I am returning to a forum where I originally began my interest in helping others remove malware. They had been over run with spammers and all but abandoned. CEXX forums is now undergoing a revival. Read More Here
Friday, June 30, 2006
Thursday, June 29, 2006
Malware Posing As MS WGA File
Malware writers craft fake files imitating MS WGA to trick users and load a bundle of junk wares. MS MVPs are franticly gathering info to spread the word and submitting files to malware vendors to be added to databases. Read More Here
New Version WinPatrol v10 Free
WinPatrol keeps on improving and delivering one of the best system monitoring applications on the Net. PLUS users get even greater control over any system changes and can find out when files were created, monitor hidden files and more!! Read More Here
Tuesday, June 27, 2006
Webhelper Back With A Vengance
new Net address:
http://www.webhelper4u.net/
And he now has a page devoted to all of DollarRevenue's Net activities to expose them even more for the lowlife scumbags they are.
DollarRevenue Activity Page
Monday, June 26, 2006
New Rogue: Adwarefinder (or Adware Finder)
Latest rogue shows not much in way of creativity, just claims that it destroys spyware but with it's affiliation with known bundlers of malware, it's highly unlike to do much of anything useful.
Read More Here
Sunday, June 25, 2006
New Vundo Variant, Tool Updated
The latest variant sometimes carries a rootkit in it, but the tool seems to catch the ones that do not. This new variant also hides when using HijackThis, so users need to rename the tool to trick the malware. Read More Here
Saturday, June 24, 2006
MS, WGA & You
Lots of talk about the latest from MS, their Windows Genuine Advantage and its notification tool. Most of the talk is about how to disable the notification tool.
We have a couple of threads in the forum, one here that talks about the many ways to do just that. And another one here which has links relating to the implementation of the tool over all. Don't forget to take the poll in the second link.
Related links:
How Windows Product Activation Works
Special Fix Thread In Forum
I have a new thread in the forums dedicated to specific infections and fixes for those infections. Users should use caution when applying these fixes and take note that machines may still have other infections after the specific fix is used. Read More Here
Monday, June 19, 2006
Webhelper Under Attack
Webhelper's site has been under attack since the 16 of June by DollarRevenue. It seems that after being blogged about here and here they got a little pissed off and decided to attack him!! Read More Here
Saturday, June 17, 2006
New SmithFraud Variants Found
Three new variants of SpywareQuake were found the last 24-36 hours. And both SmithFraudFix and SmithRem have been updated and deal with all three, including BHOs and CLSIDs. Way to go guys!!
New files:
oybgrql.dll
yvvdj.dll
xuefh.dll
SmithFraud Updates in forum.
Thursday, June 15, 2006
SmithFraud Updates
Two SmithFraud variants found recently, fix tools updated and working so well that this infection has come down to running two steps to remove it.
Kudos to the experts who craft these tools to fight off the scumbags who create them. New variants have been found almost on a weekly basis and the tools are updated within 24 hours in most cases. Read more about SmithFraud Infection Family Here
Saturday, June 10, 2006
Latest Rogue: Titan Shield
A new rogue has been uncovered in the last 24 hours or so: Titan Shield. It is part of the SmithFraud rogue family and many of it's files have already been added for removal by the SmithFraudFix tool by Siri
Wednesday, June 07, 2006
New Version WinPatrolPLUS v10
New version sneak peek of WinPatrol for PLUS users only, some neat new features, a must have for all. Read More Here
Saturday, June 03, 2006
SmithFraud Removal Tool Updated
Noahadfear, noted MS MVP has returned to the malware fight and updated his SmithRem tool. Read More Here
Update To Forum Problems
Site & Forums Down
Well it seems my hosting company is having some troubles with our IP blocks 'not being announced to our upstream providers'. Read More Here
Sorry for any inconveniences, hopefully we will be back
up soon.