Best Resource For Identifying Legit Applications?

bjb writes "While helping a somewhat computer illiterate person figure out a problem recently, they mentioned that PDF files had recently stopped working. Upon investigation I found something installed called 'PDF Suite.' Never having heard of it, I Googled it with 'malware' and other key words, but nothing turned up, though my suspicion remained (and was somewhat confirmed by WOT.) So my question is, where can you go to find out if something is legitimate? Because the person I'm helping is on a dial-up connection, downloading malware detection applications (and updates) is too heavy consider. And I don't maintain a USB stick with such apps, since I don't do this kind of thing very often. Where can you quickly find information?"

download.com

[martas]

and many other software download sites [claim to] thoroughly test submitted applications with antiviruses. in recent times i haven't downloaded any app from them that turned out to contain any sort of malware.

Re:download.com

[kalirion]

That might work if the application is infected by (known) malware. What if the application is itself the trojan, perhaps one that activates in the future so no one would have reported it yet? Unless someone has access to the source code and the time and inclination to look through it, how do you know it's safe?

Re:

[martas]

good point, which is why i typically try to download relatively popular software, which is another thing such sites can help you determine.

Re:download.com

[Keeper Of Keys]

He he heh! Now that my PDF reader is reasonably popular, I can switch on its backdoor functionality.

beware!

[TheSHAD0W]

BitTornado, an application I administer, was once available via ZDNet, a site which distributed freeware and shareware apps much like Download.com. At some point someone began offering download mirrors for BitTornado and other apps, with installers that were modified and apparently contaminated with malware. I complained twice; the second time, they nastily asked whether I wanted them to remove BitTornado from their site. I told them yes.

Just because software is available via some popular gateway, you can't be 100% certain what you download will be perfect and free from malware.

Re:download.com

[Cylix]

Uninstall them all and let God sort em out.

When I was ever called to sort some disaster of a mind fucked mess I wouldn't take prisoners. Usually, my first question was could I just re-image and generally this was a resounding no.

When you can't re-image you can only do the next best thing with next best thing results. Remove, scan and move on.

It's more like war time triage then anything else.

Sure, I feel somewhat bad they made it in the mess they did, but I can only personally do so much.

What is your OS?

[Kitkoan]

That will help in figuring out where to go.

Re:What is your OS?

[Kitkoan]

Seen as "somewhat computer illiterate," read as "Windows."

I know a lot of OSX users that fit that description.

Re:

[ColoBikerDude]

Seen as "somewhat computer illiterate," read as "Windows."

I know a lot of OSX users that fit that description.

The OP also said "dialup" and "malware" so I still read as "Windows." :)

Re:What is your OS?

[e2d2]

Macs are dumbed down. So you gotta be smart to use them. Or something like that.

Re:

[Anonymous Coward]

I know a lot of OSX users that fit that description.

And a quick check of Ubuntu Forums should convince anyone that Linux has long since joined the party. If posts on /. don't.

Re:What is your OS?

[Kitkoan]

I know a lot of OSX users that fit that description.

And a quick check of Ubuntu Forums should convince anyone that Linux has long since joined the party. If posts on /. don't.

How is this a troll? He's right. Not everyone who uses Linux is a computer expert. Hell, when I started using Linux I was a beginner with Linux and just took a blind plunge. Wasn't hard with Ubuntu and thats why the forums are there, to help beginners and solve problems. It's the online FOSS version of Apple's Genius Bar in there stores and Microsoft store's Guru Bar. OSX and Linux are gaining speed with all users, not just the hardcore users.

Re:

[OhHellWithIt]

"Doubleclick it until it opens up a Finder window, and then drag the icon into the Application folder on the left hand side of the Finder window".

Um, yeah. In December, my parents asked me to set up file sharing between Dad's Mac and Mom's PC, and the documentation on the Mac talked about a Finder window and some other stuff. I had to do a web search to learn how to decipher the MacSpeak. Intuitive, it's not. I sure was glad to go home to my Linux laptop.

Re:

[Runaway1956]

This. AC has stated my policy, plainly. If I've never heard of it, and I don't know what it is, it's malware. In the computer world, it's "Guilty, until proven innocent."

And, when you think about it, the problem with malware is not so much that it exists. The real problem is that every gullible fool in the world automatically TRUSTS anything they find on the web.

Trust. Let the software distributor EARN some trust, don't just give it to him. And, those 10, 100, or even 1000 glowing reviews posted on hi

"to big to download"

[Sir_Lewk]

downloading malware detection applications (and updates) is too heavy consider.

Any yet they find the time to download all of that malware...

Re:"to big to download"

[Monkeedude1212]

Exactly. If you have the time to download an application you have time to download malware detection.

And really, what do you suppose you were going to do if Google did confirm it as Malware? You can't download anything and you don't have a USB stick with that stuff on it - in most cases you're pooched already.

It honestly sounds like either you or the person you're helping simply don't want to put in the effort in -actually- testing the machine for malware.

Re:

[Monkeedude1212]

Some Malware puts itself onto the Kernell - and will be present during safe mode.

I take it you've never had to deal with an infest HAL.DLL before? Don't delete it.

Re:

[oatworm]

That's only one of the myriad options that malware uses. I've seen it modify registry keys so it runs whenever somebody logs in (usually by fiddling with the Userinit key in HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon) it automatically starts - that'll hold true even during Safe Mode boots, which makes it impossible to delete it while the operating system is running. Since a lot of tools are starting to catch on to that, many of them will just install themselves as hidden device drivers, wh

Re:

[jtownatpunk.net]

A dialup connection can pull a quarter gig per day. Malwarebytes is under 10 megs with all updates and patches. (More like 8 megs.) You can get 200k per minute on dialup without breaking a sweat. That's 5 minutes per meg. That's 40 minutes for the full Malwarebytes download including updates. How much time do you plan to spend investigating the source of every installed program? Sure, it would be nice if there was a big list of every application on the planet with happy faces and frowny faces next to

Re:

[the_denman]

Microsoft provides a free anti virus and anti spy-ware system called security essentials [upeke.net] that is not that big that you can't occasionally pull down new definitions via the dialup. Also when you visit why not run a copy of autopatcher [upeke.net] from your thumb drive to make sure they have all of their windows updates.

Assume malware

[c++0xFF]

If you've never heard of an application, assume that it's untrusted malware.

Linux has been pioneering a way around this through trusted software repositories, but the concept hasn't panned out for Windows yet.

Re:Assume malware

[tepples]

If you've never heard of an application, assume that it's untrusted malware.

Then how should a micro-ISV [wikipedia.org] or a free software developer earn users' trust?

Re:Assume malware

[fuzzyfuzzyfungus]

There are certainly costs to the strategy; but it is still a decent heuristic for somebody in the demographic we are talking about(ie. clueless, no broadband, probably no backups, or even system restore media).

New entrants will naturally attract the attention of the sort of savvy tech enthusiasts who follow news outlets and whatnot, and are arguably in a far superior position to evaluate for utility and nonmalice. Once they've rendered their verdict, the noobs can follow the received wisdom, or have it done for them.

"If you've never heard of an application, assume that it's untrusted malware." would make a shitty universal rule; but it is mostly a good idea in this context. Some people are better cut out to deal with technical risk than others. People with disposable VM appliances can do whatever they want. Noobs with dialup who will end up losing months of work, a week's use of their computer, and several hundred in Geek Squad fees if they do the wrong thing should probably stick to the beaten path.

Re:Assume malware

[ekhben]

If only I'd learned that rule before I first heard of MS Office...

Re:

[b4dc0d3r]

some options:

• Release the source code, or source with paid registration
• Get listed by one of the major download sites as this poster said [slashdot.org]
• Get listed on one of the major OS-specific app news sites as in this thread [slashdot.org]

WOT has the same problem as anything else, false negatives. I found many different sites offering software with this name.

This one has links to tucows and is the Google keyword sponsored link, making it look legit: http://pdf-suite.com/us/default.asp [pdf-suite.com]
This has the same picture but entirely different we

Thank you for recommending Upload.com

[tepples]

Release the source code, or source with paid registration

I know of several developers who refuse to release source code because they've had their software plagiarized[1] by some unscrupulous yet judgment-proof[2] party.

Get listed by one of the major download sites as this poster said

I looked into this, and it turns out that the way to get your software listed on Download.com is (fittingly) called Upload.com. And its policies don't look as bad as I expected.

[1] Copied without attribution. In most cases, plagiarism is a form of infringement.

[2] Lacking financial resources or located in another state or country.

Re:

[perlchild]

I was going to say the only safe approach was to whitelist, but you beat me to it.

If you're not sure, don't.

You're better off living without that one piece of software that's obscure, than dealing with the malware.

If you really can't live without one piece of software, then you gotta research it.

Re:

[Dynedain]

Linux has been pioneering a way around this through trusted software repositories, but the concept hasn't panned out for Windows yet.

I've been hearing this canard trotted out quite a bit recently... How Linux is so much easier than Windows to manage updates, so much easier than Windows to install software, etc.

But think about it for just a minute. The model only works because you trust RedHat, Gentoo, etc to do the right thing. Imagine if the recommended way for doing software installs or updating 3rd party

Re:

[jedidiah]

This is a bogus argument.

The problem with the Apple store is that it is MANDATORY.

Also, something like a Linux package manager is something that 3rd parties can tap into
on an as needed basis as you decide they are trustworthy. The individual can do this.
They don't have to wait for Redhat (or whomever) to bless the vendor in question.

Re:

[Dynedain]

The problem with the Apple store is that it is MANDATORY.

Use of IE isn't mandatory, yet MS has been forced by the EU to make users actively choose between it and other browsers.

Re:

[Miseph]

While I agree that it has some problems, I still think that's the best solution.

One idea would even be creating the framework such that when a program is installed, it adds the appropriate update repository and is updated through the interface, but not by Microsoft, or even with their direct corporate consent.

Yes, this might kill InstallShield, but who honestly cares? Nobody seems to be griping at the destruction of the floppy disk drive market, what's so magical about the application installation and updat

Re:

[EdelFactor19]

Because you don't HAVE TO rely on them. You can always create your own repos, add other users repos, etc, etc. They just provide a very good channel for managing to the two together so that you can rely on an already existing infrastructure even if you are an independent dev. Everyone doesn't have to go out write up a crappy version of Installer software..

Furthermore, its linux, you can always grab the source and compile it yourself, or grab a binary. You are not forced to go through those channels to

Re:

[Dynedain]

Microsoft my try some sort of certification process, but I have my doubts about that, too.

They did require certification on drivers for Vista (WHQL). There was a huge backlash against that and one of the reasons why people were so upset w/ Vista. Lots of hardware support problems because WHQL drivers didn't exist for a lot of products at launch. Hardware manufacturers didn't want to go through the extra hassle of getting WHQL certified.

Does the vendor make md5 or sha1 hashes available?

[number6x]

Does the vendor make md5 or sha1 hashes available?

Linux repositories are signed with pgp keys, this is usually pretty good(pun intended) for security. Even when breaches happen things are found out pretty quickly.

Searching the internet for downloads and running downloaded apps to install is a very 1990's way of installing software. Its hard to believe Windows users don't have App repositories yet.

Re:Does the vendor make md5 or sha1 hashes availab

[Anonymous Coward]

Ho ho ho, allow me a moment, my monocle has fallen into my snifter of brandy. Ho ho!

I, being a LINUX USER, you see, do not have such mundane Mico$$$$$$$$$oft problems, ho ho!

Did I mention I use LINUX! Ho ho. I bet you are impressed with my LINUX USING ABILITY. We USERS OF LINUX have SOFTWARE REPOSITORIES, ho ho ho. By USING LINUX you too can have a SOFTWARE REPOSITORY.

What is that I hear? You use Mico$$$$$oft products?! Ho ho! My dear friend, you must cease at once and switch to LINUX. LINUX has SOFTWARE REPOSITORIES, did I mention this? Ho ho ho...

oh dear, it appears my monocle has come off again! Ho ho!

Re:

[tepples]

LINUX has SOFTWARE REPOSITORIES, did I mention this?

The software repositories associated with major desktop Linux distributions, such as Fedora and Ubuntu, have a drawback: not all applications, even useful and legitimate ones, satisfy the licensing requirements of the repositories. For example, almost no major label video games are completely free software [gnu.org] and free assets [freedomdefined.org].

Re:

[Lunix Nutcase]

And they aren't always up to date, certain software you might want could have been removed from them (XMMS for example with later versions of Ubuntu), or they just never included certain software in the first place.

Re:

[amRadioHed]

How is removing XMMS a sign of not being up to date? XMMS hasn't been supported by the developer for years. Audacious is what you are looking for and I'm sure it's in the Ubuntu repos.

Re:

[frank_adrian314159]

... almost no major label video games are completely free software and free assets.

Well, don't you have something better to do with your life than play games?

Re:

[the_womble]

It is much easier to deal with the rare piece of software that is not in the repo, than lots and lots of software that is not in the non-existent repos.

Gamers are rarely completely naive users, and are rarely Linux users anyway.

There is usually a recognised non-free repo which should be enabled on installation for free-as-in-beer proprietary software. The problem only needs to be solved once.

Proprietary paid for software is usually safe-ish anyway (no worse than on Windows) and only a small proportion of a

Re:

[Anonymusing]

I'm trying to picture a penguin with a monocle and a snifter of brandy... it's like Mr. Peanut, but with booze.

Re:

[ScouseMouse]

Amusing, however app repositories arent confined to open source, Apple do it (At least for the IPhone), Nintendo do it, google do it, Sony do it. No reason Microsoft couldnt do it.

Re:

[Dishevel]

Umm. Don't want to do it. But.....

Do and Dose are not fully interchangeable.

Re:

[Voyager529]

Mod Parent Up! I don't care if it's posted as anon, this is EXACTLY what would happen. About the only other scenario is if a neutral third party (har har) decided what repos were allowed to be added. The issue is that anyone with centralized control will eventually corrupt it. We don't trust Microsoft because they're already corrupt, but who is trustworthy and will remain so without wreaking privacy havoc?

I 100% agree with AC here. Repos in Windows are a good thing, but like most good ideas, the courtroom p

Obligitory XKCD link...

[Stick32]

because someone has to [xkcd.com]

Re:

[Anonymous Coward]

There needs to be some sort of 'Fail' mod...

Re:

[MonsterTrimble]

Ho ho ho...Ho ho...ho ho!...Ho ho...ho ho ho...Ho ho!...Ho ho ho...Ho ho!

Who are you? Santa?!?

Re:

[RotateLeftByte]

Actually, as he is using Monocle then I'd like to suggest he might be a SUSE User.
Then sudo apt-get install monocle is absolutely useless.

Re:

[teh moges]

He could also be using Debian and needs a note taking application

Re:

[oatworm]

Considering how Ubuntu comes with Mono now (save your jokes 'til the end, please), along with F-Spot, Banshee, Tomboy, and other Mono-based apps, I'd say sudo apt-get install monocle is just right. That said, if you're on a SUSE box, yes, "yum install monocle" would be more suitable syntax.

Re:

[oatworm]

And by "yum install monocle", I of course meant "yast2 -install monocle"... bloody hell...

Re:Does the vendor make md5 or sha1 hashes availab

[Dr_Barnowl]

Signed hashes only assure you of the source of the files. They don't in themselves provide any assurance of trust.

In the majority of these cases, the only thing it would achieve would be that you can state with some confidence that it's definitely the fault of a particular asshat.

Re:

[mcrbids]

Signed hashes only assure you of the source of the files. They don't in themselves provide any assurance of trust.

In the majority of these cases, the only thing it would achieve would be that you can state with some confidence that it's definitely the fault of a particular asshat.

How don't they provide provide assurance of trust?

If you trust Vendor A, and you install Vendor A's repo, then the number of things to worry about has just been sharply reduced, because you can reasonably trust that packages signed

Re:

[Tacvek]

hashes don't assure you of the source at all, they just provide a unique (within the limits of the hash type) fingerprint for the file. If you know what a file's hash should be, the source is irrelevent.

Sure, but cryptographically signed hashes tell you that somebody who possesses the private key used to sign the sha1sums file (or equivalent for other hashes) claims that the signed hash values are correct, so if you get a file with that hash you can be confident it has not been modified relative to what the key possessor calculated the hash on.

Thus, in this sense it assures you of the original source of the file, and that the file has not been tampered with, regardless of the end source the user gets the f

Re:

[Lunix Nutcase]

Searching the internet for downloads and running downloaded apps to install is a very 1990's way of installing software. Its hard to believe Windows users don't have App repositories yet.

App repositories are only good if they are always up to date. One can go to Ubuntu forums, as an example, to find numerous stories of people having to go outside of the repositories to find the latest versions of apps or to find apps that aren't in the repository. Sure, repositories can help to ease in installing and finding software but they aren't this perfect magic bullet as people like you like to claim. If they were why is there any need of a mechanism to add 3rd party repositories in apt?

Re:

[h4rr4r]

Third party repositories are still better than random app off random webpage. As you first trust the repository before you would think of adding it. Nothing is a magic bullet, but you knew that already.

No go back under your bridge.

Re:

[Lunix Nutcase]

Third party repositories are still better than random app off random webpage.

Why? Any person can set up a random repository.

Nothing is a magic bullet, but you knew that already.

Which runs contrary to what the GP was attempting to project.

No go back under your bridge.

*yawn* Get some better material, kiddo.

Re:

[Dishevel]

This is /. Here trolls do not belong hiding under a bridge. This troll was right out in the open right where it is supposed to be.

Re:

[nschubach]

Searching the internet for downloads and running downloaded apps to install is a very 1990's way of installing software. Its hard to believe Windows users don't have App repositories yet.

I haven't spent any time looking, but is there possibly a nice cross platform (Win/Lin/Mac) solution for an application developer to stick on his web server and give everyone a link to add that to their package manager of choice? That or some kind of uniform repository "tag" of sorts. This would be something that would contain the developer's repository information and all repository clients could understand how to read it and/or know if they support it.

It definitely would be cool (and avoid silly one cli

Re:

[Lunix Nutcase]

Searching the internet for downloads and running downloaded apps to install is a very 1990's way of installing software. Its hard to believe Windows users don't have App repositories yet.

How is that any less worse than having to dig up third-party repositories or searching the internet for packages to install software that isn't in your OS's repository?

Re:

[h4rr4r]

It's not, novice users should not be installing non-repository apps at all.

Of course since I am responding to a troll I am sure you will insist on making more silly claims.

Re:

[Lunix Nutcase]

It's not, novice users should not be installing non-repository apps at all.

Why? What if they want something that is more up to date than what is in the repository or what if the application they want has been removed?

Of course since I am responding to a troll I am sure you will insist on making more silly claims.

How am I a troll? Because I bring up legitimate issues that have appeared on various linux forums such as Ubuntu Forums?

Re:

[jedidiah]

If sorting out the crap from the good is such a burden for them, then they are probably better off staying away from the latest version anyways.

This is Joe n00b we're talking about here, not Dave power user.

Feel free to use my method

[yttrstein]

find /usr/ports/* >> notmalware.txt

Look at it this way

[Anonymous Coward]

If it is malware, it's probably more secure against attack than Adobe Reader is.

Maintain the USB stick.

[Tackhead]

And I don't maintain a USB stick with such apps, since I don't do this kind of thing very often.

No better time than now to start collecting installer .exe files.

The reason you collect the installers (or the portable installations for programs that don't require installers) is because in the Windows world, you never know when a publisher will go rogue. UsefulUtility 0.8.5 might be great, UsefulUtility 0.8.6 might come with an optional toolbar/crapware that can be deselected at install-time using the "cu

Re:

[Rob the Bold]

And I don't maintain a USB stick with such apps, since I don't do this kind of thing very often.

No better time than now to start collecting installer .exe files.

Unless you really don't want to become that "guy who knows computers and fixes mine for free". Even if they pay you -- or especially if they pay you -- you've gotta deal with that "you touched it last" problem the next time they install some malicious. I used to be that guy, and I did just as you said. And you're absolutely right about publishers "going rogue" and the advantages of keeping multiple old version, JIC.

I still keep that USB stick. But I try to make sure no one knows about it anymore. It's

Er

[Quiet_Desperation]

Did you try Googling it *without* the word malware?

http://www.google.com/#hl=en&source=hp&q=%22PDF+Suite%22&aq=f&aqi=g10&aql=&oq=&fp=1 [google.com]

Re:

[wurp]

The only thing that could have made that comment better is to use LMGTFY instead of Google in the link.

Re:

[nine-times]

I'm guessing you're being funny, but since you're modded "insightful"...

I think what the OP was saying is, "I Googled it with 'malware' and other key words, but [no information about it being malware] turned up, though my suspicion remained..." So the problem wasn't that he couldn't find information about PDF Suite at all, but rather he couldn't find enough information to determine whether the program was legitimate.

You can't really tell.

[Oxford_Comma_Lover]

I don't think there's a good way to tell, short of a truly rigorous approach that takes a long time to verify all the software on a system. It's a combination of (1) too many things happening at once on a modern system, (2) lack of good DRM-type authentication (which would allow you to approve or disapprove vendors, or approve each software package independently if from a noncommercial vendor), (3) too much of the stuff that's happening being distributed to different locations. In linux, you can usually t

Google.com

[Kylow]

The best resource is still Google. You will need to be a little more patient and a little more competent with your search terms, however. Or you could just write in to Ask Slashdot.

How important is this person to you?

[pz]

If this person is important to you (ie, a relative, family friend), then set up a CD-R with A/V and malware detection on it such that it autoruns, and mail them a new, fresh copy once per month that includes the latest A/V definitions. Hell, include a defrag as part of the autorun process. What does this person do for updates to Windows? I'm betting nothing. Include those too.

90% of maintaining my computer semi-literate parents' and relatives' computers is basically this: (1) update antivirus, (2) run A/V, (3) update Windows, (4) defrag.

Re:

[mikael_j]

Sadly NTFS still benefits from the occasional defrag (although not to the extent that FAT did).

/Mikael

Re:

[tomhudson]

Defrag is cargo cult.

They're on dialup. Who's to say it isn't Win95 on an 80 meg fat-16 hard drive that was upgraded from wfw 3.1?

The repositories dummy.

[h4rr4r]

If it is not in the default repositories do not install it.

For novice users the Ubuntu Software Center is nice too.

Best idea

[Darkness404]

Just delete the apps that aren't needed and replace them with OSS alternatives. Other than some well known software (Office, Photoshop, iTunes, etc) most everything else can be replaced with a better working, faster and generally better OSS alternative. Why keep that PDF suite? The most you would need would simply be Foxit, Sumatra PDF or Adobe Reader.

Download.com

[westlake]

Download.com [cnet.com] has it all. Programs of every description.

Open Source. Closed Source. Free Ware. Trialware. Inkscape is there.

It's a painless way to survey pretty much everything worthwhile that is out there - and infinitely more accessible than SourceForge.

File Hippo [filehippo.com] has much narrower, utilitarian focus, but the essential apps are there. File Hippo's update checker is quick and reliable.

Compulsory...

[vorlich]

hopefully your friend has kept all the original packing that their computer came in. Repack everything and return it to the original vendor. Tell them that your friend (and quite possibly your friend's friend) is not really smart enough to own a computer.

Great tool for identifying legit applications

[MobyDisk]

Just download http:///www.amilegit.com.ru/legit_app_detector__win32_trojanfree!!!!.exe [amilegit.com.ru] and it will scan the app and tell you if it is legitimate.

If it's in the Debian archive it's ok.

[John Hasler]

> So my question is, where can you go to find out if something is legitimate?

"apt-cache search " works for me, though you may prefer aptitude or synaptic.

You can, of course, trust the Ubuntu archive as well. Debian-multimedia is ok too, though it is unofficial.

How to find malware on your system

[Opportunist]

Now, this ain't bulletproof but it's a start.

1) Download autoruns [microsoft.com], run it, take a look at what it finds.
2) Think something is suspicious? Upload to Virus Total [virustotal.com].
3) Act accordingly

It's anything but foolproof and there are a LOT of things that will slip past, but it's a good way to start without having to know anything about software.

Nuke it from orbit just to be sure

[PPalmgren]

If it isn't used frequently for a specific purpose, its not a specific tool for their computer use. Remove it and install foxit, and also install an anti-malware program and run it anyways.

Malwarebytes and Foxit are both fairly small, I don't think dialup should be an issue here.

If they can't tell....

[Zadaz]

If they (or you) can't tell then running Antivirus and Malware detection isn't "too heavy consider" it's mandatory, even if it means a few hours on dialup. If they can download the crapware they can download the AV.

(And you're being overly dramatic. Daily updates should take a few minutes to download at most, even on dialup.)

If the King can't afford a food taster then he gets poisoned or he starves to death.

When I'm forced to use Windows...

[pongo000]

...I pretty much stick with Malwarebytes [malwarebytes.org], CCleaner [ccleaner.com], SpywareBlaster [javacoolsoftware.com], and MSE [microsoft.com].

Actually, I got this tip off another /. post...researched each (non-MS) application, determined for myself that they were legit, and have not looked back. In fact, I just spent a few minutes last night eradicating the trojan "Microsoft" Antivirus 2010 on a friend's computer using the Malwarebytes app on a USB. Worked like a charm.

But don't take my word for it...do your own evaluation. I think you'll like what you find.

Free Virus Scanner

[hduff]

Get the ISO from http://trinityhome.org/Home/index.php?wpid=1&front_id=12 [trinityhome.org] for the Trinity Rescue Kit. Run it. Update it and save the updated ISO image. Burn that to a CD and give it to your friend. He can run it and disinfect his computer without an Internet connection. Give him an updated CD every month.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Not enough bandwidth? Ehh...

[wealthychef]

I call bullshit on the premise. If the user has bandwidth enough to download malware, he has bandwidth enough to download malware detection software and updates.

Re:how about google?

[Mr Z]

Well, if it was benign software, then maybe the free trial ended? Or, if it really did have some malware in it, maybe it was a "cracked" version, with extra Russian Hacker Goodness?

Re:

[dbcad7]

Maybe it's a file association problem ?

Re:how about google?

[Mr Z]

There is a legit package named PDF Suite. It's unclear whether that installation was legit or not. If "PDFs stopped working," it's entirely likely that the trial period for the legit software expired. No idea. I wasn't weighing in on either side of that.

The problem as stated in this article's question is almost something of a fools errand: "I have a connection to the Internet that at best can give me benign but worthless stuff, and can give me unbounded amounts of virulent crap. I can't use this connection to download anything useful or helpful, nor can I bring anything with me that's useful and helpful. How do I avoid the crap?"

Perhaps I overstate it a bit, but not by too much, I don't think.

Re:

[qw(name)]

"Legit" apps sells your info just as well as the others. That's another plug of open source software.

Google comes to mind...

Re:

[tepples]

Are you getting paid? And if not, why not? And if so, why are you trying to do this over the phone?

Getting paid doesn't necessarily mean getting paid enough to 1. take a week off one's day job and 2. pay for round-trip airfare.

Re:

[jimicus]

Getting paid doesn't necessarily mean getting paid enough to 1. take a week off one's day job and 2. pay for round-trip airfare.

At this point it would probably be substantially cheaper, quicker and easier to post them a prepaid 3G dongle and deal remotely using a proper remote support tool.

Though if they're on dialup it's possible they live in the back end of beyond, in which case there may not be a 3G signal.

Re:

[Lunix Nutcase]

Are you getting paid? And if not, why not? And if so, why are you trying to do this over the phone?

Because some people are actually nice and want to help out their friends and family?

Re:

[jedidiah]

Being unpaid tech support for Gates is not being nice, it's being a chump.

If your friends and family can't be self sufficient with their consumer electronics device then they need to buy a different brand of device.

Re:

[oodaloop]

Yeah, I feel the same way with any service I provide. Want me to hold the door for you? Pay up. Want me to help you move? Pay. Pick up a coke while I'm up? Pay. Jumpstart your car? Fix your collar? Point out your shoe's untied? That's right, PAY.

Who needs friends as long as you have money?

Re:

[oatworm]

I doubt anybody is seriously suggesting that everybody should stop performing random acts of friendly charity - in a friendly situation, the friend probably brings something of value to the table that you can pester for in return (help with moving, watching your kid, going on that fishing trip with you, etc.). It's sort of like implicit bartering. As for most of the services you're providing, though, well...

1. Opening a door is low effort and low skill, so I don't expect renumeration for that.
2. He

Re:

[Lunix Nutcase]

Because not all areas of even the US have broadband penetration?

Or Jotti Re:Upload to virustotal.com

[AJ Mexico]

I agree, virustotal answers the original question of an online-resource to check a file. A similar scanning service is http://virusscan.jotti.org/ [jotti.org]. Remember, take the answers with a grain of salt. These are both multi-scanner services, in which the file is examined by multiple virus-scanning software packages.