Monday, December 22, 2008

TeMerc Joins Malwarebytes Anti-Malware Team!!!

Read all about my exciting new position with one of the premier anti-malware tools available today.

TeMerc Now Employed By Malwarebytes

Tuesday, December 16, 2008

Vista Install Update

Ok, so far so good. Vista is running fine and I'm working on personalizations and tweaks.

If there's one thing that bugs me is that I cannot seem to figure out how to keep the cool Vista start button\black menu and change the Windows color. The oh-so-pretty blue just don't cut it. If you know where I can either find that tweak or download some freebie, drop me a comment or reply in the forums.

My news reader,
Great News works great from the XP partition.

I've gotten my MailWasherPro all set up but I still need to work out what I'm doing wrong with Outlook. Steven provided me some steps to open it from the Vista drive but I can't seem to get it just right yet.

I also need to see if that can be done with Expression Blend.

I've installed
Online Armour Firewall, so we'll see how that works. For av I'll likely go with one of the freebies, not sure which one yet tho.

So today will be spent working out those things and other settings. Thanksfully Jr has a playdate with a pal after school, so I'll have a good amount of time to do all this.

Monday, December 15, 2008

Reinstalling Vista Ultimate Today

Well, after a year and a half, I've decided to re-install Visat Ultimate, this time w\SP1 and begin using it more. I've been shying away from for it for too long. And now it seems pretty much everyone has a Vista capable version of thier software.

So I'll keep everyone abreast of how things go.

Tuesday, December 09, 2008

Latest News & Info From The Forums-Dec 9 - Pt III

Latest Security & News Info

Time To Exclude The Bad ISPs

In recent months, three questionable Internet service providers — EstDomains, Atrivo, and McColo — were effectively taken offline resulting in noticeable drops of malware and spam.

It is hard to argue that such takedowns, which took the command-and-control servers for several major botnets offline, would not benefit everyone who uses the Internet. Estimates of the decrease in spam from the McColo takedown ran from 40 to 80 percent, even if it lasted only for a short time. More importantly, as bulletproof hosting providers drop bad actors from their client list, the cost of hosting the command-and-control servers go up. Increasing the transaction costs to commit cybercrime is one of the best strategies to reduce it.

Time to Exclude Bad ISPs

Latest News & Info From The Forums-Dec 9, Part II

Latest Security & News Info

Latest News & Info From The Forums-Dec 9

Latest Security & News Info

Tuesday, November 25, 2008

Latest News & Info From The Forums-Nov 25

Latest Security & News Info

New Blogspot Trickery?

This last weekend I was perusing the Blogspot domain for fake\rogue pages which re-direct users to fake scans to get malware installed. Or to try and goad users into purchasing fake security software, which in and of itself is also malware.

As I was tracking the sites, which btw is easy as pie if you know what to look for, I noticed a new trick they use. Instead of either having a pop up box which just slides down the page as you scroll or have you click a link to generate a pop up, they have the page load and if you click anywhere on the page, a new instance of IE starts up, at a fake scan page. No matter where on the page you place your mouse, if you click, that's what happens.

I'm having a look at how this is done and will provide more on that as I get the info.

I'm not coder by any strecth, so I need to talkk to someone who is.

Monday, November 24, 2008

New Template= Zero Hits...WTF??

Ever since I changed the temlate on this blog, as of Oct 21, give or take, this blogs hits have tanked literally to zero, according to Google Analytics.

Yet, my referrer logs indicate blogspot domain links as the most linked from by far, which it has always been. How is this possible?

Maybe something I need to change in settings for analytics? Somethings out of friggin wahack here for sure.

Latest News & Info From The Forums-Nov 24

Latest Security & News Info

Wednesday, November 19, 2008

Forums Back Up...

Forums are now back up.....did anyone notice they were off? LOL

Forums Down-Unknown Reason

Not sure what I did, but something has taken the forum offline.

Awaiting support, hope to be up soon.

Monday, October 27, 2008

Some Minor Additions To Malware Advisor

Hi folks, today I've added some things to my blog which were options of Blogger.

You can now see all my labels or tags as listed below in order of total posts per that particular label\tag.

I also now display people who are following me. Over at Feedburner this number was supposedly 51. Not sure how the Blogspot one will work and if it will get to that number.

I've also enabled the gadget so you can see some of the blogs I'm currently following. Mind you there are only a small amount there as I'm currently following close to 150 in my reader, but I don't want to add all those here.

Hope these lil additions will make following me easier or just improve the over all ease of use of the blog and perhaps searching.

Friday, October 03, 2008

Directi & HostFresh: Continued Cyber Crime Activity

Well it seems that Directi wasn't as sincere as they first indicated to rid themselves of association with cyber criminal activity.

Security researcher, developer and hpHosts owner Steven Burn has found a gang of scum as one of their customers.

As usual, he's gotten quite a bit of detail to support his findings.

Read all about it here
.

Tuesday, September 23, 2008

ISP Upgrades For Me....

Seems my ISP has decided to perform some sort of upgrade in my area so my access is liited until 5PM MST, or so they say. Thus, not much fresh news will get posted until later in the day.

Same goes with forum access as well. I'm at mom n dads now but will need to go run some errands and get Jr at school. If, after that, I still don't have access at home I'll come back here to mom n dads.

Sorry if you're not getting your news fixes today. I'll get thiings updated ASAP once I'm home and on my machine.

Wednesday, September 17, 2008

WinPatrol New Version Release-v15.9.2008

BillP has released the latest version of trustful WinPatrol, a must have on any system and something I've recommended for years. Everyone needs to have Scotty asking for approval and to contrl, things that start up with Windows.

Details in the forum link below
New Version Release: WinPatrol 15.9.2008

Saturday, September 13, 2008

Busy Rogue Week

This last week has been one of the busiest for new rogues and new variants of existing rogues.

The IEDefender, Files Secure, Malware Bell, IE Antivirus, Total Secure 2000 family has been updated 5 times!

New rogues or just clones of another:
  • XP Protector 2009-Antivirus XP 2008 clone
  • Antispyware PRO XP
  • MS Antivirus-new variant
  • XP Antivirus transofrms to MS Antivirus then to Micro Antivirus
  • Advanced Antivirus-related to Vista Antivirus 2008, Antispyware 2008 XP, System Antivirus 2008, Internet Antivirus, Smart Antivirus 2009
  • Power Antivirus-family from Vista Antivirus 2008, Antispyware 2008 XP, System Antivirus 2008, Internet Antivirus, Smart Antivirus 2009, MS Antivirus, Advanced Antivirus
And of course we've had a bunch of new Zlob spewing sites as well.

It's good to see the bad guys are quickly making new variants as this indicates that the good guys are tracking them just as quickly. Bit of cat and mouse I suppose but with the recent fall out from the Brian Krebs Security Fix write ups, the cat seems to have sharpened it's claws a bit.

Zlob\Rogues [IEDefender-File Secure-Total Secure 09\Sept 13]

Tuesday, September 09, 2008

Malwarebytes Anti-Malware: Rogue Slayer

As most of you already know, Malwarebytes Anti-Malware is developed by a group of our own. By that, I mean a dedicated group of malware fighters who have been active in malware research on all levels for many years. From source to delivery and everything in between.

They follow any and all leads to what ever end they find and report and then include their findings into MBAM's database to better hone the killer instincts that MBAM now has.

Over the last 48 hours I've installed:

  • Internet Antivirus
  • Antivirus XP 2008
  • Total Secure 2009
  • Antivirus Pro 2008

Without exception MBAM eradicated each and every file which was installed with ease.

Only requiring a reboot to delete a couple of stubborn ones.

And this has been my experience in several other threads with victims over at cexx as well.

Relentless pursuit has to be a mainstay of any anti-spyware product and this team of researchers demonstrate that each and every day with multiple definition updates and program upgrades regularly. Without keeping on top of the latest threats, an anti-spyware app can quickly become obsolete.

I don't see that happening anytime soon with the Malwarebytes Anti-Malware group.

I recommend you
try them out. You won't be disappointed.

SpySweeper Update Breaks Profiles, Trojans Dominate Threats

Latest Security & News Info

Thursday, September 04, 2008

Scammers Find Way Around Detection, More PCs Infected w\Fake Apss

Latest Security & News Info

TeMerc Guide To Malware Forensics

I've written up a fairly small guide to malware forensics, be it pretty basic tho.
Didn't get into any sort of file analysis or code dissection.

It's just something for those looking to get into playing with malware to better understand it. How it spreads, infects a machine, how it displays symptoms and makes changes to the system.

Be sure you've got a machine to sacrifice as things can get pretty ugly and I've crushed my test machine a couple of times and had to reformat to get things back up and running.

Hope you enjoy it and please feel free to comment good, bad or whatever.

TeMerc Malware Forensics Instructional Guide



State Of Malware, Net Growth Slowing

Latest Security & News Info

Tuesday, August 19, 2008

WOT The F........

So there you are, a security vendor who uses some third party sources to supply security advice\ratings to be included in your product. Now, one would think that you would want said third party vendors to have something to offer which would aid in your product to be the best it can be.

Cost effectiveness can be one item, tho this is not always the case nor need it be.
Dependability comes to mind. What good is something if you can't rely on it? Not much.

Then there is always a matter of reliability, which when it comes right down to it, trumps the other two. If you can't trust them or the service\product they offer to be reliable, what's the point? In the end the one that suffers most is the end user.

Imagine now if you read the following, about a third party vendor, or rather all third party vendors who supply services to another product:
We don't consider our automated sources equally reliable

WOT Forums

If you don't trust them, why the hell are you using them? What sort of business uses resources\products\services it does not trust?Can you imagine if McAfee, Symantec or any other security vendor said that about someone who provided them such service?

Symantec just bought PCTools, do you think they trust them enough to improve the reliability of their product line? Ya, you betcha.

Did AVG trust Exploit Labs when they bought them out, with their LinkScanner tech? I'm sure they did.

Oh sure, maybe in this case there is no money exchanging hands, but to me at least, trust has a price on it that can't be calculated.

So, someone tell me how any security minded person can recommend a security tool from a company who gets something that is aided by third party vendors, when said security vendor does not trust the service it is geting from that third party?

Full thread:
Web Of Trust: How Trustful Is It?