02-07-04]
Please post replies to this Newsgroup, email address is invalid
--

 

[..:: Wesley Snipes ::..]

Wesley,
You stated in a previous post you were removing these every two days?

No, you don't know how to read in between lines... This is exactly what I
said:
"Don't worry, it's not true that Ad-aware can not clean it... I do it almost
every second day using Ad-aware and I'll tell you that it kills it without
any problem..."

Yes, I do checking with Ad-aware often, sometimes every day, but I don't
visit those sites where you can pick up some of those pests and I don't
remove "these" every second day... My job is designing web/Flash sites and
I really don't have enough time to visit wide range of web content...
sometimes Ad-aware finds them and I destroy them... What's so weird in that
? BTW, the point wasn't what I said, the point is that BILLW asked about Red
Sherif and Ad-aware, and I gave him information that Ad-aware is very able
to find it, it can report it and can clean it...

 

[Mike Burgess]

Wesley,
I was just pointing out that removing these culprits after the
fact is the wrong approach. Hey .. whatever works for you ....
____________________________________________________________
Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
http://www.mvps.org/winhelp2002/hosts.htm [updated 02-07-04]
Please post replies to this Newsgroup, email address is invalid
--