Paul's Tech Talk

Self-fulfilling malware? Yea Right!

A self-fulfilling prophecy is a prediction that directly or indirectly causes itself to become true, by the very terms of the prophecy itself, due to positive feedback between belief and behavior.

Via Wikipedia

It's not really a prophecy but yet it is to a point. I'm not saying that it is self-replicating or anything of that nature, but I am talking about how it has evolved over the last few years. If your like me, you get a lot of calls from customers who insist that they have a virus because of a various number of reasons. Some fo them could saying, they are getting warnings, others that I've seen just said that their system is really slow and thus they think they have a virus slowing down their system. I'm sure you have many examples of this and thus you know what I am talking about. There have been many customers that I've had to deal with about just that. They think it is a virus are pretty much won't accept anything else but that, I'm sure I am not alone when it comes to you own small business.

Dealing with the Customer!

In many ways you probably like me, you try to insist that they don't have a malware but yet they are coming up with ways why they do. I've got a few tips to help deal with those types of customers who think they HAVE to of gotten a virus or malware along the way! I'm going to share a few with you that might help you with your own customers.

Customer is always right! (And some that are just not right!)

The first thing I do is tell them it will cost them a certain amount of money to diagnose the problem and thus this will likely turn them away from you and help you help those who really might need the technical help. I do recommend not charging a lot because if they do have a virus and don't know how to remove it then you could be loosing a value loyal customer. Consider charging something like a 30 minute fee to diagnose the problem, what ever you hourly fee is probably about right. Something else you might want to consider, is to make it free if they have a virus or malware!

Give Customers Free Resources!

If your see my site, you will see that I offer a free Antivurs URL for anyone who might not want to remove their virus themselves but then again. I warn them that they do this at their own risk and maybe give them some more resources if you know of any. This will help you with the customers that might need the extra time with their problems. I don't like doing this option but it is a good option if you don't have the time to worry about those customers.

These are just my few options that I have come to use, maybe you have another way to do it and would love to hear your stories.

Paul Sylvester

Comments Off | in

Malwarebytes | tagged

Self-fulfilling,

malware,

problems

Monday

Mar052012

How to Figure out if you have a Virus on your System!

Author:

Paul Sylvester | Date:

Monday, March 5, 2012 at 2:24AM |

Series picked up!

Few years ago, I did a post called What is a Virus and why do I have one. It spawned someone wanting to find out more about the virus but I have been really busy with my personal to finish the series. I thought this would be a great place to pick it up because of my personal life has slowed down and I wanted to at least finish this excellent series that I was so determined to write about. Even though I have an Excellent resource for Anti-virus tools and tips, I still feel I could expand on the subject just a little more! In this series we will talk about a few things like:

Where does the Virus and malware usually hide!

How to determine if a file should be there!

Which anti-virus software is the best, in my opinion!

How to warn you friends of Family!

What steps you should take in the Future!

Windows isn't the only system that can get infected!

As you can see there is going to be a lot to talk about in this series because I am sure most of you have these types of questions that you would love to get answered. I won't say I will cover the topic a 100% because there are always going to be Rogue Viruses and malware that will do something different. This is after all going to be a generalization of a typical virus!

Where does a Virus and Malware Like to Hide on my computer?

I'm sure you've asked this question before and I'm going to help you out a little. Having removed several different viruses off my own system and others, I will tell you where you should look and what you should look for! Note: You should look but don't hit the Delete key. You just might crash your system and have to restore it. Sometimes these viruses like to latch on to a system file and you will need an Antivirus software to remove it!

Most of the time they are in the Windows directories:

C:/Windows/ (look for names that should be there and either Google the file to see what is being said about it!)

C:/Windows/System32 (Do the same as above but also look for .DLL and double check)

Make sure there aren't any Hidden Directories by going to Control Panel / Folder Options / View.

Check the Registry for Anything Suspicious! (The quicked and easiest way for this is to just use Hijackthis and Let it make a TXT File and then let One of the Log Analyzers check it out!)

Check your Windows Program Files C:/Program Files/ and C:/Program Files(x86). Each directory has files that are going to be Essential to run Windows but that doesn't mean you can look and search for a file or program. You will however need to still Google the program when you want to know if it should be there or not!

As you can see there are many places where this like to hide but that doesn't mean you can't protect yourself.

How to know if I have a Virus or not!

This has been asked by many people on the internet. I'm no exception because sometimes you just don't know, and thus you will want to protect yourself. I will however tell you some of the more common signs of virus infection and then let tell you my opinion on which is better. For Right now, though let's explore some of the more common signs of an infection:

System seems slow -- Although this isn't always meaning a virus, it can be a good indication.

Network Slowness -- Again, this isn't always a virus because you could be downloading updates to Windows or other Window files. It however should be kept an eye out for. If your interested to see what might be hogging your connection you can always use NETSTAT to see what is being used on your computer. Remember to make sure you Wifi is not being used by your neighbors.

Unusual Website Popups -- This is pretty much showing something is being done without your permission. So you can usually attribute this to Malware but not always.

Hard Disk is constantly on -- This isn't always about a virus but something being accessed to much and thus might mean someone Malware is using your computer to store data that they want to hide.

These are the usual tale tale signs of something that shouldn't be there and thus you should do a system scan to make sure!

Which Software is the Best, in my opinion!

I might be a little biased when it comes to removing viruses and which Antivirus does the job. I've even talked about some of them om my Antivirus page, so you can see I do know a little more than the average Joe. This doesn't mean I am a expert on the field but I do know which software seems to run best for removing viruses. I'm still under the opinion that the free antivirus, which is Malwarebytes [Affiliate Link]. They are constantly updating their virus definitions and have always been there when I had a question. I have no problems with them in any way and thus I tell people who I remove viruses from to go and buy it [Affiliate Link] because once you have it you are set for life. No need to buy a license every year, you only have to buy once and you are set.

If your worried about having a virus, just go check out Malwarebytes [Affiliate Link] and they do have a free version that you can try before you buy.

Paul Sylvester

Scareware sites being sent through email! (paulstechtalk.com)

Protecting your personal information! (paulstechtalk.com)

Techniques to remove malware from your domain! (paulstechtalk.com)

Androids aren't immune because of people! (paulstechtalk.com)

Post a Comment | in

2011,

Detection and Removal Tools,

viruses

Friday

Jan202012

Techniques to remove malware from your domain!

Author:

Paul Sylvester | Date:

Friday, January 20, 2012 at 8:48AM |

Image by Sam Howzit via Flickr

Websites and domains!

I recently had to help my favorite club remove some malware off their website. My club, Starfleet-command Quadrant One website, was one of those sites that didn't see this coming. As a website owner, I've seen many of things come and go but experience has taught me that it will always come back. I will be watching for this again in the near future but hopefully it won't come back!

The back story was something that I have to at least talk about because this is how the site got infected.

One reason that this site got infected was by being hosted with the same hosting server. They were both using the Goddady shared hosting account to display their webpages or forums on the internet. Thus Godaddy, with their infinite wisdom tried to explain it away as that. I don't know if I buy that reason or if there was something else that might of been the culprit but I do know this website had urls redirects and such to malware sites. I much rather keep with Hostgator, then have Godaddy anyways.

Another Reason is that it was probably some kind of key logger, or something that was sending back the important password information to a Command and control server and thus the website owner was infected or someone in the organization that had access to the account was unintentionally allowing a hacker to gain access to the website.

Removing the Malware off your Site!

Nothing in the world is ever going to be easy, but it is necessary to get into the guts of the website. Your probably thinking, websites don't have guts. You'd be wrong, when I thought about having to go through each part of the code and remove the html malware redirects that is what I mean by guts. Many people will come to understand that as a programming language but I like to think of it as a doctor who does surgery to remove an infectedc limb or something like that.

So I'm going to give you a few areas to look at if your having this problem with Malware being on your site or domain. It won't always be the same place for the same infection but it will at least help you find it and remove it.

.htaccess -- This is one place where they will first make changes to redirect traffic to the domain that they want your visitor to. If you have had much experience with what it does. It is a good time to learn what they do and how to use them.

index.php or index.html-- This is something that the hackers have learned to use but most often is over looked. This is something that I haven't seen before until now. Certain browser will display the virus or malware warnings and others will not even see it or have any problems! See example for more information, because I couldn't do a better job then them!

Check Subdomains and subdirectories -- This is something that is also needs to be looked at. even if they aren't showing the signs of being being infected it is always a good idea to at least make sure they stay uninfected. Check them for the .htaccess and index code and remove what you need or change it to where it should be going to in the first place. I found the .htaccess redirect code all in subdomains and sub directories on the one that I helped to remove the infection from.

Change ALL passwords -- This is a MUST, if you've been infected then your passwords are at risk of being the source of the infections. Change your FTP Password, your log in information password, and anything associated with the site in question and possibility the subdomains passwords.

Limit the number of people with the new passwords -- if your like me, you don't want to many people to have the ftp password and thus you should consider only allowing a select number of people having it. Like the organization I have, they have people left and right who use it to upload files and stuff that is needed. It also might be required to just have a server that is used for nothing else but to upload files for publications and other things like that.

Disclaimer

Nothing in the article is a must do or will get rid of your site being blocked by Google and other such search engines but it will at least give you a place to start looking to find culprit and maybe get your site running again quicker. I will not make any guarantees that this will fix the problem or that it will solve your problem 100% but this is to be used as a tutorial on where to look and what you should do to prevent re-infections with malware.

Paul Sylvester

SUPERAntiSpyware

Using your domain name as a marketing tool (marketing.yell.com)

Never ever search for a domain name at Network Solutions! (xemion.com)

Malware Analysis Quant: The Malware Profile (securosis.com)

Dangerous Malware Link Spreading Through Facebook Chat System (techie-buzz.com)

75 Million Unique Malware Samples By 2012 (homesecuritysource.com)

Getting rid of Malware - Stop the Spy who enjoys your Information and Information (microphone-film.net)

1 Comment | in

Blogging,

Facebook,

File Transfer Protocol,

Flickr,

Website

Thursday

Dec292011

My Top Five Favorite Posts for 2011

Author:

Paul Sylvester | Date:

Thursday, December 29, 2011 at 8:26AM |

Need Glasses? Try GlassesUSA!

Image via Wikipedia

It's that time again!

I know this blog has been up and down this year and thus I want to discuss some of my more popular and ones that I am really proud of. We all know that is isn't going to be easy for me but I thought we could at least talk about some of more favorite posts and let people who just found my blog see some of my other posts!

We've all seen those post each year on different blogs and I am sure I am not the only one who does this but it is something that I like to do. It after all is about community and sharing with my friends. I know I consider my readers like close family because I am always thinking what I can do to better my life and yours. This is my biggest reason for blogging, to make life better for everyone and make it much more enjoyable for me also. You don't know how nice it is just to sit down and write to my family(readers) and not have to feel like there is pressure to post. This is my goal every time I write a post to share and hope it makes people think about how to work smarter and not hard.

Paul Sylvester

Looking Back at Post a Day 2011 - How'd You Do? (dailypost.wordpress.com)

2011: My year in blog posts, presentations and other resourcees (janeknight.typepad.com)

Most popular non-technical posts of 2011 (johndcook.com)

Meet Our 2011 Bloggers: Marcus Taylor (stateofsearch.com)

Time to Post (hearhearhere.wordpress.com)

Post a Comment | in

Amazon,

Kindle,

Linux,

Virtual private network,

Wikipedia,

Windows

Friday

Dec162011

Android Malware, Ridiculous!

Author:

Paul Sylvester | Date:

Friday, December 16, 2011 at 9:54AM |

Image via Wikipedia

Malware for Android??

Nothing I have read from what people have said or done indicates that it is actually malicious in being installed. Yet, Everyone keeps saying it is malware!

Software is considered to be malware based on the perceived intent of the creator rather than any particular features. Malware includes computer viruses, worms, trojan horses, spyware, dishonest adware, scareware, crimeware, most rootkits, and other malicious and unwanted software or program.

[Via Wikipedia]

What is with people saying Android has Malware! I don’t understand that and I have been scratching my head when I read this. It really burns my buttons on my computer when I read it.

Use your Head!

If you haven’t been keeping up with my blog, you will know that it isn’t really unwanted. Most programs you download using your android device is something that is being sought out but yet it isn’t going to be truthful when it comes to something you don’t know. I can’t understand for the life of my why they are trying to scare people into thinking that you need antivirus for Android for security. I’ve talked about this in past post but I will say it again:

This is something I tell my friends and family when buying an Application on the Market place from anywhere there is usually a bunch of reviews of it from various users and thus will help you determine if this application is worth the money or could be a problem.

My Underware!

I’m calling anything that is unwanted and stuff you didn’t know what is being rune’d on an OS. I call this underware due to the fact that is programs that you installed on your OS but didn’t know that it is doing something it shouldn’t. This is something that I called it because when you say malware, it makes me think of software that is being forced to be installed and running under the radar. You really don’t know it is running and thus that is why you call it malware, but if you install a program accepting the consequences then, it should just be called underware.

What should it be called?

I’m really not sure what else to call it but the idea of underware is UNDER the radar programs. If you can come up with something better please let me know but I don’t want it to be called malware.

Paul Sylvester

Have you tried Glasses USA!

Report: Over 3,200 Android Malware “Victims” respond to Windows Phone offer (tabletscooptoday.wordpress.com)

Google Pulls Malware from Market; Microsoft Has Another Solution (pocketnow.com)

Got Android malware? Microsoft wants to give you a free Windows Phone (thenextweb.com)

Who is rooting your Android? (daniweb.com)

Android’s growing malware problem (tech.fortune.cnn.com)

Malicious Android Apps Grow Two-fold in Six Months (devicemag.com)

Post a Comment | in

Apps,

Thursday

Jun022011

Linux will never have a Virus, Some say!

Author:

Paul Sylvester | Date:

Thursday, June 2, 2011 at 7:36AM |

I got an Interesting Comment yesterday:

Wouldn't you bet that this topic is very popular with the linux community at a whole but that isn't what makes it interesting. I got a comment that I must talk about in parts.

It’s not a question of whether Linux will get viruses. There are already a number of worms and other malware that have struck Linux services. As for a virus or other malware attacks against Linux as a whole, it can’t happen the way it can for Windows and Mac OS X. It’s a question of homogeneity vs. heterogeneity. Windows and Mac OS X have two flavors, 32bit and 64bit essentially [this is an over-generalization, but it's generally true]. Linux is so balkanized, that it’s difficult to think a virus could be written that could affect every distro out there, since none of them run the same versions of various system software [like services, filesystems, etc.], so it’s not likely that the same type of flaw will exist everywhere. Also, with distributions like Debian so many architectures are supported, and it’s difficult to imagine some virus author to put in the effort to make the virus able to infect so many disparate systems. The law of diminishing returns applies here.

This argument is something that is near and dear to my heart for several reasons. Having seen Apple getting hit by a virus and malware, who thought they were educated also never once thought about getting a virus. Now lets face it this isn't like a major system to some but there are more and more of linux users out there because of the fact this is a free system and many people would argue that they can't afford to buy a new version of Windows every 2 or 4 years and some of us will not buy Apple due the Apple tax. So there we have it, more and more people are turning to Linux because of this worldly recession and that means more and more people are using Linux and the eyes of the malware writers will start to find holes and other ways to infect users.

Just because it is unlikely doesn't mean it won't happen!

We have seen in the past that there are Unix viruses and that was never really popularized as Apple having a Virus. Now just because the Linux community is fragmented into many different flavors doesn't mean they don't have something in common to all of them. The Kernel alone has to have something in common with all flavors to be considered viable. That in such means that the flaw that you suggest could and probably does exist everywhere. When someone says law of diminishing returns applies here, I have to imagine that you do not know that with any web surfing instance, I can easily find out which Linux you might be using and thus create a script for it. Which in my Mind that sounds oddly like your using the old argument of Security through obscurity and we already saw how Apple got hit by a virus because they thought this same thought for several years.

Segmentation is everything to Malware:

So I agree, it’s possible that viruses for Linux will be in the wild sooner than later, but they will target specific distros/architectures [like Debian, Red Hat, SuSE, and derivatives, or even Android, and all the architectures supported by them]. Also, this means that the target markets for Linux viruses will be segmented and segregated, and thus much less profitable than markets as huge and contiguous as Windows or even Mac OS X. Until there’s no more low hanging fruit like this, virus writers won’t have the economic incentive to target Linux in general, except maybe to prove it can be done. But then again, the returns won’t ever be as spectacular as they can be on relatively homogeneous systems like Windows and Mac OS X. Thus it will always be possible to write Linux viruses, but not nearly as probable as with other commercial operating systems.

Segmented Linux distributions makes it just that more probable of getting a virus. Most writers will love to have segmentation and they have used it in the past. The Market segmentation would make it just that much harder for any one Linux Distro to remove the virus. If you have several different flavors of Linux, you would have to remove the virus or malware a certain way with each and every version of the flavor. Not everything is about economics, most of the writers have in the past did not want to segment because of the need to infect for ransomware, thus creating a way for income. With the development of Antivirus Companies for Windows, they have alternatively changed tactics. One of there new tactics is to spread to as many systems and use those system to send out spam, to redirect, infect other systems, and also pop up advertisements. This is why they would love Linux because of the fact that there are so many segregated communities that it would be much harder for a system to be cleaned and thus the user would have no other option but to re-install Linux or live with the problem. I for one have fought off viruses in the past with my clients so I know that some customers do not know anything about virus removal and thus will live with the virus until someone comes to fix the problem. That is why I believe the Linux community as a whole should start developing a Virus database and work at stopping the problem before it starts.

What do you think? I'd love to hear your comments? Feel free to leave your comments at tell me your thoughts!

Only Time Will Tell!

Paul Sylvester

Linux Rant (just this once) (donatoroque.wordpress.com)

Does Linux need an Anti-Virus? (paulstechtalk.com)

30 Days With...Ubuntu Linux (pcworld.com)

The battleground of malware no longer just Windows as Android users get hit (inquisitr.com)

Can Mac OS X Get A Virus? (brighthub.com)

Antivirus For Linux (zerinsakech.wordpress.com)

2 Comments | in

Linux,

Mac OS,

Wednesday

Jun012011

Does Linux need an Anti-Virus?

Author:

Paul Sylvester | Date:

Wednesday, June 1, 2011 at 9:56AM |

Anti-virus Programs and Linus Torvalds

Hey let's face it with the recent virus problems Machnitoshes has had, we've got a bit of problem on our hands. I've come to the realization that there must be a way to protect my Linux operating system much better. Although there are several different programs out there that can be used with Linux. I however wanted to talk about the necessity of having a program installed and running to better protect me from doing something bad. Hey I admit it, I occasionally click on links when I shouldn't and also occasionally like to see what is in my spam folder just to make sure I am not missing something that I should.

Is Anti-virus Really needed for Linux?

There have been advocates for Anti-virus programs for the Linux community over the past few years. I have been one of those myself.

Any antivirus/spyware needed?

I have been an advocate of "Linux" "doing" "enabling" antivirus/spyware for over 6 years now....it WILL hit "us" sooner or later....but given the money involved I think.....MUCH later....so....no, for now, do not worry about it at all.

If you get "something" that says it is "checking your computer" it is because WINE has automatically been enabled and the malware is seeing that and NOT Kubuntu....so....ummmm....close the browser....re-open and get on with your malware free life.

Via Kunbuntuforums.net

Now I tell you, What is wrong with this picture? Are the Linux users acting a little like Apple users, and thinking they can't get a virus. I won't say that right now there are any viruses in the wild but I would caution everyone not to consider your system invulnerable even though there aren't as many reports of virus out in the wild. It will hit us next if not this year probably in a year or two.

Linux is Next for sure!

I don't say that lightly, I am sure in the coming years to even months that the malware writers and virus writers will be looking at Linux more and more. With Apple just being hit and finally admitting that they have been hit with a virus, you can bet that some of the Apple users will convert to Linux just because they were using Apple's believe that they were immune to viruses and malware. They will come and when that comes the eyes of the world will be on Linux users. It will be our job to get ready for these nefarious users and fight them off. So I call to the community to get ready for this to happen. I know it is coming almost as much as I know I am going to keep blogging. Only time will prove me right, but I know it is going to happen and if your not ready then you can only blame yourself.

Stay Safe

Paul Sylvester

What kind of anti-virus software can you install on an iPad (wiki.answers.com)

How to Remove Mac Defender/Security/Protector Fake AntiVirus Phishing Malware (mydigitallife.info)

What's the difference between an anti-virus and an anti-spyware ... (sanjoseppl.com)

Run your anti-virus program. (newsiam.wordpress.com)

Repulsing a Mac malware attack (guardian.co.uk)

Blackhat SEO and Fake anti-virus - Like chocolate and peanut butter (blogoholic.in)

6 Comments | in

Linux,

Thursday

May262011

Apple Needs to Worry about Security and Virus!

Author:

Paul Sylvester | Date:

Thursday, May 26, 2011 at 3:29PM |

Let's Face It, Mac isn't Virus Free no more!

I know I've been saying this for a few years, but In all truthfulness it is more of a fact than a few years ago. Apple needs to change their policy on how they do commercials. I don't say that light hearted because I actually think the commercials are really funny sometimes but that is besides the point. They have not in the past changed their tactics because of the new malware that is going about. Some experts are saying this malware doesn't require you to enter a password or even have you allow or deny the installation. Although, I have no Apple computer to test this observation, it seems quite possible depending on how people have their system setup. Thought most Mac users are not thinking about security or even the possibility of a virus because of the advertisements that Apple has put up in the past. More and more their seems to be a growing number of viruses and malware for the Macintosh.

Security Through Obscurity is No More with Apple!

I say that know that in the past most Apple users always thought since the Operating system of the Apple was not well known that they could get away with installing unknown software or programs that Windows users would think twice on. I honestly don't see how people would download bit torrent files thinking that they were safe on the Mac because "Apple Could never get a Virus" advertising has stuck in their minds. Yet Apple has in the past fought this through new changes to their advertising but the fact remains anytime you think of a Macintosh, you first thought would be about it being Virus. I know some of you probably though the first thought would be the speed and ease of the Operating, and although that is true that isn't my thought when I think of a Apple Operating System.

Don't Presume anything!

I might not be a Mac User but I don't presume anything when it comes to running a Windows or even a Linux Operating System. That Being said when Apple finally realizes that they are no longer able to hide from the bad guys, then we will see them start fighting back. Until then though, most Mac Users will make the mistakes they have always done because of Apple stance and the ignorance of the problem. I have said how hackers will start targeting Apple Users and this seems to be the case even now. If you have a Mac Machine, I suggest looking for a good Antivirus and sticking with them. You are not longer safe not having an Antivirus software installed on your system.

Stay Safe!

Paul Sylvester

5 ways to stay safe from fake anti-virus malware attack on Macintosh (infoworld.com)

My final word on the whole "Macs don't get viruses" thing (technovia.co.uk)

Apple finally acknowledges malware; readying software fix (thestar.com)

Do You Use a Mac? Safeguard It Against "MacDefender" Malware by Understanding the Scam and Getting the Fix! (managemypractice.com)

2 Comments | in

Friday

Jul312009

Scareware List for July 31, 2009

Author:

Paul Sylvester | Date:

Friday, July 31, 2009 at 10:26AM |

Looks like they went out and made a quite a few domains lately so Here they are:

antivirus-live-pro.org ([intlink id="1837" type="post"]Antivirus Pro Scareware[/intlink])

internetantivirusplus.com (Fake Antivirus)

mybestantivirusplus.com

securesoftwarebill.com (Rogue System Security Antivirus)

yourantimalware.com

totalsurfguard.com

systemsecuritysupport.com

stabilitysuite.com

powersystemstability.com

onlinecentersupport.net

identitysecuritysuite.com

etotalsecurity.com

defenseinteractive.com

defenseinteractive.com

antispyinteractive.com

antispyavailable.com

protectionsystem.org(Like [intlink id="1837" type="post"]Antivirus Pro Scareware[/intlink])

realbestantivirusplus.com

Remember these sites are active and are scaring people into buying or installing there product, you should not go to these sites. As you can see the Scareware Writers and domains have been busy this week and have made these to use in this weekend I can bet on that. These sites are trying to [intlink id="3607" type="post"]scare you into buying there product or installing there fake antivirus software[/intlink]. If you are constantly inundated with pop up windows warning you have a virus or trojan and showing you a load of viruses or trojans on your screen. They will probably ask you to install software or buy the product that would be a big waste of time and could possibly install even more malware and also could loose money. You should never download any software from sites you don't know or buy from sites that you've never heard from.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

2008,

Pro,

rogue

Wednesday

Jul292009

Some more Malware Sites July 29, 2009

Author:

Paul Sylvester | Date:

Wednesday, July 29, 2009 at 11:34AM |

I've done my usual looking around and found some Rogue Antivirus sites that I call scareware:

tb2car.com

rundaqimao.com

shuncheng2car.com

dakbesy.cn

befynru.cn

scanworldwideweb.com

All these sites are scaring users into installing software that does nothing but bothers the users into registering this software. You should not visit these sites are active right now and are spreading the malware and getting people to install malware. If you have installed this scareware software, I would recommend removing with really Antimalware software and not pay for these fake products.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

How-to,

Remove,

Scareware,

Sites,

rogue,

them

Monday

Jul272009

List of fake Antivirus Sites for July 27, 2009

Author:

Paul Sylvester | Date:

Monday, July 27, 2009 at 6:28PM |

I have found some other sites that are fake Antivirus:

anti-malware-pro.com (Rouge AntiMalware Software)

allowsecurityshield.com ([intlink id="3713" type="post"]Scareware site[/intlink])

securedvirusproscanner.com ([intlink id="3607" type="post"]Personal Antivirus[/intlink])

antivirus-best-scannerv2.com ([intlink id="3607" type="post"]Personal Antivirus[/intlink])

Most of these sites try to scare you into either installing software or buying their fake software. Some of these sites have used exploits to install a Trojan or two to have your browser redirect to these sites. This means that there might be more than one virus or Trojan on your system

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

2008,

Sites,

Sunday

Jul262009

Fake Security Adviser from explorersecurityhelper.com

Author:

Paul Sylvester | Date:

Sunday, July 26, 2009 at 8:51PM |

I saw this come in my way and I thought I would share it:

Here is a site that is another scareware attempt from the makers of [intlink id="3607" type="post"]Personal Antivirus[/intlink]. They do this to get money from unsuspecting users who think this will protect there system but the truth of the matter, they are either trying to get you to install even more Malware or buy a program that doesn't do what it claims. You should never buy from a site you do not know anything about and you should never install software from a site you have no knowledge of

Threat to System : Critical

[rating:5/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware. This has altered your browser and can be monitoring your system and should be taken off your system. You should consider your system compromised until you clean your system.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

Trojan,

explorersecurityhelper.com,

spyware

Saturday

Jul252009

List of Malware sites for July 25, 2009

Author:

Paul Sylvester | Date:

Saturday, July 25, 2009 at 7:15PM |

All Of these sites listed below are active and should not be visited:

folder-antivirus-scanv1.com

systemsecuritycenter.com

sheltercloud.cn (Now Redirecting to Adult Friend Finder)

searchav.net (Now Redirecting to Adult Friend Finder)

strelyk.info

gagtemple.info

These sites listed try to get you to download a program sometimes called install.exe, Setup.exe, and are most likely just a way to get you even more infected with malware. Other sites want to you upgrade which means you probably have some kinda of malware on your system to begin with. These sites are what I call [intlink id="3805" type="post"]scareware[/intlink] and will always try to scare you into either buying or installing software. These sites don't do anything else but try to make money or get your system infected for them to use. A couple of these sites require you to quit out of your browser by going to your Taskmanager. These fake antivirus softwares don't really protect your system at all but only to annoy the end user into giving these guys a free ride. Two of the sites are now redirecting to Adult Friend Finder, but still should be avoided because of the possibility of an exploit code trying to take over you computer.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

Wednesday

Jul082009

Using Malwarebytes to get Rid of Malware

Author:

Paul Sylvester | Date:

Wednesday, July 8, 2009 at 11:04AM |

I have been using Malwarebytes for quite some time. I have the Installer for Malwarebytes in place on a USB drive so i can use anywhere I go. I have seen several computers with very old Viruses and this actually detected them.

[ad]How Malwarebytes useful

Malwarebytes has a really good protection module to help prevent infections in the first place, but that requires you to buy it. It should never be used without at least a [intlink id="2205" type="page"]firewall installed[/intlink] but it is a good defense against what I like to call a Drive by install.

Automatically create logs of Malware that is found -- This is good to for people who want to be able to check out what might be infected. Also good to help identify the virus or Trojan, and find out how to uninfected it.

Cheaper than buying AVG -- Cost $24.95 which is half of the cost of buying AVG.

As you can see buying Malwarebytes can be cheaper than buying AVG or Norton and protects your almost as if you have a brand name. I think if a customer can't afford $50 this would be the next best thing to suggest being that it will at least protect the system. You can always install a [intlink id="2205" type="page"]Free Anti-virus[/intlink] along with Malwarebytes to better protect your system. This is one way to not have to buy expensive antivirus and yet still protect your systems from Malware.

No matter if you Buy Malwarebytes or use the Free version you are better off then not having it. With the Free Version you can't unlocks real-time protection, scheduled scanning, and scheduled updating. These can be done manually without the having any Real time Protect. You can scan manually and Schedule manually without buying the full version. This is still a good buy, I recommend this to all my customers.

Post a Comment | in

Malwarebytes,

Review,

Saturday

Jun202009

Mac Malware on the Rise drive by Downloads

Author:

Paul Sylvester | Date:

Saturday, June 20, 2009 at 8:32AM |

Photo by Incase Designs

More and more there seems to be a building trend with Malware writers are developing ways to find both Mac systems and PC Systems. In a diary talking about that one mans journey leads to a site that can detect which system you are on and offer up Malware for that system. He also has some other examples of this on a Mac Trojan in the wild.

Now more and more[intlink id="2173" type="post"] Apple users think they are not vulnerable[/intlink] to the types of antics that the PC users have to deal with day by day. This however proves they are "WRONG".   I will keep telling people whether PC or Mac that you need to have [intlink id="2205" type="page"]Anti-virus and Firewalls[/intlink] installed to help protect yourself from be victim to this type of stuff. Just a last week Sopho's issued the OSX/Tored-Fam worm to their databases.   Sopho's even talks about this in detail on their blog.

[ad]Though admittedly it is the people who are searching for Porn that will most likely install this malware. It however begs the question, hasn't this been done on the PC systems before? I have to think this is because the Apple is getting a bigger share of the systems in the world.   For the one reason people still think they will never get Viruses or Worms on there system.   I on the other hand know that this is just the beginning and in the near future Apple will have to recommend to people to have Anti-virus software on your system. They did that in the past but changed their minds.

Apple's stance on malware and their systems are one that will be their downfall.   I've talked in the past about [intlink id="694" type="post"]Mac\'s getting viruses and other such Malware[/intlink]. Although to Apple's benefit they do offer ProtectMac AntiVirus for the OSX.   I don't know how good this is but I do think they need to change their advertising and not make it seem like the Macintosh has can't get viruses.   I think it would be really funny to see Justin Long in the Mac ads get a Virus, although I don't think that will happen it is something that I would love to see.

Post a Comment | in

rise,

sophos

Friday

Jun192009

Harry Potter and the Half Blood Prince Movie Spreads Malware

Author:

Paul Sylvester | Date:

Friday, June 19, 2009 at 5:10AM |

It seems in anticipation of the release of Half Blood Prince the Malware authors are starting to send for the movie. For example:

As you can see they really try to fool you into think your are going to be able to watch it for free. They even put it the movie poster to try to get you to click that link. It is on a blogspot page and has a few Google followers, which I am amazed at because what I have found it. If you were to click that play link (usa-top-news.info) it will redirect your to (world-news-scandals.com) and then to the final destination (tubes-portal.com). Each site is surprisingly in the US and tries to look like it is a real site. It sends you a file called streamviewer.40018.exe, which I am surprised AVG hasn't picked this up so I went to see if this was a virus and Virustotal showed me this:

[ad]Very few actually detect this trojan downloader even [intlink id="2205" type="page"]AVG[/intlink] hasn't detected this as being malware. So you best bet is not try to go watch it early because 9 times out of 10 it will be a virus. You also should know that there are even some links in Digg.com and other popular websites that are promoting this. The top rated sites are what I call Google Juice to put the blog spot website onto the first page of Google. So you should install a good [intlink id="2205" type="page"]Anti-virus software and Firewall[/intlink]. I also believe this will be coming out on DVD in December according to my sources this movie has been ready for quite some time and they are anxious to have it ready for Christmas so you won't have to wait long to see it. Afterall they have had this movie ready since last Year.

This seems to be like the [intlink id="3448" type="post"]Fake Codecs[/intlink], I have talked about. In order to see this you have to install this software to view this movie. I don't even know if it is a true movie but I do expect in the coming weeks to days there will be even more Fake Sites like this trying to promote watching it for Free. Thank goodness [intlink id="3385" type="post"]we don''t have to worry about Zango anymore[/intlink]. Nothing in life comes free, so be on your guard. Only you can prevent virus infections on your system.

Post a Comment | in

Trojan,

VIDEO,

streamviewer.40018.exe,

tubes-portal.com,

usa-top-news.info,

virustotal,

world-news-scandals.com

Saturday

May022009

Nikki Catsouras being used to spread Malware

Author:

Paul Sylvester | Date:

Saturday, May 2, 2009 at 8:36AM |

I was doing my usual perusing the internet and I came accross this site about Nikki Catsouras Accident Photos, I won't go into gruesome details but looks like the Malware Authors are at it again with trying to have you install [intlink id="2991" type="post"]Fake codecs[/intlink] into your system.

These are some of the nicer picturs on the site

I must warn you if you go to the site there are some very gruesome and disturbing pictures of the accident, but that not what is computer related. On the site they also have a Video that isn't really a Video. Clicking that video link pops up this in my AVG warning window:

[intlink id="2205" type="page"]This is the Free Version of AVG[/intlink]

As you can see, the Malware authors are using the accident video to get people to install the Fake Codec to install some Trojan, worm, or even a Virus onto your system. I've talked about this from time to time but if you need to install a codec from a site you don't trust. I don't recommend this to anyone. I would keep with the known [intlink id="2991" type="post"]Codecs [/intlink]and keep away from any site that says you will need to install a codec or tries to install a codec. I also recommend some [intlink id="2205" type="page"]Free Anti-virus and Free Firewall[/intlink] software to better protect you. As you can see the free AVG software that I was using did detect this and prevented me from going any further. So the Free software Anti-virus providers are keeping even the most common users safe.

If you did visit that and get the virus, Trojan, or worm, you can visit my [intlink id="2205" type="page"]Maleware resources[/intlink] to find tools to help remove this problem.

As of writing the post this seems to be on the Google Trends on May 2. I will always tell people to go to the trust media sites if they are wondering who this person or what happen. It looks like they Media is going wild over the court cases right now to take down the pictures. I am all for the family wanting those picture. I do hope they take them down.

6 Comments | in

AVG,

VIDEO,

Monday

Mar092009

Fake Emails about Windows Support spam!

Author:

Paul Sylvester | Date:

Monday, March 9, 2009 at 7:33AM |

According to Trend Micro, Some malicious software is being sent to unsuspecting users about Windows SP1 andSP2 having a error that could damage software or even hardware. See Trends blog with the photos of the fake spam.

[ad#ad2-right]Although from time to time Microsoft does send out security information to Technet subscribers people have also used this in the past to get people to install Viruses and Malware, like this one that installs TSPY_BANKER.MCL. TSPY_BANKER.MCL monitors the affected user’s online transactions and steals banking related information

Microsoft sends e-mail messages to subscribers of our security communications when we release information about a security software update or security incident. Unfortunately, malicious individuals can and have sent fake security communications that appear to be from Microsoft.

[Via Microsoft]

So if you get an email from Microsoft you'll probably want to delete it. Any Microsoft communications will be sent from the Update center. You should never install software that is from an untrusted website. If you are concerned you should check the web and find out what people are saying about the situation and see if it is a scam or true!! Remember only you can prevent a virus or Malware!

Post a Comment | in

Avg,

Downloads,

Email,

The,

US,

Windows,

Windows Vista,

XP,

check,

Sunday

Mar082009

5 Steps in Finding the right Affiliates!

Author:

Paul Sylvester | Date:

Sunday, March 8, 2009 at 8:49PM |

So you want to make Money with your blog but don't know how? I thought I would share with you what I've learned in the past few months to earn enough money to pay for the space and web address. I'll go through each step talking about steps:

First you will need to explore all the great Affiliate programs like OpenX, TMIWireless, Adsense, Converseon, and Commision Junction. There is of course even more out on the Internet, but these are ones that I like and have given me some insight as to Commission and Affiliate marketing. I have been using TMIWIRELESS and Converseon more and more. I still have Adsense but you have to get a balance on Advertising and what people are wanting.

Find the right fit for you blog and talk about the products you like the most. I like TmiWireless because you give out free phones and still get money in return and Converseon for recommending Cell Phones. You should figure out what does better, and always keep looking. There are more than a few out that will work for you better. If you know one that I should look into let me know.

[ad#ad2-right]Remind readers about the affiliate programs so others can find them and blog about them. It can also help with people coming to your site because the will encourage other people to check out what you've written and your recommendations. You should come up with ways to promote your affiliates and encourage users to click on them and buy stuff from them. This has brought in money by having them searched and indexed by Google. You should find a niche that you have very little competition in, that way you get most of the traffic in for your self.

Create a Sneeze page, although this sounds rude, it is really a page talking about having helpful topics around your products or have them for people to find even more information about your affiliates. Just like I have a Malware Resource, and Cricket Resource, also Cricket Reviews. These will make it much easier for people to find what they are looking for and make it more enjoyable for the reader. It also encourages people to come back and stay a while.

Although this is overlooked it is sometimes necessary to remind your readers about affiliates and talk about a product in detail by asking them to comment on a articles and encourage them to link to you. This will bring in even more people to look at your blog and your reviews to get your page views higher and get more people to click your affiliate links.

I've not followed these steps very well in the beginning of starting my blog but I have learned a lot since then. I've also learned that you need to update your blog on a weekly or even daily to basis to keep readers to come back. You should always keep searching for even better affiliates to make your blog better. You can also start advertising your blog by yourself without the middle but that is of yet I've not done enough on. I will in the future when I get more experience under my belt. I hope this has helped you in some way.

Post a Comment | in

niche

Monday

Feb232009

And the Oscar goes to . . . Not these guys!

Author:

Paul Sylvester | Date:

Monday, February 23, 2009 at 12:12PM |