Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Agnitum Security Quiz

This is the place for general discussions - we are a family site - no bad language, no flames.
A Moderators word is final.

Agnitum Security Quiz

Unread postby ndmmxiaomayi » September 22nd, 2007, 10:08 am

http://www.agnitum.com/vote/stquiz/start.php

One of their answers I don't really understand...

Q: A friend has sent you a link to an *.exe file with an invitation to run it. He/she is not online right now so you can’t check in with them. What should you do?

1. Trust my friend and click on the link.
2. Save the file and run a virus scan on it. If the file is clean, it’s probably ok to run it.
3. Never open the link, even if it’s from my friend.
4. Trust your firewall to block the file if it’s malicious.

Their answer:

The answer Choice 2) is correct. Let’s consider other choices to learn notes on the correct answer:

why these are not:

Choice 1): It’s risky to run executables downloaded from the internet even if they appear to come from a person you trust. Chances are it was not your friend who actually sent you the link but rather malware that impersonated your friend or used his/her credentials to spread via email or Instant Messaging. Never open executables obtained from the Internet without first checking them with an antivirus, or a combination of antimalware tools, for better diversity.

Choice 3): Why not open a link if all precautions are met, chances are it’s quite harmless. But before doing so, verify that the link belongs to a trusted source. If you see the link pointing to, for example, http://www.agnitum.com/download/Outpost ... nstall.exe, you may rest assured that it’s perfectly benign. But, of course, if you spot a link that has some suspicious connotations, you may never want to download it. Never run files obtained from the dubious sources!
Important to understand in this context is that downloading a malicious file won’t cause the infection, whereas opening it will certainly do.

Choice 4): The measures listed are not enough to block malware threat if the executable is launched. You should be mindful not to let malware activate in the first place.


Why isn't option 3 correct? Why option 2 is?

Choice 1 and 3 seems to contradict? Or I misunderstood it?
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am
Advertisement
Register to Remove

Unread postby Elrond » September 22nd, 2007, 2:05 pm

Most security gurus agree that answer 3 makes more sense than any of the others.

Answer two that is supposedly the correct one is a invitation to be infected with some new nasty. :(
User avatar
Elrond
Admin/Teacher Emeritus
 
Posts: 8818
Joined: February 17th, 2005, 9:14 pm
Location: Jerusalem

Unread postby Nellie2 » September 22nd, 2007, 4:30 pm

I would go for number 3, I don't care if it is 'probably ok' or not. I would wait until my friend came back on line and ask him about the link he sent me.

I try not to send my friends links to executable files, but I do send them the URL of the download/information page so that they can have a look and decide for themselves whether they want to download or not.
User avatar
Nellie2
Administrator Emeritus
 
Posts: 8737
Joined: December 16th, 2004, 5:01 pm
Location: UK

Unread postby turtledove » September 22nd, 2007, 9:15 pm

I too opt for # 3, check with said friend. Too many malware out there sending impersonated files etc.
I'd also ask said friend for the home page to check it out.

Just because it scans clean doesn't mean it is, as many new malware come out weekly.
It's sometimes mostly detected only after the exe is executed, and then only if the AV you use is aware of it.
User avatar
turtledove
Retired Graduate
 
Posts: 4398
Joined: February 13th, 2006, 3:26 am
Location: California

Unread postby chryssi2001 » September 23rd, 2007, 2:23 am

I would go for option 3 as well.

I have personal experience, when a friend of my daughter sent to her (without knowing it-he/she was already infected) a link through msn, not an .exe to click on and vundo came on my pc.
So now, she knows, she can't click or open whatever is send to her, even not accepting invitations from people she doesn't know.

Malware has a lot of different ways to travel through computers.
This example shows that even if you know someone, and he doesn't know he is infected, malware can easily travel to multiple pcs with links or infected files.
User avatar
chryssi2001
MRU Teacher Emeritus
 
Posts: 14395
Joined: September 24th, 2006, 2:11 am
Location: far away

Unread postby ndmmxiaomayi » September 23rd, 2007, 3:59 am

I went for option 3 as well, but alas, the answer is wrong when I received the Agnitum report. :(
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Unread postby chryssi2001 » September 23rd, 2007, 4:37 am

Never mind mayi, everyone has his/her own opinion.
It doesn't mean you have to agree with theirs. ;)
User avatar
chryssi2001
MRU Teacher Emeritus
 
Posts: 14395
Joined: September 24th, 2006, 2:11 am
Location: far away

Unread postby Drewcat » September 23rd, 2007, 4:59 am

# 3 for sure. You dont understand the answer because it does in fact make no sense. Too many times programs didnt save me.
User avatar
Drewcat
Regular Member
 
Posts: 406
Joined: September 22nd, 2007, 7:43 pm
Location: Seattle, Washington
Advertisement
Register to Remove


Return to General Discussions



Who is online

Users browsing this forum: No registered users and 32 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware