Ian JP Kenefick wrote:
> On 4 Apr 2005 09:07:05 -0700, "AvianFlux" <neomoniker@hotmail.com>
> wrote:
>
> >I've discovered the best approach in dealing with all manner of
malware
> >is with passive measures.
>
> or by being proactive.
>
> >The passive measures which prevent >99% of malware from ever
installing
> >on my machine are as follows:
> >
> >1) Spybot Search & Destroy's Immunization and Browser Helper
> >
> >2) SpywareBlaster
> >
> >3) IE-SPYAD
> >
> >4) hpHOSTS file
> >
> >hpHOSTS file requires eDexter+JavaDog (active component) to function
> >efficiently, however.
>
> >The above will prevent your machine from ever becoming infected, and
> >minimize the frequency of running Ad-Aware and Spybot Search &
Destroy
> >active scan and removal operations, greatly. What isn't there to be
> >found, because of the installed passive measures, doesn't require
> >removal.
>
> That's not true. The above will not prevent your machine from 'ever
> becoming infected'. The 'average user' will get infected with some
> sort of malware without resident antivirus. The above may provide you
> with some (not all) the required protection for web browsing but you
> forget the biggest vector of all, email! The proof is in the MyDooms,
> the Bagles, the Netsky's etc.
>
> Sorry, but insinuating that you do not need antivirus software is bad
> advice.
> --
>
> Regards,
> Ian Kenefick
> http://antivirus.ik-cs.com

I'm not insinuating anything. It's a fact. As for email attachments, it
goes without saying, there's always a risk associated with opening them
from whatever source they originate, known and unknown.

Just delete ALL emails w/attachments from unknown sources. For known
sources, upload/send the emails w/attachments to Jotti's Online Malware
Scan or VirusTotal before opening them. If they're infected, you'll be
forewarned of it by those free online/email multi-scanner service
reports.

If, for some reason, you know or highly suspect some virus/trojan
componant has infected your computer use Trend Micro's Housecall online
scanner, and, if necessary, TM's Sysclean package to get rid of it.

No resident, real time, active AV/AT scanner needs to be
installed/running on a the machine with a correctly configured firewall
and safe hex operation.