|
Posted by The Real Truth MVP on July 13, 2008, 11:34 pm
If you were Registered and logged in, you could reply and use other advanced thread options
located? my stomach hurts, where do you come up with this BS?
--
Ignore posts made by the person called Leythos, he is a stalker who's been
obsessed with me for years ever since I spurned his advances towards me.
>
> | Spartacus wrote:
>
>>> If I would have "bothered to ask"??? Nice attitude Dave.
>
> | Posting HJT logs to Usenet pollutes the searching for the bits of
> | malware in your log. In fact, so many of you n00bs have posted logs, it
> | has become nearly impossible to use google group searches for anything
> | worthwhile any more.
>
>
> The pollution of news group searches is just a small part of the "big
> picture" as there
> are more reasons that are far more important. I will ellaborate...
>
> 1. HTTP based forums are moderated and controlled and thus eliminate
> the troll factor
> and misinformation.
>
> 2. HJT logs are only a small part of analysis. It only provide an
> insight to simple
> malware. It won't help where there are infections that are using kernel
> level
> capabilities to hide such as drivers (eg., *.SYS files). One might remove
> a simple BHO
> through HJT analysis but the person can still be infected. Usenet
> responses to such
> problems would be infffective in these sistuations. Another exmple would
> where legitimate
> files are Trojanized or replaced. For example take QTTask.exe from
> quicktime. It may
> show up in in a HJT log and thus overlooked. However there are Trojans
> that will replace
> the QTTask.exe with the Trojan EXE and the responder would have no way of
> knowing that.
>
> 3. Helpers in Expert Forums are trained in a malware university of
> sorts and can't
> analyze logs until they graduate and the helpers are monitored by more
> exprienced
> personnel to make sure the right responses and suggestions are provided.
>
> 4. Affected forum posters may be asked to submit samples of malware.
> These samples may
> then be dissected and analyzed to provide a more deffinitive response.
> Addionally these
> samples are provided to the various anti malware companies as well may be
> used for
> improvements on anti malware utilities provided by expert forums such as
> with the
> MalwareBytes Anti Malware (MBAM) utility.
>
> 5. Usenet is public and not only do affected individuals read the
> groups but so do the
> malware authors. Expert forums may take a discussion of a particular
> nasty offline such
> that malware authors can't read the responses and modify their malware to
> thwart their
> removal. A pefect example would be the Gromozon malware. In this case
> the malware
> authors were modifying their malware to be more evasive and effective in
> thwarting their
> removal. Those posters who had Gromozon were taken to a private area
> where the malware
> authors could no longer view removal instructions and thus the efficacy of
> expert forums
> in helping the affected person to remove the malware was greatly
> increased.
>
> So there are many *good* reasons why posting of HJT logs is not allowed on
> Usenet groups.
> The most important is the personal 1-on-1 attention given to the affected
> poster to make
> sure when the poster leaves the thread they are indeed clean of malware.
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
>
>
| 
XML site map