TechTalkz.com Technology & Computer Troubleshooting Forums - View Single Post

07-11-2007, 11:44 PM

"Leythos" <void@nowhere.lan> wrote in message
news:MPG.2133fe81b606e77e989939@adfree.Usenet.com. ..
> In article <prqyi.19484$Lu.18380@bignews8.bellsouth.net>,
> jen@example.com says...
>> "Leythos" <void@nowhere.lan> wrote in message
>> news:MPG.2133f9cc76e90022989937@adfree.Usenet.com. ..
>> [snip]
>> >> Could you elaborate(and provide a cite) on this "new PDF exploit"
>> >> you
>> >> read about a couple weeks ago that this so-called malware that
>> >> only
>> >> BitDefender detects(generically) takes advantage of? The last PDF
>> >> vulnerability AFAIK was reported in January ...
>> >> Adobe Reader/Acrobat Multiple Vulnerabilities:
>> >> http://secunia.com/advisories/23483/...ated=1#related
>> > Nope, just surfing and read about it, didn't bookmark it or even
>> > care
>> > where, sorry. As for the BitDefender, I can only say that few of
>> > the
>> > other AV solutions have alerted on the new ones, but we still see
>> > both,
>> > so there must be some difference in the PDF's - I'm not about to
>> > let
>> > one
>> > through to play with it

>> And what other AVs besides BitDefender has reported them as malware,
>> and
>> as what?
> I think that KAP picked up on a PDF in a users PST file (not one of
> our
> customers, a friend of a friend that brought their computer over for
> me
> to look at), but I don't have it or the report with me now...
> Sorry, when it comes to most of this crap I don't even bother looking
> past the reject logs, to many years of trying to determine what they
> wanted it to do and just getting old and not caring any more.

So you don't really have anything(other than the BitDefender generic
catch) to back up your statement that the PDF SPAM runs are anything
other than SPAM. You didn't even submit the suspects to Virus Total or
Jotti. hmmm... not very convincing

-jen

07-11-2007, 11:44 PM	#20
jen Guest Posts: n/a	Re: New .PDF malware (?) "Leythos" <void@nowhere.lan> wrote in message news:MPG.2133fe81b606e77e989939@adfree.Usenet.com. .. > In article <prqyi.19484$Lu.18380@bignews8.bellsouth.net>, > jen@example.com says... >> "Leythos" <void@nowhere.lan> wrote in message >> news:MPG.2133f9cc76e90022989937@adfree.Usenet.com. .. >> [snip] >> >> Could you elaborate(and provide a cite) on this "new PDF exploit" >> >> you >> >> read about a couple weeks ago that this so-called malware that >> >> only >> >> BitDefender detects(generically) takes advantage of? The last PDF >> >> vulnerability AFAIK was reported in January ... >> >> Adobe Reader/Acrobat Multiple Vulnerabilities: >> >> http://secunia.com/advisories/23483/...ated=1#related >> > Nope, just surfing and read about it, didn't bookmark it or even >> > care >> > where, sorry. As for the BitDefender, I can only say that few of >> > the >> > other AV solutions have alerted on the new ones, but we still see >> > both, >> > so there must be some difference in the PDF's - I'm not about to >> > let >> > one >> > through to play with it >> And what other AVs besides BitDefender has reported them as malware, >> and >> as what? > I think that KAP picked up on a PDF in a users PST file (not one of > our > customers, a friend of a friend that brought their computer over for > me > to look at), but I don't have it or the report with me now... > Sorry, when it comes to most of this crap I don't even bother looking > past the reject logs, to many years of trying to determine what they > wanted it to do and just getting old and not caring any more. So you don't really have anything(other than the BitDefender generic catch) to back up your statement that the PDF SPAM runs are anything other than SPAM. You didn't even submit the suspects to Virus Total or Jotti. hmmm... not very convincing -jen