Interesting information bluecollarpc.net's toolbar

[Dustin Cook]

Hi All,

After closely examining the toolbar offered by bluecollarpc.net, I'm left
with no choice but to include it for detection and optional removal by the
user due to the fact it's using a known adware/trackware companies product
that's simply rebranded.

As of today, 07-13-2007, BugHunter detects this program and both known
variants of it, one which affects firefox via an extensions installation
and the other which affects Internet Explorer via a BHO installation.

Based on information collected on the company actually responsible for most
of the code present inside, I'd recommend others follow suit.

Thank You.

--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[cbgerry]

I am sure McAfee Site Advisor would like to hear your false report to
correct theirs then... (WHY HAVE YOU MADE THIS FALSE REPORT ???):::>

SEE:
http://www.siteadvisor.com/sites/con...earch&aff_id=0

conduit.com
Green Verdict Image

We tested this site and didn't find any significant problems.
Are you the owner of this site? Leave a comment

Automated Web Safety Testing Results for conduit.com
e-mail tests for conduit.com:
We found 2 sign-up forms and testing is in progress.
Download tests for conduit.com:
Downloads we found on this site:
Download Analysis
micro2media Toolbar (micro2media.exe)
micro2media Toolbar (micro2media.exe)
micro2media Toolbar (micro2media.exe)

3 green downloads
In our tests, we found downloads on this site were free of adware,
spyware, and other unwanted programs.

* View detailed analysis
* Submit a download for analysis

Online affiliations for conduit.com:
Link Graph

Linked to green sites

When we visited this site, we found that most of its links are to
sites which are safe or have only minor safety/annoyance issues.
Annoyances from conduit.com:
Reviewer and Web site owner comments
User Review Summary for conduit.com

This site is good (9)
This site spams (0)

Adware, spyware, or viruses (1)
Excessive popups (0)
Phishing or other scams (1)
Bad shopping experience (1)
Browser exploit (0)

IN REPLY TO==============>
bluecollarpc.net's toolbar

The group you are posting to is a Usenet group. Messages posted to
this group will make your email address visible to anyone on the
Internet.
Your reply message has not been sent.
Your post was successful


Dustin Cook View profile
More options Jul 13, 8:14 pm

Newsgroups: alt.privacy.spyware, alt.comp.virus
From: Dustin Cook <spamfilterineffect.see....@nowhere.com>
Date: Sat, 14 Jul 2007 00:14:58 GMT
Local: Fri, Jul 13 2007 8:14 pm
Subject: Interesting information bluecollarpc.net's toolbar
Reply | Reply to author | Forward | Print | View thread | Show
original | Report this message | Find messages by this author
Hi All,

After closely examining the toolbar offered by bluecollarpc.net, I'm
left
with no choice but to include it for detection and optional removal by
the
user due to the fact it's using a known adware/trackware companies
product
that's simply rebranded.


As of today, 07-13-2007, BugHunter detects this program and both
known
variants of it, one which affects firefox via an extensions
installation
and the other which affects Internet Explorer via a BHO installation.


Based on information collected on the company actually responsible for
most
of the code present inside, I'd recommend others follow suit.


Thank You.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dus...@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

THAT IS THE END OF YOUR NAME LIAR....OBVIOUSLY A PERSONAL ATTACK AS IT
IS NOT "BLUECOLLAR'S TOOLBAR.... IT BELONGS TO CONDUIT.COM PUNK ASS
LIAR .... THANK YOU SO MUCH FOR TELLING THIS NEWS ROOM YOUR
CREDIBILITY JUST DIED FOREVER IN SECURITY WORLD .... CLAP CLAP....
THANK YOU SIR !!!!

[cbgerry]

On Jul 13, 8:14 pm, Dustin Cook
<spamfilterineffect.see....@nowhere.com> wrote:
> Hi All,
>
> After closely examining the toolbar offered by bluecollarpc.net, I'm left
> with no choice but to include it for detection and optional removal by the
> user due to the fact it's using a known adware/trackware companies product
> that's simply rebranded.
>
> As of today, 07-13-2007, BugHunter detects this program and both known
> variants of it, one which affects firefox via an extensions installation
> and the other which affects Internet Explorer via a BHO installation.
>
> Based on information collected on the company actually responsible for most
> of the code present inside, I'd recommend others follow suit.
>
> Thank You.
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dus...@gmail.com.removethis
> web..:http://bughunter.it-mate.co.uk
> Pad..:http://bughunter.it-mate.co.uk/pad.xml

And this is your idea of reciprocity ? Which shows I am intelligent
and you are not ? Poor baby (yah yah yah yah yahyah gahgah) did some
nobody call you an ACADEMIC HACK ???? BOY did I hit your spot !!!! How
dared you to dignify the following with such a tit for tat
insignificant projected lie showing us all who you really are -
someone who CAN'T be trusted with the HAckwRE you push for illicit
profits: QUOTE
Definition, Dangers, and Examples of Hackware
http://bluecollarpc.net/phpbb2/viewtopic.php?t=346

(This would apply to utilities here, not full programs.)

REFERENCES TO AVOID HACKWARE REMOVAL UTILITIES:

BlueCollarpC.Net
Hackware: Examples of hackware... beware!
FILE: http://www.bluecollarpc.net/download...s-Examples.txt

Lavasoft Ad Aware: Terms Of Service
http://www.lavasoftsupport.com/index.php?act=boardrules
We do not support any method of cracking, warez, workarounds,
providing any methods, tools, or posting of links designed for this
express purpose. [Removals]

Enigma Software Group Responds
http://www.enigmasoftware.com/suppor...ing-spyhunter/
"....In addition to Symantec, other competitors of Enigma, including
Malwarebytes.org, SecurityCadets.com, MalwareTeks.com, and Temerc.com,
have been coordinating a campaign to have SpyHunter listed as rogue
software. Each of these entities is a competitor of Enigma Software
Group that either has competing products or is an affiliate of
competing products. Enigma is evaluating closely its legal options
with respect to this anticompetitive campaign...."

Why do you little unprofessional ACADEMIC HACKS challenge professional
and expert sharewares? Are you really claiming - "it is the little
guys versus the big guys - c'mon help us out with a donation to keep
our free software onboard".

And of course the FIRST lesson in PC Security has been against "Free
Stuff" shopping:

RELATED ARTICLE:
Itchy Hands » A quick » non-geeky guide to removing malware and ...
http://www.itchyhands.com/2006/01/04...alware-removal
Don't simply download 'free stuff'. Many times the free stuff is just
a lure for you to download and install a programme that is full of
malware. ...

The BlueCollarPC.Net joins in the Total Majority of World Computer
Users in recommending professional expert antispyware shareware
software programs for personal and computer security.


--------------------------/.

FILE:
http://www.bluecollarpc.net/download...s-Examples.txt
SOURCE:
http://www.bluecollarpc.net/pcsafetyfiles.html


Hackware Example: Vista Transformation Pack ....

Moderator:
The term "hackware" is a term I apply to describe any type of software
or utility that over-writes any part of Windows which includes
Internet Explorer, which are 'good-guy hacks' but nevertheless should
examined with "extreme prejudice". You must decide if any over-write
of Windows is going to be compatible and stable and non-interfering in
the many actions conducted. This applies to normal maintenance as well
in disk clean ups and defragging, registry cleaning, volume error
checks, and so on. It is also applies with "hang time" of the normal
navigation now being re-routed through hackwares that in over-writing
Windows are adding more short-cuts and other mappings. Generally, most
hackwares are written by the 'good guy hacks' that are most times
talented and create some real time savers for generally $20.00 that
are really simple re-written and re-mapped short cuts to utilities
that already exist in Windows - such as the Windows utilities of disk
clean up, defrag of disks, history and temporary files clean up and so
on. You can look at these in two ways. One, the person(s) are complete
rip-offs taking advantage of the un-knowing public that most or all
these are Windows utilities already in the computer - - - or two, that
so what, they save the manual time and all the clicks and is worth
that $20.00 to me for the convenience. The latter is generally the
case and thank you for the creations ! Definite, generally safe, time
savers. Those are the most common on the world web and many times
there are genuine freeware ones that are not ad-driven popped up or
bundled with any adware or spyware (working-freewares).

However, there are also the "bad-guy hacks" which is really all that
much malware is - including adware and spywares. These bad-hacks of
course are written commands to do so and so as over-writing Windows
commands externally to perform their malicious intent. Most times this
bad "hackware" does interfere with Windows and Internet Explorer and
makes things unstable until it is removed - immediately of course. So
my comment is to really watch out on any hack software or utility you
wish to install in your computer. There are perhaps many "wanabees"
among good-guy hacks as software/utility writers/creators that are
just not that talented yet obviously, when you may experience
instability and freeze ups from their product. The simple way out is
to uninstall and move on. However, many times a "thrifty software
writer" will not include an uninstaller and the product is also
lacking the language of writing it in to the > Control Panel > Add/
Remove Programs for it to be uninstalled with a click. So there again,
you must examine any 'hackware' package with "extreme prejudice" to
avoid hassles.

Below is an "over-write" hackware as example 'fresh off the presses'.
This type is doing the actual real overwrite of the existing Windows
and Internet Explorer in appearance and navigation. These are the
worst danger to observe, as - if imperfect - are extremely unstable
and loaded with all extra shortcut and display file and registry
entries. There is absolutely nothing here implied by me about this
product example below - but that it is a very good example for the
purpose of the content of my message to owner/users of computers
running the Windows Operating System with Internet Explorer. In other
words, if a software or program or utility software is not from
Microsoft as part of the included Windows System and is manipulating
it for you - it is "hackware". Hack is simply the term loosely applied
to a software writer and/or programmer that is able to write things
externally to operate the Windows OS - a "hack".

Hack - Definition:
http://en.wikipedia.org/wiki/Computer_hacker
"Academice hackers: In the Academic hacker culture, a computer hacker
is a person who enjoys designing software and building programs with a
sense for aesthetics and playful cleverness."

EXAMPLE OF "HACKWARES"
Vista Transformation Pack
http://www.pcworld.com/downloads/fil...ml?tk=nl_Top10

License Type: Free
Price: Free
Date Added: Nov 2006
Operating Systems: Windows XP
File Size: 30200KB
Downloads Count: 76263

Get the Vista look, but beware of hairy install.
If you're just dying for the Vista look, and have the courage to deal
with a scary installation, grab a copy of Vista Transformation Pack
6.
It makes XP look, feel, and to some extent, act like Vista using
icons, themes, a docking bar, and a new clock. It uninstalls like any
other application, but make sure to set a Restore Point just in case.
Note: The installation on this program is tricky and not for those
with a weak stomach. If you have problems feel free to contact the
developer.

Hi Jack This Utility (Hackware Warning) ....


Hi Jack This Utility (Hackware Warning):
http://www.bleepingcomputer.com/tuto...utorial42.html

BRIEF:
"If you delete items that it shows, without knowing what they are, it
can lead to other problems such as your Internet no longer working or
problems with running Windows itself. You should also attempt to clean
the Spyware/Hijacker/Trojan with all other methods before using
HijackThis. If you allow HijackThis to remove entries before another
removal tool scans your computer, the files from the Hijacker/Spyware
will still be left on your computer and future removal tools will not
be able to find them. "

_________________
*****Administrator, BlueCollarPCNet Forums*****
http://bluecollarpc.net/phpbb2/index.php
BLUE COLLAR PC TOOLBAR (freeware)
http://bluecollarpc.communitytoolbars.com/

HEY GET ****ED JERK OFF ....SAID THAT....THIS JUST WENT TO CONDUIT.COM
WHOM I AM SURE WILL BE KNOKING ON YOUR DOOR IMMEDIATELY FAGGER

[cbgerry]

On Jul 13, 8:14 pm, Dustin Cook
<spamfilterineffect.see....@nowhere.com> wrote:
> Hi All,
>
> After closely examining the toolbar offered by bluecollarpc.net, I'm left
> with no choice but to include it for detection and optional removal by the
> user due to the fact it's using a known adware/trackware companies product
> that's simply rebranded.
>
> As of today, 07-13-2007, BugHunter detects this program and both known
> variants of it, one which affects firefox via an extensions installation
> and the other which affects Internet Explorer via a BHO installation.
>
> Based on information collected on the company actually responsible for most
> of the code present inside, I'd recommend others follow suit.
>
> Thank You.
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dus...@gmail.com.removethis
> web..:http://bughunter.it-mate.co.uk
> Pad..:http://bughunter.it-mate.co.uk/pad.xml

JOIN THE MOVEMENT
http://www.conduit.com/
130,000+ Communities
12 million Users
New User every 2 secs
Create Your Free Toolbar

[Dustin Cook]

cbgerry <cbgerry@bluecollarpc.net> wrote in
news:1184539808.268718.8370@g4g2000hsf.googlegroup s.com:

> I am sure McAfee Site Advisor would like to hear your false report to
> correct theirs then... (WHY HAVE YOU MADE THIS FALSE REPORT ???):::>
>
> SEE:
> http://www.siteadvisor.com/sites/con...it.com&ref=saf
> esearch&aff_id=0
>
> conduit.com
> Green Verdict Image
>
> We tested this site and didn't find any significant problems.
> Are you the owner of this site? Leave a comment
>
> Automated Web Safety Testing Results for conduit.com
> e-mail tests for conduit.com:
> We found 2 sign-up forms and testing is in progress.
> Download tests for conduit.com:
> Downloads we found on this site:
> Download Analysis
> micro2media Toolbar (micro2media.exe)
> micro2media Toolbar (micro2media.exe)
> micro2media Toolbar (micro2media.exe)
>
> 3 green downloads
> In our tests, we found downloads on this site were free of adware,
> spyware, and other unwanted programs.
>
> * View detailed analysis
> * Submit a download for analysis
>
> Online affiliations for conduit.com:
> Link Graph
>
> Linked to green sites
>
> When we visited this site, we found that most of its links are to
> sites which are safe or have only minor safety/annoyance issues.
> Annoyances from conduit.com:
> Reviewer and Web site owner comments
> User Review Summary for conduit.com
>
> This site is good (9)
> This site spams (0)
>
> Adware, spyware, or viruses (1)
> Excessive popups (0)
> Phishing or other scams (1)
> Bad shopping experience (1)
> Browser exploit (0)
>
> IN REPLY TO==============>
> bluecollarpc.net's toolbar
>
> The group you are posting to is a Usenet group. Messages posted to
> this group will make your email address visible to anyone on the
> Internet.
> Your reply message has not been sent.
> Your post was successful
>
>
> Dustin Cook View profile
> More options Jul 13, 8:14 pm
>
> Newsgroups: alt.privacy.spyware, alt.comp.virus
> From: Dustin Cook <spamfilterineffect.see....@nowhere.com>
> Date: Sat, 14 Jul 2007 00:14:58 GMT
> Local: Fri, Jul 13 2007 8:14 pm
> Subject: Interesting information bluecollarpc.net's toolbar
> Reply | Reply to author | Forward | Print | View thread | Show
> original | Report this message | Find messages by this author
> Hi All,
>
> After closely examining the toolbar offered by bluecollarpc.net, I'm
> left
> with no choice but to include it for detection and optional removal by
> the
> user due to the fact it's using a known adware/trackware companies
> product
> that's simply rebranded.
>
>
> As of today, 07-13-2007, BugHunter detects this program and both
> known
> variants of it, one which affects firefox via an extensions
> installation
> and the other which affects Internet Explorer via a BHO installation.
>
>
> Based on information collected on the company actually responsible for
> most
> of the code present inside, I'd recommend others follow suit.
>
>
> Thank You.
>
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dus...@gmail.com.removethis
> web..: http://bughunter.it-mate.co.uk
> Pad..: http://bughunter.it-mate.co.uk/pad.xml
>
> THAT IS THE END OF YOUR NAME LIAR....OBVIOUSLY A PERSONAL ATTACK AS IT
> IS NOT "BLUECOLLAR'S TOOLBAR.... IT BELONGS TO CONDUIT.COM PUNK ASS
> LIAR .... THANK YOU SO MUCH FOR TELLING THIS NEWS ROOM YOUR
> CREDIBILITY JUST DIED FOREVER IN SECURITY WORLD .... CLAP CLAP....
> THANK YOU SIR !!!!

Your an idiot, sir. The toolbar is as I said, rebranded. Your site offers
it, it's actually created by a company with questionable (at the least)
business practices. BugHunter detects it, gives credit where credit is
due; your site is all over the damn thing, and offers to remove it if the
user would like.

I have made no personal attacks on you or your site. I've simply given it
a name based on what the persons responsible for it's release (that would
be you) wanted it to be known as.

As far as my credit is concerned sir, You as you have yourself said are
merely a user. I am the expert, by your own definition and the
terminology you follow; Your the little man on the totem poll. I've been
writing code far longer than you've even been playing with computers, and
really, that's all you've been doing. Don't even bother trying to come
off as anything more than a ****wit. BugHunter is a free program, I have
no commercial interests invested in it. That means, in plain english, I
can give an honest opinion and say what I want without worrying about my
stocks.

If the company who actually wrote the code you pass off as your own stuff
for your lame website has an issue, they know how to reach me. However,
they likely won't bother. Various companies like them know how it goes in
this game. That toolbar is junk, and your really an ******* for
suggesting people download it.

Sure, I bet they do get new users every 2 seconds. Doesn't adware have a
high infection rate?


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[Dustin Cook]

cbgerry <cbgerry@bluecollarpc.net> wrote in
news:1184540805.939299.161930@57g2000hsv.googlegro ups.com:

> And this is your idea of reciprocity ? Which shows I am intelligent
> and you are not ? Poor baby (yah yah yah yah yahyah gahgah) did some

Radio Plug-In removed
15/07/2007

The radio plug-in has been removed from our toolbar to avoid contact with
unknown websites (channels) and possible infection. SEE:
http://bluecollarpc.net/phpbb2/viewtopic.php?t=403

Is that the only reason you've removed it, or are you trying to evade
BugHunter detection routines?

I previously said you were an ******* for suggesting people to get the
toolbar, and you admit it's now a security risk with atleast one of it's
plug-ins. I rightfully detect that junk, and the next signature update
will continue to protect users from your ignorance. I wonder what you'll
suggest people do next, for "security". Sheesh.

> HEY GET ****ED JERK OFF ....SAID THAT....THIS JUST WENT TO CONDUIT.COM
> WHOM I AM SURE WILL BE KNOKING ON YOUR DOOR IMMEDIATELY FAGGER

Bring it on.




--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[cbgerry]

On Jul 15, 9:36 pm, Dustin Cook
<spamfilterineffect.see....@nowhere.com> wrote:
> cbgerry <cbge...@bluecollarpc.net> wrote innews:1184540805.939299.161930@57g2000hsv.googleg roups.com:
>
> > And this is your idea of reciprocity ? Which shows I am intelligent
> > and you are not ? Poor baby (yah yah yah yah yahyah gahgah) did some
>
> Radio Plug-In removed
> 15/07/2007
>
> The radio plug-in has been removed from our toolbar to avoid contact with
> unknown websites (channels) and possible infection. SEE:http://bluecollarpc.net/phpbb2/viewtopic.php?t=403
>
> Is that the only reason you've removed it, or are you trying to evade
> BugHunter detection routines?
>
> I previously said you were an ******* for suggesting people to get the
> toolbar, and you admit it's now a security risk with atleast one of it's
> plug-ins. I rightfully detect that junk, and the next signature update
> will continue to protect users from your ignorance. I wonder what you'll
> suggest people do next, for "security". Sheesh.
>
> > HEY GET ****ED JERK OFF ....SAID THAT....THIS JUST WENT TO CONDUIT.COM
> > WHOM I AM SURE WILL BE KNOKING ON YOUR DOOR IMMEDIATELY FAGGER
>
> Bring it on.
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dus...@gmail.com.removethis
> web..:http://bughunter.it-mate.co.uk
> Pad..:http://bughunter.it-mate.co.uk/pad.xml

You are full of it sir and this is a personal attack. There are over a
million Conduit.com toolbars and mine is one of them. They are all the
exact same thing including mine - so why did you pick mine out as the
only one infected ??? It doesn't make sense. Again McAfee has stated
there is absolutely no infection in "bluecollarpc" community toolbar.
Now when I get personally attacked that was how I responded - earlier
deleted message.

So my civil question is why did you pick my toolbar out that is
exactly the same exact for user name as one million plus of the same
exact toolbar from the same exact creator and server - Conduit.com ?

In other words Conduit.com offers these free toolbars to anyone and
there have been over a million created. Each user that creates one can
pick out of there services any of a large handful of features to add
to it. There is absolutely nothing the user can add personally into
the toolbar such as malware in what ever - script code language
whatever. So if every one of these toolbars are exactly the same thing
except for user name and what they chose to be their features add-ins
- then what are you saying ? You are only getting malware positives on
my toolbar ? That is absurd. There would be over a million hits for
the malware because it would be in over a million toolbars and come
from Conduit.com.

What are you saying ? The bluecollarpc toolbar from Conduit.com is the
only one you found with malware in it ??? For me this is completely
absurd and I reacted to being singled out of over a million people
with the same product none of us created. If you have a report then I
suggest you have filed it with Conduit.com - not me. I did not create
it. I fail to see your "professionalism" in this matter. Apparently
you are that lacking as to have come across your very first
Conduit.com Free Community Toolbar and assumed it was a creation by
the webmaster of the BlueCollarPC.Net. This is what was absurd - to be
charged by you like this.

Your charges against me would be the same thing as a worm affecting
the Yahoo Groups Service - and then blame me for it as the Group Owner
of BlueCollarPC.Net News Group. This is absurd. Same thing, there are
thousands upon thousands of Yahoo Groups - free - created by thousands
and thousands of individuals. Again ther, there is nothing the user
can put into the Yahoo Groups except choice of features provided by
Yahoo.

Do you understand my points ? Would that help as an aplogy for the
rage reply ? Or do you hold onto I am guilty of some malware
insertion ? I can accept your answer either way... I mean it would
seem you obviously tested the download I am guessing. Of course I
would suggest you create your own as a webmaster and then test that.
If the malware hits are not the same then I could obviously observe
your findings then and I would immedaitely remove the bluecollarpc
free toolbar from the Internet and tell all users the same -
immedaitely uninstall it.

You see you have opened a great can of worms here - and as far as some
real unresolved issues - that can involve having my websites shut down
as malicious content websites in Violations Of Terms Of Service.

Let me say that I am a simple consumer. I qualify myself as an
Advanced User (Windows). I am completely non-commercial. The best I
can offer your comments is that I downloaded the toolbar after I chose
its name and features and it was ready at Conduit.com for download. At
the time I was running Trend Micro Antispyware and Webroot Spysweeper.
There were absolutely no indications of malware with the toolbar
installed and running on both Internet Explorer and then I installed
the Firefox version. No indications of malware. I did scans and as
well there are absolutely no indications of infection as far as
antivirus softwares. So as far as Webroot, Trend Micro, Clam, AVG are
concerned oh, and McAfee Site Advisor, there is no such thing as any
malware infection in the bluecollarpc free toolbar.

For the statements you made and how they would appear qualified - I am
the LAST person you would notifiy about your opinion of any malware
infection in my toolbar - my, because I am the user-owner of it by
user account. Your reports would be assumed to have been made with all
the big names - many were here. Have you made any infection reports ?
What were the results ? You mean you haven't put your money where your
mouth and made infection reports ? I am sorrry but I have never heard
of you as far as any independent Testing Lab - are you one ? Why would
you be contacting me ? Have you contacted any other "user creators" of
Conduit.com Community Toolbars ? Why Not ?

I mean if you have any grit - yopu certainly understand all the
implications here and this is just the tip of the iceberg need I say
more ? You are quite welcome to HELP out by joining any of our Groups
or Forums or all to discuss this in full to achieve some remedy. This
would be on the "professional" side of things naturally because you
are "titled" and I could not speak to you in any other manner than a
professional courtesy because there are names made everyday so to
speak in the security industry. What I am suggesting here is that you
may be one of them and your discovery can simply NOT go unnoticed
obviously. I would respect everything you say in this manner at my
groups is a promise. Here (news group) we know anything flaky is
immediately deemed as a Troll and slammed ummercifully. That was my
original response - and let's hope not deservedly so.

I am trying to think right off hand of the virus board (very famous)
where reports are received.... ahhh VirusTotal.com and of course all
quality spyware softwares have website forms to report infection. I am
wandering why you brought this to me first and not them. THAT is very,
very "unprofessional" and because of that demanded the response I
made. 'Nuff said ? If you are genuinely interested in the pc and
online security of all of the community of computer users as I am -
then I expect to hear some immediate results from on our behalf....
'till then

Gerald Founds, Philadelphia PA USA
Webmaster BlueCollarPC.Net BlueCollarPC.Org and all associated groups,
forums, and lists respective owner.

You know where I live on the Net. Be there ! My apologies, I regret
earlier communications as very childish perhaps. See you soon I will
help with your reports.

[cbgerry]

One point here is that you do not name the infection ? 2-Spyware.com
is "rebranded" and off of the offender's lists. What was your point -
that like 2-Spyware.com is once bad always bad ??? Meaning apply to
the toolbar former owner and new owner. You see you are not giving up
any results whatsoever which is neccessary for any sane person to
believe anything you are talking about.

Nothing personal but -- ""Dustin Cook Author of BugHunter - MalWare
Removal Tool "" is just not the "Security Savior" of the world web
whereas Kapersky, Norton, and Webroot are. This is the problem... it
is tooooo hard to believe that you personally have the only
antimalware utility in the world that detects malware with the
"bluecollarpc toolbar" and the others do not. Any Comments ???

[cbgerry]

I hate to belabor the issue but you can appreciate you are the one
that opened their mouth: ..... We have seen everything you say and
here is what the World Renown McAfee Site Advisor has to say .... In
other words - YOU are disputing these findings ??? Unbelievable and
who are you is what we are waiting for in shorter terms:

MCAFEE SITE ADVISOR INVESTIGATION REPORT OF THE BLUE COLLAR PC
COMMUNITY TOOLBAR::

McAfee SiteAdvisor: tested the following: .

bluecollarpc Community Toolbar Home
Stay connected to us - and get so much more - with the bluecollarpc
Community Toolbar! Tags:. bluecollarpc.net Blue Collar PC spyware
removal adware removal ...
bluecollarpc.communitytoolbars.com/Home/ - 26k - Cached - Similar
pages - Note this

Look up a site report:
http://www.siteadvisor.com/sites/com...earch&aff_id=0

Want to add your comments? Log in or Register.
RESULTS:

communitytoolbars.com
Green Verdict Image

We tested this site and didn't find any significant problems.

Are you the owner of this site? Leave a comment
Contact information: Established in 2005

A few users
Automated Web Safety Testing Results for communitytoolbars.com

e-mail tests for communitytoolbars.com:
We have not found any e-mail sign-up forms on this site.

Download tests for communitytoolbars.com:
Downloads we found on this site:
Download Analysis:
Game-Emeralds Toolbar 4.5.144 (Freeware) (Game-Emeralds.xpi)
PoliceOracle toolbar for Firefox 1.5.0.1 (Freeware) (PoliceOracle.xpi)
radiogoogle toolbar for IE 4.5.131.0 (Freeware) (radiogoogle.xpi)
S.E.T.I_At_Home.xpi
US Peoples Network toolbar for IE 4.5.130.0 (Freeware)
(US_Peoples_Network.xpi)

5 green downloads

In our tests, we found downloads on this site were free of adware,
spyware, and other unwanted programs.

Online affiliations for communitytoolbars.com:
Link Graph
Linked to green sites
When we visited this site, we found that most of its links are to
sites which are safe or have only minor safety/annoyance issues.
Annoyances from communitytoolbars.com:
Reviewer and Web site owner comments
User Review Summary for communitytoolbars.com

This site is good (0)
This site spams (0)
Adware, spyware, or viruses (0)
Excessive popups (0)
Phishing or other scams (0)
Bad shopping experience (0)
Browser exploit (0)
communitytoolbars.com Web site owner comments (0)
Are you the owner of this site? Add a comment
User Reviews (0)

Get fully protected with McAfee Internet Security Suite.
Copyright © 2007 McAfee, Inc.


Guy I can sit here all day with the phrase "nothing personal but ---
blah blah" ... But this is personal and you have made it that way.
The offer stands for you to produce "discovery" or simply shut up and
admit you lied to the community with a false report targeted as a
personal attack. We are waiting your replies !!! Sincerely the
Webmaster of BlueCollarPC.Net/.Org

Please write....

[Dustin Cook]

cbgerry <cbgerry@bluecollarpc.net> wrote in
news:1184589318.719205.5580@57g2000hsv.googlegroup s.com:

> You are full of it sir and this is a personal attack. There are over a
> million Conduit.com toolbars and mine is one of them. They are all the

Indeed conduit has a large amount of rebranded toolbars around. Yours is
one of them, several others I believe are also known to BugHunter. They
are added based on when I recieve viable samples. In your case, since you
advertise it, I visited your site and downloaded it, Installed it via
firefox and IE using sandboxie, so I could see exactly what changes it
makes.

> exact same thing including mine - so why did you pick mine out as the
> only one infected ??? It doesn't make sense. Again McAfee has stated

Please see above. I really don't pick and choose. The targets are
selected based on samples I recieve and what they do.

> there is absolutely no infection in "bluecollarpc" community toolbar.


BugHunter doesn't look for infections, as viruses cause those.
Spyware/adware/keyloggers are really all trojans, and BugHunter does
detect some of them. The toolbar itself is classified by me as
Adware/trackware. It poses a security risk for the following reasons.

1. It transfers "anonymous" usage data back to conduit.com; this data
stream is actually encrypted, so who knows what it really sends to them.

2. The radio option as you noticed is a security risk, you don't have
control over the sites it's tied too.

3. The other plugins don't always communicate strickly with your server
either.

4. The company which actually produces the code inside the toolbar still
employs questionable business practices.

5. Officially, because the toolbar actually installs itself as an
extension, and not as a plugin, is against the mozilla foundation rules.
Your toolbar generates income for conduit based on what users search for.
If they click a result, conduit gets paid. They are leeching off of
firefox users. What you click is apparently "anonymously" tracked back to
conduit. Anonymous only serving to mean that it can't be tied to the
specific computer your using... Atleast, I don't know of any exploits yet
which would allow that with this program.

> Now when I get personally attacked that was how I responded - earlier
> deleted message.

I didn't personally attack you, aside from calling you an idiot.

> So my civil question is why did you pick my toolbar out that is
> exactly the same exact for user name as one million plus of the same
> exact toolbar from the same exact creator and server - Conduit.com ?

Reasons for including it provided above. You were not singled out, Your
toolbar was easy to get access too, and I did as any normal user would do
who's curious. I downloaded it and analyzed it. When I noticed it's
actually conduits work, rebranded, red flags went up.

> In other words Conduit.com offers these free toolbars to anyone and
> there have been over a million created. Each user that creates one can

That's right. Over a million variants of the software, passed along to
unsuspecting users who simply don't know any better.

> pick out of there services any of a large handful of features to add
> to it. There is absolutely nothing the user can add personally into
> the toolbar such as malware in what ever - script code language
> whatever. So if every one of these toolbars are exactly the same thing

Not true, sir. Your extension installation for firefox can be
edited/altered easily. In fact, it's javascript when installed for
firefox, and an actual DLL when used in IE. The supporting plugins are,
java scripts with xml configuration files. Very easy to expand upon.

> except for user name and what they chose to be their features add-ins
> - then what are you saying ? You are only getting malware positives on

See above.

> Your charges against me would be the same thing as a worm affecting
> the Yahoo Groups Service - and then blame me for it as the Group Owner
> of BlueCollarPC.Net News Group. This is absurd. Same thing, there are

I haven't made any charges against you, directly. I don't recommend
people make use of your toolbar, for the reasons I stated above. That
doesn't mean I don't recommend you, as I am neutral (or try to be) as far
as your informational providing is concerned. I disagree with the
majority of your posts, but alas, that's my right to do so, and your
right to post the material I think is nonsense.

> thousands upon thousands of Yahoo Groups - free - created by thousands
> and thousands of individuals. Again ther, there is nothing the user
> can put into the Yahoo Groups except choice of features provided by
> Yahoo.

Agreed, with yahoo groups. Your toolbar however isn't yahoo groups, and
certainly can be altered once installed.

> Do you understand my points ? Would that help as an aplogy for the
> rage reply ? Or do you hold onto I am guilty of some malware

You don't owe me any apology. You weren't very professional in your
previous correspondence with me, but I understand why. I really didn't
target you, I targetted software that I don't think you should be
inviting users to download. BugHunter doesn't automatically remove it,
unless the users tells it to do so, so in the end, the user still has the
final say in whether or not it lives or dies.

> insertion ? I can accept your answer either way... I mean it would
> seem you obviously tested the download I am guessing. Of course I

No guessing required. I'm a programmer, testing/analyzing/writing code is
something I do. I even surf myspace on purpose looking for new
samples. *grin*

> your findings then and I would immedaitely remove the bluecollarpc
> free toolbar from the Internet and tell all users the same -
> immedaitely uninstall it.

Your site is about security, and I understand your desire to help users.
You can start by removing the toolbar, and suggesting users uninstall it.
No security site in it's right mind would be asking users to download and
install any sort of toolbar.

I'm not asking you to accept/admit any fault. As a precautionary measure,
if nothing else, I'm asking you to remove the toolbar and suggest your
userbase do the same. I have filled out an account on your forums,
Hopefully you will allow it to go thru, and we can discuss this further
if you'd like. You can also email me at the email address I left on your
site. I know you hate google, and apparently yahoo, but those are what I
use for email corresponce and I have for a very very long time. Please
excuse the addresses in my case, if you don't mind.

> You see you have opened a great can of worms here - and as far as some
> real unresolved issues - that can involve having my websites shut down
> as malicious content websites in Violations Of Terms Of Service.

I have no intention of trying to have your website shutdown. Your not
actually hosting the toolbar yourself, so you don't have to worry about
that anyway.

> Let me say that I am a simple consumer. I qualify myself as an
> Advanced User (Windows). I am completely non-commercial. The best I
> can offer your comments is that I downloaded the toolbar after I chose
> its name and features and it was ready at Conduit.com for download. At

I would agree with your assessment. I strongly disagree with some of your
editorials and I'll be happy to debate them on you forum openly, with
your permission of course. I figured you checked out the toolbar, saw
it's potential to increase traffic and started recommending it. Somehow,
you noticed the radio plugin has issues and have since disabled that, as
a precautionary measure, if nothing else, while admitting no fault
whatsoever, please remove the toolbar. If you already found one plugin
with potential risk, why place your users at continued risk?

> the time I was running Trend Micro Antispyware and Webroot Spysweeper.
> There were absolutely no indications of malware with the toolbar
> installed and running on both Internet Explorer and then I installed
> the Firefox version. No indications of malware. I did scans and as

As you should know, and if not, you do now, no program regardless of it's
free/commercial status catches everything. Malware is released at an
alarming rate by farms which basically xmit the same thing, slightly
modified.

> well there are absolutely no indications of infection as far as
> antivirus softwares. So as far as Webroot, Trend Micro, Clam, AVG are
> concerned oh, and McAfee Site Advisor, there is no such thing as any
> malware infection in the bluecollarpc free toolbar.

The toolbar itself allows for 3rd party things to be installed,
potentially without user consent. The toolbar can easily be modified by a
user or another party, and this too is a security risk issue.

> For the statements you made and how they would appear qualified - I am
> the LAST person you would notifiy about your opinion of any malware
> infection in my toolbar - my, because I am the user-owner of it by
> user account. Your reports would be assumed to have been made with all

Actually, I always try to contact the author of a program I'm checking
out, to see if my findings match theres or if they can explain why it
does this or that. I did this in your case by creating an account the
other day. You deleted it?

> the big names - many were here. Have you made any infection reports ?
> What were the results ? You mean you haven't put your money where your

Those big names you like to toss around are automated scanning sites, I
use them myself. A human doesn't at the time of your submittal examine
it. Eventually, some av researchers will get there hands on the sample,
but until then, it's all good according to the automated systems.

You should *not* ever assume that if you get no hits for malware by
submitting them that the file really is safe.

> mouth and made infection reports ? I am sorrry but I have never heard
> of you as far as any independent Testing Lab - are you one ? Why would

I'm not a lab. I'm a reformed virus writer. I used to write the "bad
stuff". heh.

> you be contacting me ? Have you contacted any other "user creators" of
> Conduit.com Community Toolbars ? Why Not ?

I have tried to contact you, in email and by creating an account on your
forum. I have contacted authors of various other things which I detect.
I've even contacted PcButts over his pirated scripts.

> I mean if you have any grit - yopu certainly understand all the
> implications here and this is just the tip of the iceberg need I say

No implications that I can see. Your concerned for your site, and you
have no reason to be alarmed. Nobody is trying to take you to court or
have you shutdown. I'm simply trying to make you understand, hopefully,
that this toolbar is a bad idea. Your a security site, don't provide
risks to your users.

> more ? You are quite welcome to HELP out by joining any of our Groups
> or Forums or all to discuss this in full to achieve some remedy. This

I have created another account today, the name of which is Raid. I'd be
happy to post on your groups and explain the situation if this hasn't for
you. I have no personal issues with you yourself, I do however, disagree
with several of your posts on your forum and I'd like to discuss those as
well. Security is an important task, and I'm glad your interested in
helping people, it's good of you. It would be even better if the
information you provided was more accurate, and I would be glad to help
you in this respect.

> may be one of them and your discovery can simply NOT go unnoticed
> obviously. I would respect everything you say in this manner at my
> groups is a promise. Here (news group) we know anything flaky is
> immediately deemed as a Troll and slammed ummercifully. That was my
> original response - and let's hope not deservedly so.

A troll I'm not, as you will learn.

> I am trying to think right off hand of the virus board (very famous)
> where reports are received.... ahhh VirusTotal.com and of course all
> quality spyware softwares have website forms to report infection. I am
> wandering why you brought this to me first and not them. THAT is very,
> very "unprofessional" and because of that demanded the response I

I have tried to bring my findings to your attention privately. I was
actually hoping we could get this removed and not really make a big deal
out of it. Everybody learns, you know? Conduit has been contacted
numerous times by various companies over this toolbar of theres.

> made. 'Nuff said ? If you are genuinely interested in the pc and
> online security of all of the community of computer users as I am -
> then I expect to hear some immediate results from on our behalf....
> 'till then

Indeed I am. BugHunter is my little way of giving back for some of the
harm I caused.

> You know where I live on the Net. Be there ! My apologies, I regret
> earlier communications as very childish perhaps. See you soon I will
> help with your reports.

I'm looking forward to a decent dialogue with you, sir.

--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml