A Windows XP help forum. PCbanter

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Go Back   Home » PCbanter forum » Microsoft Windows XP » Windows XP Help and Support
Site Map Home Register Authors List Search Today's Posts Mark Forums Read Web Partners

Infection messages?



 
 
Thread Tools Display Modes
  #91  
Old December 29th 09, 01:52 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Buffalo[_2_]
external usenet poster
 
Posts: 329
Default Infection messages?



Robin Bignall wrote:
[snip]
I've stopped using A-Squared and have raised this item
on their web forum.

Is it possible that A-Squared is causing the problem and another program is
reacting to it?
IOW, perhaps A-squared is not itself bringing up the boxes, but another
program inter-reacting with it.
Just thinking out loud.
Buffalo
PS: Long thread and easy to miss something.


Ads
  #92  
Old December 30th 09, 11:58 PM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Robin Bignall
external usenet poster
 
Posts: 595
Default Infection messages?

On Mon, 28 Dec 2009 17:35:00 -0500, "David H. Lipman"
wrote:

From: "Robin Bignall"

| I don't know. I've stopped using A-Squared and have raised this item
| on their web forum.
| --
| Robin
| (BrE)
| Herts, England

Did 'ShadowPuterDude' reply/respond ?

If not, please send me an email of the posted URL and I will have him give your A-Squared
thread due attention.


http://support.emsisoft.com/topic/11...__gopid__5462&

That gets to my latest post on the group, but it won't help much as
I'm not going to go through the folderol they're suggesting: I've
simply uninstalled A-Squared.
--
Robin
(BrE)
Herts, England
  #93  
Old December 31st 09, 12:17 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
David H. Lipman
external usenet poster
 
Posts: 4,185
Default Infection messages?

From: "Robin Bignall"

| On Mon, 28 Dec 2009 17:35:00 -0500, "David H. Lipman"
| wrote:

From: "Robin Bignall"


| I don't know. I've stopped using A-Squared and have raised this item
| on their web forum.
| --
| Robin
| (BrE)
| Herts, England


Did 'ShadowPuterDude' reply/respond ?


If not, please send me an email of the posted URL and I will have him give your
A-Squared
thread due attention.


| http://support.emsisoft.com/topic/11...__gopid__5462&

| That gets to my latest post on the group, but it won't help much as
| I'm not going to go through the folderol they're suggesting: I've
| simply uninstalled A-Squared.
| --
| Robin
| (BrE)
| Herts, England

OK got it...

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


  #94  
Old December 31st 09, 12:28 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Buffalo[_2_]
external usenet poster
 
Posts: 329
Default Infection messages?



Robin Bignall wrote:
[snip]

http://support.emsisoft.com/topic/11...__gopid__5462&

That gets to my latest post on the group, but it won't help much as
I'm not going to go through the folderol they're suggesting: I've
simply uninstalled A-Squared.


Well maybe A-Squared will stop their 'defensive' attitude and try to improve
their product.
I thought they responded to you like you were a beginning computer user.
Have a Happy New Year,
Buffalo


  #95  
Old December 31st 09, 12:33 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Buffalo[_2_]
external usenet poster
 
Posts: 329
Default Infection messages?



Buffalo wrote:
Robin Bignall wrote:
[snip]


http://support.emsisoft.com/topic/11...__gopid__5462&

That gets to my latest post on the group, but it won't help much as
I'm not going to go through the folderol they're suggesting: I've
simply uninstalled A-Squared.


Well maybe A-Squared will stop their 'defensive' attitude and try to
improve their product.
I thought they responded to you like you were a beginning computer
user. Have a Happy New Year,
Buffalo


PS: And a female blonde to boot!!
Buffalo


  #96  
Old December 31st 09, 01:21 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Buffalo[_2_]
external usenet poster
 
Posts: 329
Default Infection messages?



The Real Truth MVP wrote:
I've read your posts there and the replies. No matter how many times
you tell them they will not see past an infection. You are right to
just uninstall it but I would send an email to Christian Mairoll the
company CEO since this is not a malware issue but a software
programming issue. Don't waste your time again starting from scratch.

[snip]
That actually makes a lot of sense.
Wow, congratulations, Real Truth MVP.
Buffalo


  #99  
Old January 1st 10, 05:09 AM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Kevin Zoll
external usenet poster
 
Posts: 2
Default Infection messages?

In article , erratic
@nomail.afraid.org says...

"Kevin Zoll" wrote in message
om...
In article , says...

I've read your posts there and the replies. No matter how many times
you
tell them they will not see past an infection. You are right to just
uninstall it but I would send an email to Christian Mairoll the
company CEO
since this is not a malware issue but a software programming issue.
Don't
waste your time again starting from scratch.


A security application is set to delete index.dat on system boot. A-
squared Anti-Malware is seeing this and alerting to the suspicious
activity.


Then why would the message say:

"...could not be removed. file is no longer existent"

if A-squared wasn't trying to remove the file itself?

Why try to remove a non-existent file? Why not check for the existence
of a file before trying to remove it and generating such an error
message.

Why would the programmatical deletion of a browsing history file be
considered suspicious activity?

I'm tempted to agree with the software thief on this one.


The problem is that another security application deletes the non-
malicious history file at system start. Which in turn triggers A-
squared. A-Squared wrongly sees this as malicious activity. I know
what index.dat is and I know who Butts is, and his unethical practices.

The alteration, deletion, creation and replacement of files at system
start is very common with malware. Security applications should monitor
this kind of system activity. Why A-squared is even trying to delete
index.dat is beyond me, and is something I will be discussing with the
developers.

However, the point here is that one security application is doing one
thing while the other security application is doing another. Conflicting
with each other.

A-squared Anti-Malware has both an AV engine and an AS engine. People
shouldn't be running 2 resident AVs. Kaspersky and A2AM are known to
interfere with each other. Something I would like to know is if beta
udpates was enabled. There a serval changes forth coming in A2AM and if
the user has beta updates enabled or disabled would be nice to know.

I normally don't post in news groups. Since David pointed this out too
me the other night, I took the time to read this thread and the one at
the EMSI Support forums.

I will be bringing this to Christian's and/or Fabian's attention, as
soon as I can catch either or both on IM.
  #100  
Old January 1st 10, 01:28 PM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
FromTheRafters[_3_]
external usenet poster
 
Posts: 102
Default Infection messages?

"Kevin Zoll" wrote in message
om...

[...]

The problem is that another security application deletes the non-
malicious history file at system start. Which in turn triggers A-
squared. A-Squared wrongly sees this as malicious activity. I know
what index.dat is and I know who Butts is, and his unethical
practices.


Thanks for responding. I wouldn't fault AČ for alerting to "suspicious"
activity as well as malicious activity, but those messages do seem to
indicate that an attempted deleting of an already deleted file is the
problem.

The alteration, deletion, creation and replacement of files at system
start is very common with malware. Security applications should
monitor
this kind of system activity. Why A-squared is even trying to delete
index.dat is beyond me, and is something I will be discussing with the
developers.


Please do share with us whatever information you can.

However, the point here is that one security application is doing one
thing while the other security application is doing another.
Conflicting
with each other.


Yes, and the discussion the OP had with support outside of usenet did
indicate this as well (others may have missed that part). I, too, see
this as a case of too many antispyware (privacy) programs causing
conflict by trying to affect the same resources (as well as "overkill").
It just seemed to me that checking for the existence (if...then) of the
file prior to attempting to delete it would resolve this conflict.

A-squared Anti-Malware has both an AV engine and an AS engine. People
shouldn't be running 2 resident AVs. Kaspersky and A2AM are known to
interfere with each other. Something I would like to know is if beta
udpates was enabled. There a serval changes forth coming in A2AM and
if
the user has beta updates enabled or disabled would be nice to know.


Hopefully the OP will read your post and respond on that point.

I normally don't post in news groups. Since David pointed this out
too
me the other night, I took the time to read this thread and the one at
the EMSI Support forums.


I will be bringing this to Christian's and/or Fabian's attention, as
soon as I can catch either or both on IM.


Thanks for participating, it is nice to have knowledgeable posters join
in.




  #101  
Old January 1st 10, 10:49 PM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
Robin Bignall
external usenet poster
 
Posts: 595
Default Infection messages?

On Thu, 31 Dec 2009 23:09:08 -0500, Kevin Zoll
wrote:

In article , erratic
says...

"Kevin Zoll" wrote in message
om...
In article , says...

I've read your posts there and the replies. No matter how many times
you
tell them they will not see past an infection. You are right to just
uninstall it but I would send an email to Christian Mairoll the
company CEO
since this is not a malware issue but a software programming issue.
Don't
waste your time again starting from scratch.

A security application is set to delete index.dat on system boot. A-
squared Anti-Malware is seeing this and alerting to the suspicious
activity.


Then why would the message say:

"...could not be removed. file is no longer existent"

if A-squared wasn't trying to remove the file itself?

Why try to remove a non-existent file? Why not check for the existence
of a file before trying to remove it and generating such an error
message.

Why would the programmatical deletion of a browsing history file be
considered suspicious activity?

I'm tempted to agree with the software thief on this one.


The problem is that another security application deletes the non-
malicious history file at system start. Which in turn triggers A-
squared. A-Squared wrongly sees this as malicious activity. I know
what index.dat is and I know who Butts is, and his unethical practices.

If some security application has deleted index.dat on startup, what
exactly is restoring it? For it's certainly there after booting.

The alteration, deletion, creation and replacement of files at system
start is very common with malware. Security applications should monitor
this kind of system activity. Why A-squared is even trying to delete
index.dat is beyond me, and is something I will be discussing with the
developers.

However, the point here is that one security application is doing one
thing while the other security application is doing another. Conflicting
with each other.

A-squared Anti-Malware has both an AV engine and an AS engine. People
shouldn't be running 2 resident AVs. Kaspersky and A2AM are known to
interfere with each other. Something I would like to know is if beta
udpates was enabled. There a serval changes forth coming in A2AM and if
the user has beta updates enabled or disabled would be nice to know.

No, beta updates were not enabled. This is the first time I've heard
that A2 is also an anti-virus product. I am now not surprised that it
clashes with Kaspersky. I do not intend to uninstall the latter in
favour of A2, which I bought originally as an anti-malware product.

I normally don't post in news groups. Since David pointed this out too
me the other night, I took the time to read this thread and the one at
the EMSI Support forums.

I will be bringing this to Christian's and/or Fabian's attention, as
soon as I can catch either or both on IM.


I shall follow the forum with interest.
--
Robin
(BrE)
Herts, England
  #102  
Old January 1st 10, 11:12 PM posted to microsoft.public.security.virus,microsoft.public.windowsxp.help_and_support
FromTheRafters[_3_]
external usenet poster
 
Posts: 102
Default Infection messages?

"Robin Bignall" wrote in message
...

If some security application has deleted index.dat on startup, what
exactly is restoring it? For it's certainly there after booting.


That would be either IE or XP (not sure if one can be clearly
distinguished from the other).


 




Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off






All times are GMT +1. The time now is 08:31 AM.


Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Copyright ©2004-2018 PCbanter.
The comments are property of their posters.