Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

SpywareNuker Sues Symantec

0 views
Skip to first unread message

discussions

unread,
Aug 1, 2004, 5:16:47 PM8/1/04
to
http://www.netrn.net/spywareblog/

July 28, 2004

Right now this is a Spyware Warrior exclusive as far as I
know. I was notified that Trekeight, the company
responsible for SpywareNuker, filed a lawsuit against
Symantec, the makers of PC security products including
Norton Anti-Virus. Since September 2003, Symantec has
targeted SpywareNuker as adware.

http://sarc.com/avcenter/venc/data/adware.spywarenuker.html

Trekeight has filed the complaint, which can be viewed
here:
http://www.spywarewarrior.com/files/Trekeight_v_Symantec.pd
f (PDF), with the US District Court in southern
California.

Many people have claimed that SpywareNuker, a spyware
removal program, actually installed spyware, but I have
never seen any proof of that claim. Eric L. Howes tested
SpywareNuker and sent me the results, which I blogged
about previously. SpywareNuker is listed on the
Suspect/Rogue Anti-spyware Programs page with notes
documenting his findings and recommendations.

Stay tuned for more on this story.

Lil' Dave

unread,
Aug 2, 2004, 3:17:31 AM8/2/04
to
Hmm... "May break Layered Service Provider(LSP) in Windows TCP/IP leading
to loss of networking capabilities" What is that all about?
"discussions" <anon...@discussions.microsoft.com> wrote in message
news:83bd01c4780c$dabe6cf0$a601...@phx.gbl...

alex

unread,
Aug 4, 2004, 2:33:21 AM8/4/04
to

I suppose Phillip made his post after a long and serious
research.
Lil, that means that some apps will insert extra steps in
LSP catalog
(HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\WinSo
ck2\Parameters\Protocol_Catalog9\Catalog_Entries), i.e.
every TCP package will be parsed by a function or
functions usually stored in a dll. That's why new.net
has 'special' top level domains like .myfamily
or .mybusiness etc.
If you simply remove the dll LSP related infection will be
disabled, but you will also lose your TCP, which
essentially means internet connectivity.
You have to 'repair' LSP catalog, too, if you want to keep
TCP.
Spyware Nuker repairs LSP for you. But first versions
(back in 2002) didn't have that feature implemented
correctly and a separate tool was provided to users, in
case they need them.
A short paragraph that describes this was misinterpreted
couple of years ago and that misinterpretation was used
later as a 'proof' of something.
In short, Spyware Nuker is not the same thing as New.Net -
Spyware Nuker is an opposite of new.net and is one of just
few apps that can successfully remove new.net.

Alex

>-----Original Message-----
>"Lil' Dave" <spamyo...@virus.net> wrote in message
>news:uT32LDGe...@TK2MSFTNGP10.phx.gbl...


>> Hmm... "May break Layered Service Provider(LSP) in
Windows TCP/IP leading
>> to loss of networking capabilities" What is that all
about?
>

>Same type of deal as the NewDotNet thing. Here's some
information it it.
>
>http://www.cexx.org/newnet.htm
>
>
>--
>
>Phillip Windell [MCP, MVP, CCNA]
>www.wandtv.com
>
>
>
>.
>

0 new messages