GoodGuy
Posts: 1506
Joined: 5/17/2006
From: Cologne, Germany
Status: offline
|
quote:
ORIGINAL: killroyishere
....because it detected some java viruses that Avast never did detect. So I uninstalled Avast and installed Microsoft Security Essentials and it found 3 java trojans and 1 keylogger trojan that Avast never showed.
Yep, that's why I never install JAVA, or if I really need it, say for certain games, I just install it temporarily.
quote:
So it really saves to periodically uninstall your usual virus protection program and install another and run it because as I said not one of them is 100% effective.
I wouldn't go that far, no need to uninstall. Most AV programs can be disabled/halted (eg. you can pause all of avast's providers/drivers), so that you can run other AV software. Key here is that you run and install "secondary" AV scanners without active shield/real-time protection, reserve that for your fav scanner.
But even avast has security issues at times, I did some research (I wanted to know what the file "aswRdr.sys" does, as I found it in the device-manager under "non-pnp drivers" [which you can see if you set the view to "show hidden devices"], I check that regularly as that's where some Viruses and DRM-drivers like SecuroROM or StarForce show up):
AVAST security issue Nov. 2009:
http://secunia.com/advisories/37368/
quote:
Description:
A vulnerability has been discovered in avast! Home/Professional, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially gain escalated privileges.
The vulnerability is caused due to an error in aswRdr.sys when processing IOCTLs. This can be exploited to corrupt kernel memory via a specially crafted 0x80002024 IOCTL.
Successful exploitation may allow execution of arbitrary code with SYSTEM privileges.
The vulnerability is confirmed in avast! Home version 4.8.1356. Other versions may also be affected.
Solution:
quote:
Update to version 4.8.1367.
http://secunia.com/advisories/37368/2/
Killroy is right, and - in my experience, with some Viruses it's actually like only 1 out of 7 AV programs would find them. That's why I go to online-scanners (where you can upload a suspicious file and have it checked by ~ 15-20 scanners) and to trendmicro (online-scan) once in a while. Depending on (and trusting) only one scanner is a tiny bit erm... "naive", no offense. 
A quick warning regarding Trendmicro though, if you use Thunderbird as Email-client: Trendmicro is able to open/check Mozilla-based (compressed) mail-databases, so if you receive a lot of spam you may actually have some viruses (viruses placed in the spam's html code or in attached/embedded pictures) or trojans without knowing it, if you don't delete the spam daily. That's also the reason why I disable images in my mail clients. Mozilla has this option, Outlook and other clients may have it too.
Anyway, if you then tell trendmicro to delete or disinfect ALL affected files (including the files/virus bits within the compressed database) you end up with a corrupted mail folder. You can still access your mails (but it takes Mozilla ages to process and decompress the mail database [takes up to 20 mins]) each time you fire up Mozilla.
If you export the mail folder to a new file, and if you delete the original file in Thunderbird's folder, you can import that file ("import mail" function) to get a proper mail database, without losing ANY data.
Thought I'd share that info :P
< Message edited by GoodGuy -- 1/17/2010 12:20:05 AM >
_____________________________
"Aw Nuts"
General Anthony McAuliffe
December 22nd, 1944
Bastogne
---
"I've always felt that the AA (Alied Assault engine) had the potential to be [....] big."
Tim Stone
8th of August, 2006
|
Printable Version
RE: Insane Steam Holiday Sale - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread