Chachazz

Members
  • Content Count

    1522
  • Joined

  • Last visited

Posts posted by Chachazz


  1. Grum worm poses as IE7 beta

    Spamvertised malware spreading fast

    By John Leyden

    Published Friday 30th March 2007 13:20 GMT

    Hackers are trying to trick prospective marks into loading malware that poses as a "beta" version of Internet Explorer 7.

    Widely circulated emails, which pose as messages from [email protected] and feature subject lines such as "Internet Explorer 7 Downloads", display an image which invites gullible users to download beta 2 of Internet Explorer 7. Users who click on the authentic-looking image download a file called ie7.0.exe infected by the Grum-A worm.

    Source: The Register»


  2. Windows zero-day flaw 'very dangerous,' experts say

    With Vista at risk, eEye issues unofficial patch; attacks traced to Chinese hackers

    Gregg Keizer

    -- The Windows zero-day bug now being used by attackers is extremely dangerous, security researchers said today, and ranks with the Windows Metafile vulnerability of more than a year ago on the potential damage meter.

    "This is a good exploit," Roger Thompson, CTO of Exploit Prevention Labs, said in an instant message exchange. "It's very dangerous. One of the reasons is that there's no crash involved...it's instantaneous. And all it takes is visiting a site."

    »»Yesterday, Microsoft Corp.'s Security Response Center (MSRC) issued an advisory acknowledging a bug in Windows' animated cursor, a component that lets developers show a short animation at the mouse pointer's location. Attackers, who are already exploiting the bug in limited fashion, can hijack PCs by tempting users to malicious Web sites or by sending them a malformed file via e-mail.

    "It doesn't require a PhD in hacking," Brown said. "The number of people who can use this is huge."

    eEye considered it so dangerous that early this morning it released a rare unofficial patch to temporarily plug the dike. This is only the second time that eEye has put out an unsanctioned fix for a Microsoft bug.

    MORE HERE:

    http://www.computerworld.com/action/articl...ticleId=9015138


  3. jimras, as taken from the ewido site, download page:

    "This setup contains the free as well as the paid version of AVG Anti-Spyware. After the installation, a free 30-day trial version containing all the extensions of the full version will be activated. At the end of the trial, these extensions will be deactivated and the program will turn into a feature-limited freeware version. The purchased license code can be entered at any time."

    Additional features of the Plus-Version(paid)

    NEW Scheduled scans

    Real-time monitoring of the entire system

    Memory Scan detects active threats

    Self-protection at kernel layer guarantees gapless monitoring

    Automatic online-update


  4. October 07 2006 : New test board, "Firewall termination defense" testing

    Some malware in the wild are trying to terminate various Anti-Virus and Firewall softwares

    13 firewalls are tested against 38 termination methods, which means at least 500 tests done.

    Scoreboard Explanation:

    http://www.firewallleaktester.com/termination_overview.php

    Test Results:

    http://www.firewallleaktester.com/termination.php

    (bottom page, click: View Results)

    KAV, Outpost and Comodo Free 100% pass!


  5. The final major pre-release of Windows Vista—Release Candidate 1 (RC1)—is now available through the Customer Preview Program (CPP). Customer participation and feedback are integral parts of our development process. If you decide to install and test RC1, thank you for being part of the Windows Vista team!

    Note: This is beta code and should not be used in a production environment or on a primary computer in the home. RC1 is intended for developers, IT professionals, and technology experts to continue or begin their testing of Windows Vista. Before you decide to use RC1, you should feel comfortable with installing operating systems, updating drivers, and general PC troubleshooting. Some risks of using beta operating systems include hardware and software incompatibility and system instability. If you have concerns about installing this beta software on your computer, we encourage you to obtain the final release version of Windows Vista when it is available in 2007.

    Access to the Customer Preview Program is limited. Once the program capacity has been reached, the program will be closed and no new orders will be accepted.

    Windows Liveâ„¢ ID required - signup - signin to get your Vista Key:

    (If you have a Hotmail address, MSN e-mail address, or Microsoft Passport, it's already a Windows Live ID.)

    https://login.live.com/ppsecure/secure.srf?...32a029ff8965d03


  6. The August AV Comparatives are now posted.

    "On this site you will find independent comparatives of Anti-Virus software. All products listed in our comparatives are already a selection of some very good anti-virus engines. In order to get tested by us, companies must fulfill various conditions. Various AV products are presented in our forum."

    "Please link ONLY to our main site www.av-comparatives.org and not to the other subpages.

    It's forbidden to use/provide our test results/documents on other sites without our permission."

    Website: http://www.av-comparatives.org/

    (click on "Comparatives")


  7. If you missed it this past weekend - it's being made available again! :thumbsup:

    Simtel sponsors PCA Special Offer Extension

    "We are proud to present Simtel as a sponsor for the promised extension of our PCA Special Offer. As we have informed you in our previous newsletter, many users were not able to access our website last Sunday. Therefore we give you and all your friends a second and last chance to sign up for your award winning WinRAR 3.51 license key (this license key will only be valid for 3.51 and cannot be used in later

    versions of WinRAR)."

    Please fill out the form at

    http://nct.digitalriver.com/fulfill/0233.001

    and wait for further information that will be sent to you by email immediately.

    This form will only be online untill Saturday, August 5th, at midnight (CET).

    Please note that this is really the last chance to get your free registration for WinRAR 3.51.

    After midnight tomorrow there will be no other extension to this offer.

    Yahoo! Grab it now!


  8. WinAudit is easy to use, no special knowledge is required to use the programme. It is a self-contained single file that needs no installation or configuration. It can be run from a floppy disk or USB stick. Simply download the programme and double click on it. User interface translations have been kindly contributed by several people, if possible WinAudit will automatically start in your language.

    The programme reports on virtually every aspect of computer inventory and configuration. Results are displayed in web-page format, categorised for ease of viewing and text searching. Whether your interest is in software compliance, hardware inventory, technical support, security or just plain curiosity, WinAudit has it all. The programme has advanced features such as service tag detection, hard-drive failure diagnosis, network port to process mapping, network connection speed, system availability statistics as well as Windows® update and firewall settings.

    WinAudit is free, you can use it in your commercial applications and distribute it freely to anyone. The programme requires neither installation nor configuration. Its small size and ability to create formatted emails means you can audit just about any Windows® based personal computer.

    PC audit and inventory of software, licenses, security configuration, hardware, network settings...

    • Easy to use
    • No setup
    • Csv/html/pdf/text/xml
    • E-mail
    • Database export
    • Command line
    • Fully documented

    Windows®: 95/98/Me/NT3.51/NT4/2000/XP/2003/Vista

    More Info & Downlaod: WinAudit


  9. FREE eTrust� EZ Antivirus for Windows VistaTM Beta Users

    https://www.my-etrust.com/SubscriptCenter/M...n.aspx?cid=1855

    PC-cillin� Internet Security 14.55 Beta Program for Windows Vista�

    Beta Duration: May 23rd to October 31st, 2006

    https://www.trendbeta.com/index.php?get=80

    avast! Home - Vista-compatible, both the free and paid versions.

    http://www.avast.com/eng/avast-antivirus-a...dows-vista.html

    ClamWin Free (from the ClamWin forums)

    "ClamWin 0.88.2.3 on Windows Vista Beta 2 build 5384 works!

    ClamWin, does support Outlook 2007 Beta 2.

    It brings up a hidden window, with display on the taskbar, when Outlook is running... closes right down after closing Outlook.."

    http://www.clamwin.com/component/option,co...tpage/Itemid,1/

    Antivirus for Windows - Open Source & Free! :D

    Diskeeper 10.0 Professional BETA for Windows Vista CTP builds 5381 and 5384

    Diskeeper 10 now provides support for Windows� Vista CTP (builds 5381 and 5384) with a free public beta. This Diskeeper build will only install on the specific builds of the 32-bit Vista noted, it will not install on other Windows platforms. Also note this Diskeeper build must be installed/uninstalled by the default Administrator account only. Please check the ReadMe file for additional restrictions and limitations of this beta version.

    http://www.diskeeper.com/trialware/diskeep...stadownload.asp

    Remember: ;)

    BETA software is, by definition, still in test mode and presents a certain level of risk to the end-user.

    Please feel free to add any freeware programs for Vista that you may find... ;D


  10. Microsoft Security Bulletin Advanced Notification

    Issued: July 06, 2006

    On 11 July 2006 Microsoft is planning to release:

    • Four Microsoft Security Bulletins affecting Microsoft Windows.

    The highest Maximum Severity rating for these is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer and the Enterprise Scan Tool. Some of these updates will require a restart.

    • Three Microsoft Security Bulletins affecting Microsoft Office.

    The highest Maximum Severity rating for these is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer. These updates may require a restart.

    • Microsoft Windows Malicious Software Removal Tool

    Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center.

    Note that this tool will NOT be distributed using Software Update

    Services (SUS).

    • Non-security High Priority updates on MU, WU, WSUS and SUS

    Microsoft will not release any NON-SECURITY High-Priority Updates for Windows on Windows Update (WU) and Software Update Services (SUS).

    Microsoft will release one NON-SECURITY High-Priority Updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

    Microsoft will host a webcast next week to address customer questions on these bulletins. For more information on this webcast please see below:

    TechNet Webcast: Information about Microsoft's Security Bulletins

    • Wednesday, 12 July 2006 11:00 AM (GMT-08:00) Pacific Time (US & Canada)

    http://msevents.microsoft.com/CUI/WebCastE...;CountryCode=US

    At this time no additional information on these bulletins such as details regarding severity or details regarding the vulnerability will be made available until 11 July 2006.

    http://www.microsoft.com/technet/security/...in/advance.mspx


  11. "Internet Explorer 7 for Windows XP and 7+ in Windows Vista have many security enhancements which make Internet Explorer less susceptible to spyware and malware. But still browsing experience in Internet Explorer can get affected by badly written add-ons. This feature allows Internet Explorer to recover from such situations.

    Internet Explorer 7 in Windows XP and Vista can be reset."

    Reset Internet Explorer Settings


  12. Microsoft Security Bulletin Advanced Notification

    Issued: June 08, 2006

    On 13 June 2006 Microsoft is planning to release:

    Security Updates

    . Nine Microsoft Security Bulletins affecting Microsoft Windows. The highest Maximum Severity rating for these is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer and the Enterprise Scan Tool. Some of these updates will require a restart.

    Note that, as discussed in Microsoft Security Bulletin MS06-013, with the release of one of these bulletins, support for the compatibility patch discussed in Microsoft Knowledge Base Article 917425 will cease.

    This means that all users who apply this security update will receive the ActiveX update discussed in Microsoft Knowledge Base Article 912945 regardless of whether or not they have applied the compatibility patch discussed in Microsoft Knowledge Base Article917425.

    . One Microsoft Security Bulletin affecting Microsoft Exchange. The highest Maximum Severity rating for this is Important. These updates will be detectable using the Microsoft Baseline Security Analyzer. These updates may require a restart.

    Note that this update will include the functionality change discussed in Microsoft Knowledge Base Article 912918. Administrators are urged to review this Knowledge Base article prior to release and take steps appropriate for their environment.

    . Two Microsoft Security Bulletins affecting Microsoft Office. The highest Maximum Severity rating for these is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer. These updates may require a restart.

    Microsoft Windows Malicious Software Removal Tool

    . Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center. Note that this tool will NOT be distributed using Software Update Services (SUS).

    Non-security High Priority updates on MU, WU, WSUS and SUS

    . Microsoft will release 1 NON-SECURITY High-Priority Updates for Windows on Windows Update (WU) and Software Update Services (SUS).

    . Microsoft will release two NON-SECURITY High-Priority Updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

    Microsoft Security Bulletin Advance Notification for June 2006


  13. Hi folks;

    I post the Virus/Trojan/Worm etc. Threats at GSF.

    It's a 'proof of concept' Virus. It is not an actual executing virus.

    SBasic.Stardust.A!int

    Also Known As: XML_DUSTAR.A [Trend Micro]

    SBasic.Stardust.A!int is a proof-of-concept macro virus for Sun StarOffice documents that attempts to download a JPG image.