Top

Help Support my Blog!

Virgin Mobile USA
Glasses USA
Amazon
Newegg
VPN4ALL
Netflix
Hulu
CafePress

 

Subscribe to Paul’s Tech Talk Affiliate Marketing Blog

Subscribe to Paul’s Tech Talk Science Fiction Blog

Subscribe to Paul’s Tech Talk Scams Blog

  • Acer 11.6
    Acer 11.6" Laptop 2GB 16GB | C710-2856
    Acer

    Currently  in process review this Acer Chrome book and boy is it nice!

Blog Index

Subscribe to our mailing list

* indicates required
Email Format

View previous campaigns.

Powered by MailChimp

Follow Us

Navigation
Sponsors

Entries in XP (69)

Monday
Aug312009

List of malware sites for Sept 1, 2009

Author: AuthorPaul Sylvester | Date: DateMonday, August 31, 2009 at 7:51PM |

personalantivirus3


Well with it being the end of the month it was to be expected here is a long list of sites.   So please read these carefully.


[intlink id="4403" type="post"]Personal Antivirus Scareware Site and How to Remove them:[/intlink]




  • live-virus-scanner9.com

  • tryantivirusscan.com

  • antispyware-scanner2.com

  • bewareofvirusattacks2.com

  • antivirus-scanner6.com

  • valueantivirusshop1.com


[ad][intlink id="4217" type="post"]Internet Antivirus Pro Scareware[/intlink]*SUPERAntispyware gets rid of these too*

  • adjudg.info

  • atwain.info

  • caretz.info

  • gaudad.info

  • krapen.info

  • nevils.info

  • outliv.info

  • penvie.info

  • stampo.info

  • ticedu.info

  • unwept.info

  • gelded.info

  • dolchi.info

  • figgle.info

  • botled.info


[intlink id="3977" type="post"]Rogue Antivirus scareware sites[/intlink]:

  • securepcshield.com

  • myprotectedzone.net


[ad#Scarewaresitesrecommend]

[rating:4/5]

[ad#Scarewaresitesrecommend1]

[ad#SUPERAntiSpyware]
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , , , , ,
Sunday
Aug302009

How to know if the scareware warning is real or not:

Author: AuthorPaul Sylvester | Date: DateSunday, August 30, 2009 at 1:45PM |
I got an email from someone who wants not to be named asking how do I know if these sites that I have talked about like [intlink id="4348" type="post"]Defenderpageblock.com[/intlink], [intlink id="4346" type="post"]Spywaredomainlist.com[/intlink], [intlink id="4328" type="post"]adwaredomainlists.com[/intlink], [intlink id="4344" type="post"]badwaredomainlists.com[/intlink], [intlink id="4342" type="post"]browserdefenderlist.com[/intlink], [intlink id="4339" type="post"]malicioussitesblock.com[/intlink], and [intlink id="4337" type="post"]browserliveprotection.com[/intlink] are fake warning sites because of how the site handles the URL presented.   Let me give you a few example urls to see what I mean:

http://defenderpageblock.com/block.php?id=2006-54&url=http://paulstechtalk.com/scareware-adviser-from-defenderpageblock-com/

http://browserliveprotection.com/block.php?id=2024-4&url=http://paulstechtalk.com/2008/12/microsoft-readys-to-layoff-around-15000-workers.html/

http://malicioussitesblock.com/block.php?id=2006-54&url=http://paulstechtalk.com/2009/08/list-of-malware-sites-for-aug-24-2009.html/

http://spywaredomainlists.com/block.php?id=2018-2&url=http://paulstechtalk.com/2009/08/scareware-adviser-from-spywaredomainlists-com.html/

http://adwaredomainlists.com/block.php?id=2031&url=http://paulstechtalk.com/2009/04/pc-speedscan-pro-a-bad-idea.html/

[ad]Now as you can see al these have an identification number probably like an affiliate link and then the url of the site that is supposed to be bad or have malicious in some way.  So what do you do when you see these types of warning pop up and you would like to know if this real.   Here are some things to try to see if it is real or not:

  • change the url it is going to, try Google or some other site that you know isn't malicious and see what happens.   You will notice it will say the same exact same thing.

  • Check out Stopbadware.org --  Google uses this service for there search results so this would be more reliable and check out the warning domain to see what it says then also check out the domain and website in question.

  • Check out Phishtank.com --  Firefox likes to use this resource for reporting fraud, fake, or Phishing sites and also for sites that are dangerous to  the people who use Firefox.


Most of the time, you will see this happen when you are search for the site like [intlink id="4348" type="post"]Defenderpageblock.com[/intlink] it will use a key word and pop up because they don't want you to remove this scareware or sometimes called badware.   So if you do a search for the site that keeps popping up and you click on a link the site in question will sometimes try to prevent you from figuring out how to remove it.    All these sites mentioned are associated one way or another to [intlink id="3607" type="post"]Personal Antivirus Scareware Site[/intlink] and should be removed.

So if your getting these types of warnings, I would recommend downloading:

[ad#SUPERAntiSpyware]
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , ,
Tuesday
Aug252009

AVG 8.5 Free Version Best on my system

Author: AuthorPaul Sylvester | Date: DateTuesday, August 25, 2009 at 9:34AM |

AVG Free 8.5



Pcworld has a released there top free Antivirus software picks.     Now let's be clear on this, I am an a average user, and have tested these products out on my own laptop plus others and here is what I find.

According to Pcworld, Avira Antivir Personal is the top pick and claims to block 98.9 percent of samples:
Such less-than-friendly default behaviors make Avira AntiVir Personal a better choice for tech-savvy users who know how to muck about in the settings. If you're willing to put up with a somewhat clumsy interface and the recurring pop-up ads, in return you'll enjoy top-notch, free protection against malware. It's not a bad trade-off by any means.

[Via Pcworld : Avira Antivir Personal Antivirus]

[ad]Now with Pcworld saying it isn't a bad trade-off to have the Pop-ups and the default behaviors of this program, it doesn't make me want to use this program since I am a gamer and the pop-ups would interfere with playing online games, not to mention if your not that tech savy person you'd have a lot of head scratching to  figure out this program.

Then we go to the Second pick and Avast Antivirus Home in this pick Pcworld claims to blocking 98.2 percent of samples tried with this program:
Avast Antivirus will do a decent job protecting a PC from malware, but if you're willing to put up with a less-than-perfect interface (and some ads), you're better off going with Avira's top-notch blocking.

[Via Pcworld : Avast Antivirus Home Edition]

Now unless you want to be scratching your head on this product you have to go through the Tutorial that pop-ups after installation to walk you through how to use this product.   Then there are some more ads that popup during the day that reminds you that this is a free program and suggesting you pay for it.   Also you will have to register with Avast  to get a personal free license to be able to keep this program running on your system.  The interface of this Antivirus makes you think you will be playing music, which can cause some confusion when it comes to understanding this product.

Third place was AVG 8.5 Free edition according to PcWorld.   With there being no pop-ups reminding me this is a free product.   Also the easy to understand interface also makes this very user friendly.   I also like the Linkscanner and blocked 95.8 percent of the samples meaning it is still rather good to use for the daily user who wants a less intrusive  pop-ups or ads.   AVG has not yet done a pop up with me but it is far less annoying than the others because of the interface and the ads that are shown in the main program.

Now if you want to add even more security to your system and keep it cheap as possible I would suggest Downloading and using  SUPERAntiSpyware and Malwarebytes.  These with AVG 8.5 Free edition to better protect your system and these don't interfere with AVG and actually helps boosts the removal of virus, Trojans, and Malware.




Download Malwarebytes Download Malwarebytes

Download SUPERAntiSpyware Download SUPERAntiSpyware
















If your current antimalware software let an infection through, you may want to consider purchasing the PRO version of SUPERAntiSpyware or Malwarebytes License to protect your computer in the future. SUPERAntiSpyware Professional or Malwarebytes License features highly advanced Real-Time Protection to ensure protection from installation or re-installation of potential threats as you surf the Internet (Both are trusted Vendors by CCSS Forums).

Buy Lifetime Subscription SUPERAntiSpyware For $30, save $8.90 if you order now. This is a special offer from this website.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , ,
Friday
Aug212009

List of Fake AV sites for Aug 22, 2009

Author: AuthorPaul Sylvester | Date: DateFriday, August 21, 2009 at 10:45PM |

personalantivirus2If you know anything about the Malware writers they are always registering new domains and here is the newest ones they are using:


[intlink id="3607" type="post"]Personal Antivirus Scareware Site[/intlink]:




  • antispywarebestscanner.com
    • [ad]
  • professionalvirusscanv3.com

  • professionalcomputerscanv2.com

  • scan-your-pc-now.com

  • professionalspywarescanv8.com


[intlink id="4217" type="post"]Internet Antivirus Pro Scareware[/intlink]:

  • hopest.info

  • suffic.info

  • cressy.info

  • unowed.info

  • inclin.info


[intlink id="3977" type="post"]Rogue Antivirus scareware sites[/intlink]:

  • securitytoolsite.com (Fake Scanner)

  • webscansecurepc.com (Fake Scanner)


[ad#Scarewaresitesrecommend]

[rating:4/5]

[ad#Scarewaresitesrecommend1]

[ad#SUPERAntiSpyware]



VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , ,
Thursday
Aug202009

List of Malware sites for Aug 21, 2009

Author: AuthorPaul Sylvester | Date: DateThursday, August 20, 2009 at 9:32PM |

personalantivirus3


It has been kinda busy today for the Antivirus scareware sites but here they are.


[intlink id="3607" type="post"]Personal Antivirus Scareware Site[/intlink]:




  • check-for-malwarev3.com

  • safeonlinescannerv4.com


[intlink id="4217" type="post"]Internet Antivirus Pro Scareware[/intlink]:

  • fatuus.info


[intlink id="3977" type="post"]Rogue Antivirus scareware sites[/intlink]:

  • antivirusplus2010.com

  • mybestantivirusplus.com

  • internetantivirusplus.com

  • antivirusplus09.com

  • antivirus-plus-now.com

  • yesantivirusplus.com

  • goodantivirusplus.com

  • i-antivirusplus.com

  • nextantivirusplus.com

  • antivirusplus-ok.com

  • getavplusnow.com

  • antivirusplusnow.com

  • getantivirusplusnow.com

  • realantivirusplus09.com

  • freeantivirusplus09.com

  • addedantivirusstore.com

  • addedantivirusonline.com

  • myplusantiviruspro.com

  • yourcountedantivirus.com

  • easyaddedantivirus.com

  • addedantiviruslive.com

  • addedantiviruspro.com



[ad#Scarewaresitesrecommend]

[rating:4/5]

[ad#Scarewaresitesrecommend1]

[ad#SUPERAntiSpyware]

VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , ,
Thursday
Jun042009

Ms Patch Tuesday For June 2009

Author: AuthorPaul Sylvester | Date: DateThursday, June 4, 2009 at 7:46PM |
Photo by Andrew Magill Photo by Andrew Magill

Microsoft has released the upcoming patch information for this Tuesday, and boy does it look like a big one. It looks like there will be 10 bulletins this time around:

  • Bulletin 1: Critical (Remote Code Execution):   Windows

  • Bulletin 2: Critical (Remote Code Execution):   Windows

  • Bulletin 3: Critical (Remote Code Execution):   Windows, Internet Explorer

  • Bulletin 4: Critical (Remote Code Execution):   Office

  • Bulletin 5: Critical (Remote Code Execution):   Office

  • Bulletin 6: Critical (Remote Code Execution):   Office

  • Bulletin 7: Important (Elevation of Privilege):        Windows

  • Bulletin 8: Important (Elevation of Privilege):        Windows

  • Bulletin 9: Important (Elevation of Privilege):        Windows

  • Bulletin 10: Moderate (Information Disclosure):    Windows


It will also include one or more updates on WSUS and Windows update, and Microsoft Windows Malicious Software Removal Tool.   This looks to be quite a big set of updates.   Each one is very serious and will probably be a big download.   If your in corporate IT you may want to get ready the [intlink id="2883" type="post"]Autopatcher program [/intlink]this will help update all the important files on each system without having to have a internet Connection.

[ad]We don't know what they will be until they have dropped from Microsoft, but we can guess that the Latest Directx vulnerability isn't going to be one of them.  I wouldn't be surprised if this was going to be pushed out of cycle but that is going to have to wait a see.

The Affected systems are Windows 2000 Through Windows Vista and Server 2008.   Which means if you have windows it most likely will need to be updated.   Although on a side not the Office suite from 2000 to 2008 also will be patched and that includes the Macintosh systems.

It also looks like 7 out of the 10 will require restarts, so the autopatcher will save you time.  I wouldn't expect this to notbe exploited on Wensday because most of them are Remote Code Execution which means it is easy for a hacker to take control of your system.   These should be installed ASAP and you also should have a [intlink id="2205" type="page"]Firewall and Antivirus installed[/intlink] to better protect your system.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , ,
Wednesday
Jun032009

Microsoft makes Firefox more insecure with the .NET 3.5 Framework (KB951847)!

Author: AuthorPaul Sylvester | Date: DateWednesday, June 3, 2009 at 2:11PM |
Photo by Daniel F. Pigatto

In February, Microsoft quietly installed .NET Framework Assistant (ClickOnce) Firefox Extension. This extension is a bad idea because of what this could do.
This update adds to Firefox one of the most dangerous vulnerabilities present in all versions of Internet Explorer: the ability for websites to easily and quietly install software on your PC. Since this design flaw is one of the reasons you may've originally choosen to abandon IE in favor of a safer browser like Firefox, you may wish to remove this extension with all due haste.

[Via Annoyances.org]

As you see, this is a way to make Firefox less secure and almost like Internet Explorer.   We've seen the problems with all the [intlink id="2946" type="post"]Malware exploits[/intlink] that people have used in the past.   If you want to uninstall it, well you can't.   Microsoft as went out if its way to prevent users from uninstalling.    Here is what Brad Abrams talked about on his blog:
[ad]We added this support at the machine level in order to enable the feature for all users on the machine.Seems reasonable right? Well, turns out that enabling this functionality at the machine level, rather than at the user level means that the "Uninstall" button is grayed out in the Firefox Add-ons menu because standard users are not permitted to uninstall machine-level components.

If you went to your Addons Menu and then to your extensions tab you would see that the uninstall button is grey out. You can disable it but you can't uninstall it. It looks like Microsoft has sent out a patch to let regular users uninstall this addon(KB963707).

I am really surprised that Microsoft did this little stunt. I would of expected more from Microsoft, but to their credit they did this for a reason to allow users who don't use IE8 but Firefox , to be able to use the .net Framework but this plugin makes browsing just unsafe. Don't forgot about the [intlink id="1010" type="post"]MobileMe apple installed on Vista[/intlink] without your knowledge. Microsoft and Apple have both had problems but this is very disturbing.  This patch they are letting people download to fix the problem doesn't mean much because it hasn't been sent out to the Auto updates and requires people go download it manually.  So Microsoft believes if you don't know, it won't your.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , ,
Friday
May292009

Microsoft Issues a Security Advisory KB971778

Author: AuthorPaul Sylvester | Date: DateFriday, May 29, 2009 at 8:27AM |
Microsoft Security Advisory: Vulnerability in Microsoft DirectShow could allow remote code execution

http://support.microsoft.com/kb/971778


The systems that are vulnerable are Windows 2000, Windows XP or Windows Server 2003.   I like this new way Microsoft is helping the less educated.   They now havea Fix it button on the site.  This fix it button is a registry change to there system.   It does all the work for the End user.   Although the corporate field will have to modify the registry there own way.

[ad]It looks like Microsoft is thinking of making this more user friendly.  Here is how to do a manual registry fix for your computer:

  1. Click Start, click Run, type regedit in the Open box, and then click OK.

  2. Locate and then click the following subkeys in the registry:

    • For 32-bit Windows systems:
      HKEY_CLASSES_ROOT\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A}

    • For 64 bit Windows Systems:
      HKEY_CLASSES_ROOT\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A}
      HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A}



  3. On the File menu, click Export.

  4. In the Export Registry File dialog box, type Quicktime_Parser_Backup.reg, and then click Save.

    Note By default, this will create a backup of this registry key in the My Documents folder.

  5. Press DELETE on the keyboard to delete the registry key. When prompted to delete the registry key in the Confirm Key Delete dialog box, click Yes.

  6. Exit Registry Editor.


This will fix the problem until Microsoft has come out with a patch.  If you are not comfortable doing it this way, you can always go hit the fix it button to have it do it automatically.  This will help prevent someone from using this exploit!!
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , ,
Monday
May182009

Free Anonymous Browsing with Opera-Tor

Author: AuthorPaul Sylvester | Date: DateMonday, May 18, 2009 at 5:09PM |
2588641284_603490d6d1_m Photo by Philip Chapman-Bell

Anonymous browsing is something of huge interest to the Internet users, who are very particular about their online privacy and security. There may be many reasons and situations, when you might be interested in using internet anonymously; for instance, you may be working on a public place and do not want to leave the traces or you may not like your family members or office colleagues to know what you have been doing online. Whatever be the reason, but still, it is an area, where a lot research is to be done.


How Anonymous Browsers Operate?


At present there are two dominant techniques used by various anonymous browsing tools. One is the use of JAP Networks, which was used hugely used earlier but later it ran into controversies after a backdoor had to be put into the product to allow interception of child pornographers on insistence of German Police.


The second technique is the use of Tor (The Onion Ring), which only allows anonymous browsing but also facilitates other applications like anonymous P2P, email, IM, and IRC chat. This technique is dominantly used in present day anonymous browsing tools.


Operator – A useful anonymous browser


OperaTor is small and relatively fast anonymous web browser, which combines the browsing platform of Opera, with privacy provided by Tor engines and the speed of browsing provided by Polipo.


You can download this 7MB application in your USB drive and carry it whenever you need to use a public computer for anonymous surfing.


In my testing, I was pleasantly surprised with the speed of browsing, which I was getting with this little tool. I had earlier used XBBrowser for anonymous browsing, but it was too slow, as compared to Operator. In fact, there was hardly any noticeable difference in the browsing speed as compared to my normal Opera browser. This is because of Polipo, the small caching web proxy, that comes bundled with Opera-Tor.


Since Operator allows only http and https protocols in anonymous mode, you should avoid Javascripts and Opera's IRC functions running through it.


Some people complain that it has not yet released the source code of itself. But my view is that unless you are hard-core programmer and really need to tweak the source code, why should you worry about that. After all, trusted networks like CNet says OperaTor has been tested spyware free and Softpedia gave OperaTor its 100% Clean award. Major antivirus vendors, like GData, Kaspersky, McAfee and Microsoft, confirm that OperaTor contains no malicious software.


Overall, one of the best applications for anonymous browsing available today.


Download Operator.


[This is a guest post by Silki Garg. She advises on how to eliminate spyware, online threats and malware detection, on her Internet Security Blog. A visit to her Blog is highly recommended. You’re sure to find something of interest.]




VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , ,
Saturday
May092009

Microsoft to Release One Crictical update for Tuesday

Author: AuthorPaul Sylvester | Date: DateSaturday, May 9, 2009 at 7:03AM |
Microsoft has release the information for May's Patch Tuesday and it looks like there is one major update for Power point:

ms09patchtuesday1


The Affected software is MS Office 2000, MS office Xp, MS Office 2003, Ms Office 2007, Power point viewer, and MS compatibility pack for Word, Excel, and Power point 2007.



[ad]What will be coming out for Tuesday is as Followers for Non-security Releated:

  • Windows PowerShell 1.0 for Windows Vista (KB928439)

  • Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847)

  • Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)

  • Windows Malicious Software Removal Tool - May 2009 (KB890830)/Windows Malicious Software Removal Tool - May 2009 (KB890830) - Internet Explorer Version

  • Update for Windows Mail Junk E-mail Filter [May 2009] (KB905866)


Although some of this is usual like the Malicious software removal tool, and Windows Junke e-mail filter, we won't know what else will be released until Tuesday.  Some of the updates will be minor like the Powershell, I am guessing tis will help get ready for SP2, and the SP1 for the .NET framwork also looks to be getting ready for SP2.  So I will keep you updated if i find out what else is released on Tuesday!
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , ,
Wednesday
Apr292009

Adobe PDF Zero Day Warnings : Experts agree

Author: AuthorPaul Sylvester | Date: DateWednesday, April 29, 2009 at 6:44AM |
All the Security experts online are talking about The 2 Zero Day Adobe Vulnerabilities:

[ad#cricket-right-ez]As you can see this seems to be one of those Adobe problems we had in the past with [intlink id="2963" type="post"]Javascript[/intlink].   They seem to be having a major problem with Javascript vulnerability and the old saying is to just to disable Javascript in PDF'S again.   Adobe is calling this a Potential Adobe Reader issue and is suggesting that the users disable Javascript until this is fixed with a security update.

This is mostly affect the corporate world more than the private sector because of the fact corporate world will use PDF by sending them through emails.   I suggest installing another reader and these are all free.

Be advised the vulnerabilities affects Linux, Windows, and Macintosh systems.  This will most likely mean that even Macintoshes could be used to [intlink id="2173" type="post"]create even more botnets[/intlink] and will need to disable there Javascript until this issue is fixed or maybe they would like to find another reader themselves.  This also goes for Linux users but I have not heard of anything in the wild yet.

Don't forget to install some [intlink id="2205" type="page"]free Anti-virus and Free Firewalls[/intlink] to help protect your system from becoming a botnet.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , , , , ,
Wednesday
Apr152009

Mebroot becomes More Stealthier!!

Author: AuthorPaul Sylvester | Date: DateWednesday, April 15, 2009 at 4:31PM |
Well Here is something we should all be on the look out for:
[ad#cricket-right-ez]
Thousands of Web sites have been rigged to deliver a powerful piece of malicious software that many security products may be unprepared to handle.

Mebroot inserts program hooks into various functions of the kernel, or the operating system's core code. Once Mebroot has taken hold, the malware then makes it appear that the MBR hasn't been tampered with.

[Via Pcworld Magazine]

I will be updating my [intlink id="2205" type="page"]Malware Resource[/intlink] for the Prevx Software, but this looks to be a very bad root kit.  From my understanding most of the security related software.   It seems this little program will become even harder to detect and remove.   It also looks like this is ready to start infecting people with this root kit.   You should update every part of your system from [intlink id="3327" type="post"]Windows Patches[/intlink] to Browser. [intlink id="2229" type="post"] Securnia once said[/intlink] that most people are not patched fully!!  Just like the [intlink id="3301" type="post"]Conficker Worm[/intlink], if your not fully patched and keeping anti-virus and Firewalls on your system then you might as well be walking on nails.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , , , ,
Wednesday
Apr152009

Dear Friend Spam Emails from Yahoo

Author: AuthorPaul Sylvester | Date: DateWednesday, April 15, 2009 at 12:36PM |
The email from our[intlink id="3233" type="post"] old friend has come back[/intlink] into now compromising Yahoo accounts by sending out this email:
Dear friend:
What are u doing these days?I am going to recommend a Eshop to you.Yesterday I found a web of a large trading company from China,which is an agent of all the well-known digital product factories,and facing to both wholesalers, retailsalers,and personal customer all over the world. They export all kinds of digital products and offer really competitive and reasonable price and high quality goods for their clients,so i think you will make a big profit if you did business with them.And they promise they will provide the best after-sales-service.If you are interested to do business with them,in my opinion, you can make a trial order to test that.
Their Web address: www.nekcn.com

In what seems to be the way of this advertisment company, it seems they have been doing what they did with Hotmail.  Deleting your contact list and emailing your friends with this message.  Now I am thinking it is being done by them [intlink id="2660" type="post"]Phishing for the password and Account name[/intlink], they probably set up an web page to look like Hotmail or Yahoo.  One thing to remember to do is check to see that you address bar looks like this:

yahoomailloginYou should make sure you see the "https", meaning that is a encrypted login and also make sure you see either Mail.yahoo.com or Login.yahoo.com.  If you see anything else included in your the screen like maybe a .ru or .pl then you aren't logining into the true yahoo account.  Obviously the website shouldn't be trusted until they advertise the right way, and find ways to advertise online other than spam.  If you get an email saying you need to do something with your Hotmail account or yahoo mail account you should not click any links and go to the site manually to investigate the problem.  You should never click links in email that you don't know where they are going.  Thanks to Jazzcorner for Alerting me that they have started to do this with yahoo.  I am betting the next one will be for Google Mail, or Gmail as some will call it. It wouldn't hurt to have a [intlink id="2205" type="page"]firewall and Anti-virus[/intlink] and also check your system out just to be sure.
VPN4ALL best privacy&encryption
Comment4 Comments | in , , , , , , , , , , ,
Monday
Apr132009

Mikeyy Worms stills going around Twitter

Author: AuthorPaul Sylvester | Date: DateMonday, April 13, 2009 at 7:56AM |
It seems Mikeyy has spawned a new and improved little advertisement:
Twitter, hire Mikeyy! (718) 312-8131 :)

As you can see from tweets:
mikey12

It seems this is the new campaign started earlier this morning around 1am or so for Mikeyy and people have found this rather annoying but it is teaching Twitter a lesson, this would be good PR if they hired Mikeyy. Obviously he has a lot to offer but I guess who ever wrote this variant for the Mikeyy Worm went and found his number on a stickcam website:

mickstickcam

Anyone who just Google the number right now could find out the stickcam profile, so I won't direct you to it. I just hope this doesn't keep up to much longer. If you've been infected with this worm I would refer to my other [intlink id="3308" type="post"]post about removing the worm[/intlink]. I do know if you aren't logged into twitter through your browser you will not get the worm. This is a simple exploit where they use your browser cookies to infect your Twitter account. So if you view any twitter accounts just keep logged out of Twitter in your browser and you should help prevent this from happening until Twitter gets this under control.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , ,
Saturday
Apr112009

Stalkdaily worm strikes Twitter -- Brings down the House!!

Author: AuthorPaul Sylvester | Date: DateSaturday, April 11, 2009 at 7:10PM |
twitter-stalkdaily

According to Techcrunch, this seems to of happened today where this worm has brought down twitter. I have been using the Twitter Client Tweetdeck and have not had any problems like they have had with this site. I wouldn't visit the site in question because you would most likely get the worm. It seems to be a very good hack it sends out spam on your twitter account like this:

stalkdaily1

[ad#cricket-right-ez]If you have been infected twitter is suggesting you password reset and requesting a new password. Some other removal information can be found here. I will update as necessary when I find out more.

*Update a Few hours*
It looks like Twitter had a Cross Site Scripting going on, and it wasn't really Stalkdaily who did it rather someone injected code into twitter to grab peoples browser Cache. See this post for more information.

According to watch I am seeing Stalkdaily is now safe to surf to as long as you don't click on links on twitter just yet. I have found that if you make sure you aren't logged into twitter in your browser you are much better at preventing this type of attacks. You can see the screenshot of stalkdaily website and it looks like they are an innocent party.




stalkdaily2

VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , ,
Saturday
Apr112009

Online Episodes helps Adware Installer Zango

Author: AuthorPaul Sylvester | Date: DateSaturday, April 11, 2009 at 6:51PM |
I was surfing the web hoping that Mythbusters would start putting there episodes online and I the first link that I get a website that looks like this:

mythbusterzangosite


This site even has the Theme music playing as if it was affiliated with Discovery Channel's Mythbusters show.   If you look at the screen shot above you will see who someone has been keeping this site updated with the most current episodes of Mythbusters.   So I check out The Season 7 Episode 1 - Demolition Derby Special and I was curious as to what would happened if I clicked that link, and this screen pops up:


mythzango1



So I have to install this Zango Software to view this show?  So I find out go doing my research about Zango and Wikipedia says:
Zango, formerly ePIPO, 180solutions and Hotbar, produces software that provides access to partners' games and DRM-restricted videos and software. Zango software is listed as adware by Symantec.[1] McAfee states, "this program may have legitimate uses", but describes it as a "potentially unwanted program", and an "adware downloader"

[Via Wikipedia]

I didn't like the sound of this but I wanted to see what my AVG would say when I downloaded this software, and it pops up with:

zangowindowsdef

[ad#cricket-right-ez]Windows Defender comes back with Win32/Zangosearchassistant warning,  and thus I go around checking out this adware out around Google and I am seeing reports after reports on asking how to get rid of this Adware.  Some of the ones that I think would help people get rid of this program is:

If you haven't installed [intlink id="2205" type="page"]anti-virus or Firewalls[/intlink] this would be the first thing to do.   I've also read some reports about Zango that are quite disturbing like these:

Although these are just a few examples of what I found out just Googling Zango, I thought I would share these with you.  There are more examples like Zango's Facebook Widget that I will say acts like adware and encourages you to send to 5 different users.  Although Facebook as Stopped this widget, we all know that Spyware and Malware is being used on social networks and will be undoubtedly be more and more in the future.   Remember you're the only one to prevent having a virus.

A side not, if you did  try to install this software you would need to be and Administrator and that also concerns me because the type of stuff they are claiming in the EULA is Browsers stuff which shouldn't need Administrator rights or at least I am not going to give Adware that right.   Zango is being Classified as Adware and I am only reporting that the software is being clasfied as Adware, but Zango claims it not.   This is where the End Users decide if it is or not, I however think it is!! I am also sure there are other sites like this that are trying to get you to install this software to view movies, and shows. Your best bet is to not install the software and go to Hulu or Fancast to find safe movies and shows.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , ,
Wednesday
Mar252009

The Seriousness of the Twitter Vulnerability?

Author: AuthorPaul Sylvester | Date: DateWednesday, March 25, 2009 at 4:16AM |
twitter_110 The main question is how much do you want to know about this?  Yes I am talking about a Vulnerability that could risk your twitter account or even yet inject malious software into the computer.

[ad#cricket-right-ez]We've seen that there have been [intlink id="2650" type="post"]twitter phishing[/intlink] in the past, and [intlink id="3008" type="post"]Facebook phishing[/intlink] have made people wonder out much do we depend on Twitter.

Lance James and Eric Wastl have provide Proof of Concept for this vulnerability, according to Information Weekly:
James cautions that XSS vulnerabilities should be taken seriously because they can reach beyond Web pages. "A lot of people think XSS is limited to the Web," he said. If there's another vulnerability in the victim's browser, the Twitter flaw could be used to launch additional malicious code, he explained.

As you can see there is more to this problem then meets the eye.  For one using the [intlink id="2980" type="post"]URL redirects[/intlink] could be one way this could be used.  No telling what other vulnerabilities lay for the client side twitter programs.   Twitter has a long way to go to be security minded, and yet Twitter hasn't said what they will do to fix this problem.

I for one would like to see this problem fixed just as quickly as possible due to the security risk involved to me, the consumer.  Twitter needs to jump on this and fix it to prevent any more attacks against there twitter audience. Although it doesn't hurt to have [intlink id="2205" type="page"]Anti-virus And a good firewall[/intlink], it all depends on End user to prevent this for the time being.

Come on Twitter, Fix this problem.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , ,
Sunday
Mar222009

Are You and Your Friends Fine -- Virus Spam

Author: AuthorPaul Sylvester | Date: DateSunday, March 22, 2009 at 5:52PM |

Logged into my Google Email and was checking my spam to see what I see and this one draws my attention:

virusspam

I think I know where this is leading me but I click the link and this website with the Reuters logo pops up:

fakesvideo

Now as you can tell this looks authentic but when I did go to this site, AVG detected some trojan.  It blocked it, but  the file that it is downloaded called "save.exe" and I have talked about [intlink id="2991" type="post" target="_blank"]flash player fake updates[/intlink].  I have seen other blogs talking about dirty bomb news report leads to malware.  I don't know about you but if I wanted to update my flash player, I go to the source and not use any links.  It is wise not to download any programs or files and run them without properly checking them out for viruses and Trojans.  You should have a fiewall and anti-virus running at all times and that will help but it is your actions that help your prevent from getting viruses or Trojans.
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , , , , ,
Wednesday
Mar182009

Free Syncronization and Backup programs

Author: AuthorPaul Sylvester | Date: DateWednesday, March 18, 2009 at 2:26PM |
So I talked about finding some free backup utilities on the Mike Tech Show Listener Roundtable Show # 234.

I said I would publish some good free ones programs to backup your system files and I think I have done it.  Here's are some great ones that I recommend for anyone who doesn't want to pay for a backup program:

Allway Sync --  Works with Windows Vista/XP.  It supports : Hard Drives, Removable Hard Drives, Network Drives, Amazon S3, FTP Server, Offsitebox.com, and WEBDAV Folder.  This program is also quite portable and can be used on more than one computer with the portable version.[ad#text-broadband2]

ViceVersa -- Windows 98, Me, 2000, XP, Vista. Vice Verse FREE will compare files in two folders (source and target) and synchronize file differences.  There isn't much else you can do with this but It does look to be good for small backups and older system.

Acebackups -- is a powerful tool to create completely secure backups of your data. Store your data on any local storage device, on CD, DVD or on your remote FTP server!

The one I have been using that is the most useful for me is Allway Sync.  I have it set up to use my [intlink id="3059" type="post"]A600 Cricket Modem w/the 4 Gig Mini SD card[/intlink] to back up my [intlink id="2646" type="post"]Roboform[/intlink] Passwords.  I could buy the Roboform portable version and use this to keep backup's on my hard drive.  Allway Sync also has a portable version for multiple computers.   I think this is the most versatile, for the needs of backup.  Something that I have done is backing up my important data to a portable Harddrive, Flash drive and backing up to a ftp server to make sure I don't loose any data.  I have it set up to have redundancy.  You should always have more than one backup.

In the coming Miketechshow Listener Round Table Discussion, we will be talking about backing up and the need to back.  I encourage everyone to join on that discussion.  I would like to know what you do with how you back up and if you back up.  I'll post the time and Date when I find out!!
VPN4ALL best privacy&encryption
CommentPost a Comment | in , , , , , , , , , , , , , , , , ,
Page 1 2 3 4 ... 4 Next 20 Entries »