Why popular antivirus apps 'do not work'

ivwshane · 07-21-2006, 01:29 PM

http://www.zdnet.com.au/blogs/securi...9264249,00.htm

~~Electric_Head~~ · 07-21-2006, 01:55 PM

I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor.

This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

ThatHideousStrength · 07-21-2006, 01:57 PM

Quote:

Originally Posted by Electric_Head

I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor.

This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

I'm sure its true.

WoodButcher · 07-21-2006, 04:06 PM

I think it was Torx who had the winner, Kapersky is it. That would also explain the virus on my kids rig, they use Limewire a lot and the AV we have is through SBC, Symantec to be exact. Funny that the russians have the top AV.

c6comp · 07-21-2006, 04:32 PM

Quote:

Originally Posted by djmihow

Quote:

Originally Posted by Electric_Head

I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor.

This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

I'm sure its true.

me too.

mistawiskas · 07-21-2006, 07:52 PM

Quote:

Originally Posted by c6comp

Quote:

Originally Posted by djmihow

Quote:

Originally Posted by Electric_Head

I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor.

This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

I'm sure its true.

me too.

Me three.

trs80 · 07-21-2006, 08:04 PM

Quote:

Originally Posted by mistawiskas

Quote:

Originally Posted by c6comp

Quote:

Originally Posted by djmihow

Quote:

Originally Posted by Electric_Head

I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor.

This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

I'm sure its true.

me too.

Me three.

-shrug- i could believe either way, no matter. who would want their stuff if they didn't get legitimate viruses fast? and who would want their stuff if they knew that they sent their own viruses out intentionally (if this is true).

meh. take it or leave it. though somehow i did get some virus described as a 'test lab virus' or whatever the term was. one supposedly never to make it public... meh to it all. good article.

SoulAssassin · 07-23-2006, 08:33 PM

I'll see if I can find it but I read a story once where both McAfee and Symantec were accused of creating a virus during a downtime.

j0k3r · 07-23-2006, 10:17 PM

Apparently you guys don't know my alter-ego on slashdot.

Munir is a sham. Check out my comments:

Quote:

He always has been and always will be. His articles are practically marketing material for Kaspersky labs. First of all, write an article stating the obvious and then back it up with some arbitrary figures without displaying any real results.

For your reference (I made sure to use the Google cache so you can see the highlighting):
Hmmmm...what sole vendor was interviewed for this article? [64.233.167.104]
www.zdnet.com.au/news/security/0,2000061744,39193800,00.htm+%22Munir+Kotadia%22+K aspersky&hl=en&gl=us&ct=clnk&cd=4]I wonder who the focus of this article is...[/url] [64.233.167.104]
My goodness! Another article from Munir which focuses on Kaspersky. Who would have guessed? [64.233.167.104]
Which company did Munir get a virus analyst from to comment on this article? [64.233.167.104]

Now that is some quality, unbiased reporting for you. Don't believe Munir's BS, it's a load of crap.

I used to be in charge of exploit research and antivirus updating for a major branch of the government. Munir writes nothing but crap, I used to come across his articles all the time and they used to piss me off. They don't name the other "leading" vendors, but Kaspersky gets a mention with it's incredible pass rates. Kaspersky makes a decent product, but there is a reason they only have a 0.7% share.

WoodButcher · 07-23-2006, 11:15 PM

Quote:

Originally Posted by j0k3r

Apparently you guys don't know my alter-ego on slashdot.

Munir is a sham. Check out my comments:

Quote:

He always has been and always will be. His articles are practically marketing material for Kaspersky labs. First of all, write an article stating the obvious and then back it up with some arbitrary figures without displaying any real results.

For your reference (I made sure to use the Google cache so you can see the highlighting):
Hmmmm...what sole vendor was interviewed for this article? [64.233.167.104]
www.zdnet.com.au/news/security/0,2000061744,39193800,00.htm+%22Munir+Kotadia%22+K aspersky&hl=en&gl=us&ct=clnk&cd=4]I wonder who the focus of this article is...[/url] [64.233.167.104]
My goodness! Another article from Munir which focuses on Kaspersky. Who would have guessed? [64.233.167.104]
Which company did Munir get a virus analyst from to comment on this article? [64.233.167.104]

Now that is some quality, unbiased reporting for you. Don't believe Munir's BS, it's a load of crap.

I used to be in charge of exploit research and antivirus updating for a major branch of the government. Munir writes nothing but crap, I used to come across his articles all the time and they used to piss me off. They don't name the other "leading" vendors, but Kaspersky gets a mention with it's incredible pass rates. Kaspersky makes a decent product, but there is a reason they only have a 0.7% share.

So in your opinion what AV is top dog? and why doesn't kapersy have a stronger share of the market?

Torx · 07-24-2006, 03:40 AM

top 3 in my opinion is nod32, kas, avast
its up to you to test and try them out before buying..

they dont have a strong share because it just isnt as popular as symantec or mcafee

its a sad and disturbing thought that these companies are out creating virii just to turn around like knights in shining armor to repair their own creations.. for money. We all know its happening but we cant do anything about it unless we program and create our own av for free.

j0k3r · 07-24-2006, 06:09 PM

Quote:

Originally Posted by Wood Butcher

Quote:

Originally Posted by j0k3r

Apparently you guys don't know my alter-ego on slashdot.

Munir is a sham. Check out my comments:

Quote:

He always has been and always will be. His articles are practically marketing material for Kaspersky labs. First of all, write an article stating the obvious and then back it up with some arbitrary figures without displaying any real results.

For your reference (I made sure to use the Google cache so you can see the highlighting):
Hmmmm...what sole vendor was interviewed for this article? [64.233.167.104]
www.zdnet.com.au/news/security/0,2000061744,39193800,00.htm+%22Munir+Kotadia%22+K aspersky&hl=en&gl=us&ct=clnk&cd=4]I wonder who the focus of this article is...[/url] [64.233.167.104]
My goodness! Another article from Munir which focuses on Kaspersky. Who would have guessed? [64.233.167.104]
Which company did Munir get a virus analyst from to comment on this article? [64.233.167.104]

Now that is some quality, unbiased reporting for you. Don't believe Munir's BS, it's a load of crap.

I used to be in charge of exploit research and antivirus updating for a major branch of the government. Munir writes nothing but crap, I used to come across his articles all the time and they used to piss me off. They don't name the other "leading" vendors, but Kaspersky gets a mention with it's incredible pass rates. Kaspersky makes a decent product, but there is a reason they only have a 0.7% share.

So in your opinion what AV is top dog? and why doesn't kapersy have a stronger share of the market?

Nod32 is at the top of my personal list, but in most corporate environments, Trend Micro is going to get the go ahead because of its remote management features and seamless auto-upgrading.

Torx · 07-25-2006, 04:28 AM

this whole thing makes you wonder if microsoft makes their own exploits/fixes and uses the update system as a means of catching bootleggers..

WoodButcher · 07-25-2006, 09:16 PM

I checked out nod32. Except for the price I like it. 3 PCs w/ firewall and 2yrs support would be $235. I have SBC/AT+T online that includes norton. I really don't keep business records on pc so I'll backup what's important and live with it.

saint seiya · 07-25-2006, 11:11 PM

i just used nod32 and downloaded a virus to see if it would detected and no luck.! Whats the best damn antivirus prog out ?!!!

Undertaker989 · 07-26-2006, 10:03 PM

NOTHING NOTHING NOTHING can replace, or even hold a candle to, patching ALL of the software on your box on a routine basis.

Also, if you have a basic home router, password protect it, upgrade the firmware, and look into fixing arp/dns poisoning issues.

WoodButcher · 07-27-2006, 05:21 AM

Quote:

Originally Posted by saint seiya

i just used nod32 and downloaded a virus to see if it would detected and no luck.! Whats the best damn antivirus prog out ?!!!

Nod sleeping???

Undertaker989 · 08-02-2006, 06:05 PM

I have to correct a post I made in this thread, specifically, the part about ARP issues. I am afraid that there is no real way to stop someone from poisoning the ARP b/c its really a protocol flaw rather than a flaw in the hardware itself.

To those who don't know what this means: basically, even if you are on a datalink layer switched network where you can't see traffic other than broadcasts on other ports of the switch, an attacker can poision the arp and tell both the switch and your computer that the attacker is you and vice versa. So, all traffic can be sniffed once that is done and you best hope that you are in love with SSL and strong 12+ character passwords unique to each application that requires a password.

Now, if you are connected to a wireless network, forget about it, all traffic is broadcast and you are free game just like above.

edit: now, if you aren't running a wireless home lan, or you know there is nobody malicious on your lan, you should be in the clear. The attacker needs to be on your network for the sniffing to work.

Cartman · 08-02-2006, 08:12 PM

u guys are so fucking stupid, you really think they need to hire poeple to create viruses?

If you guys believe this, than you'll get a real kick out of what poeple say about the moon landing!

MSP · 08-02-2006, 08:16 PM

Quote:

Originally Posted by Cartman

u guys are so fucking stupid, you really think they need to hire poeple to create viruses?

If you guys believe this, than you'll get a real kick out of what poeple say about the moon landing!

Yeah, gotta back Cartman on this one. If it were found that one of the virus software companies were involved in something like this it would be front page news and there would be DOJ involvement. Maybe I'm just naive...

Home > Discussion > Tech Why popular antivirus apps 'do not work'
Join The Cult	Tweakers	Image Gallery	Donate	Search	Today's Posts	Mark Forums Read

Yesterday, 05:30 PM	#2
Sponsored Links
(hide)

07-21-2006, 04:06 PM	permanent link to #4
WoodButcher Tweak Minion Join Date: May 2006 Location: CT. Posts: 1,567 (#62 ) My photos: 5 Thanked 3x in 2 posts	I think it was Torx who had the winner, Kapersky is it. That would also explain the virus on my kids rig, they use Limewire a lot and the AV we have is through SBC, Symantec to be exact. Funny that the russians have the top AV.
	*Q6600@ 3.4 Underwater, P5E-VM HDMI, 4GB OCZ, EVGA 8800GT, PCP&C 610w*

07-25-2006, 09:16 PM	permanent link to #14
WoodButcher Tweak Minion Join Date: May 2006 Location: CT. Posts: 1,567 (#62 ) My photos: 5 Thanked 3x in 2 posts	I checked out nod32. Except for the price I like it. 3 PCs w/ firewall and 2yrs support would be $235. I have SBC/AT+T online that includes norton. I really don't keep business records on pc so I'll backup what's important and live with it.
	*Q6600@ 3.4 Underwater, P5E-VM HDMI, 4GB OCZ, EVGA 8800GT, PCP&C 610w*

07-26-2006, 10:03 PM	permanent link to #16
Undertaker989 Tweak Minion Join Date: Jan 2005 Posts: 1,607 (#61 ) My photos: 0 Thanked 1x in one post	NOTHING NOTHING NOTHING can replace, or even hold a candle to, patching ALL of the software on your box on a routine basis. Also, if you have a basic home router, password protect it, upgrade the firmware, and look into fixing arp/dns poisoning issues.
	Barrack isn't all smiles and sunshine! So you don't know anything about Sarah Palin? Well, here are some of her juicy secrets!

Welcome to Tweak3D

Login to reply. Sign-up here.

Be notified of new replies to this thread

	User Name Password Save? Not Registered Yet? Go here.

	Home Forums Deals Articles Reviews About

07-21-2006, 01:29 PM	permanent link to #1
ivwshane Dont mess with old school Join Date: Jan 2005 Location: CA Posts: 4,363 (#14 ) My photos: 65 Thanked 5x in 5 posts	http://www.zdnet.com.au/blogs/securi...9264249,00.htm

07-21-2006, 01:55 PM	permanent link to #2
~~Electric_Head~~ Banned Join Date: Jan 2005 Location: NJ Posts: 1,939 (#51 ) My photos: 21 Thanked 0x in 0 posts	I don't have a link, but their is a conspiracy theory about the "top" AV software companies. The theory is that the "top" AV companies will actually hire people to write virus's and trojans for the specific purpose to keep them in business. When an AV software company has been having a rough time, they will hire a programmer to make a virus and then give them the details on how to block it so they can look like the knights in shining armor. This is illegal in the US, but nothing stops them from paying some russian hacker under the table to do this task for them.......thats the theory and something to really think about. What can really stop the AV companies from doing this?

07-23-2006, 08:33 PM	permanent link to #8
SoulAssassin Vagina Friendly Mayor Join Date: Jan 2005 Location: Cincinnati, OH Posts: 3,428 (#25 ) My photos: 15 Thanked 1x in one post	I'll see if I can find it but I read a story once where both McAfee and Symantec were accused of creating a virus during a downtime.

07-24-2006, 03:40 AM	permanent link to #11
Torx Indigenous Nudist Join Date: Jan 2005 Location: Memphis Posts: 8,687 (#3 ) My photos: 77 Thanked 17x in 12 posts	top 3 in my opinion is nod32, kas, avast its up to you to test and try them out before buying.. they dont have a strong share because it just isnt as popular as symantec or mcafee its a sad and disturbing thought that these companies are out creating virii just to turn around like knights in shining armor to repair their own creations.. for money. We all know its happening but we cant do anything about it unless we program and create our own av for free.

07-25-2006, 04:28 AM	permanent link to #13
Torx Indigenous Nudist Join Date: Jan 2005 Location: Memphis Posts: 8,687 (#3 ) My photos: 77 Thanked 17x in 12 posts	this whole thing makes you wonder if microsoft makes their own exploits/fixes and uses the update system as a means of catching bootleggers..

07-25-2006, 11:11 PM	permanent link to #15
saint seiya Senior Member Join Date: Jan 2005 Posts: 882 (#95 ) My photos: 3 Thanked 0x in 0 posts	i just used nod32 and downloaded a virus to see if it would detected and no luck.! Whats the best damn antivirus prog out ?!!!

08-02-2006, 06:05 PM	permanent link to #18
Undertaker989 Tweak Minion Join Date: Jan 2005 Posts: 1,607 (#61 ) My photos: 0 Thanked 1x in one post	I have to correct a post I made in this thread, specifically, the part about ARP issues. I am afraid that there is no real way to stop someone from poisoning the ARP b/c its really a protocol flaw rather than a flaw in the hardware itself. To those who don't know what this means: basically, even if you are on a datalink layer switched network where you can't see traffic other than broadcasts on other ports of the switch, an attacker can poision the arp and tell both the switch and your computer that the attacker is you and vice versa. So, all traffic can be sniffed once that is done and you best hope that you are in love with SSL and strong 12+ character passwords unique to each application that requires a password. Now, if you are connected to a wireless network, forget about it, all traffic is broadcast and you are free game just like above. edit: now, if you aren't running a wireless home lan, or you know there is nobody malicious on your lan, you should be in the clear. The attacker needs to be on your network for the sniffing to work.
	Barrack isn't all smiles and sunshine! So you don't know anything about Sarah Palin? Well, here are some of her juicy secrets!

08-02-2006, 08:12 PM	permanent link to #19
Cartman Senior Member Join Date: Jan 2005 Location: United States of American Posts: 1,762 (#55 ) My photos: 0 Thanked 0x in 0 posts	u guys are so fucking stupid, you really think they need to hire poeple to create viruses? If you guys believe this, than you'll get a real kick out of what poeple say about the moon landing!
	"It is good that war is terrible, otherwise we would become over fond of it." - Robert E. Lee. "You know, I used to think it was awful that life was so unfair. Then I thought, wouldn't it be much worse if life were fair, and all the terrible things that happen to us come because we actually deserve them? So, now I take great comfort in the general hostility and unfairness of the universe."

Thread Tools	Search this Thread
Show Printable Version Email this Page