Had some people infected with Conficker, so I put the Microsoft patch for MS08-067 and the NOD32 removal tool out at http://www.leinss.com/files/vanity/conflicker/ You might need to rename the removal program to get it to run. -Soli Deo Gloria
Archives for Spyware
More Tools to Fight Malware and Viruses
As time passes, viruses and malware are getting very hard to clean up when Windows is running. Therefore, we need some tools that do offline virus scanning. Correction: FREE tools. After doing some reason, I have found some very decent products for doing this. One is the F-secure Rescue CD version 3.01. This is a [...]
Columbo Files: Limited or No Connectivity
I had an interesting problem recently. A user called and was not able to get on the network. After arriving at the user’s desktop, I noted the PC had an APIPA address and the NIC noted that it had “Limited or No Connectivity”. After disabling/re-enabling the NIC, removing/readding it and rebooting the PC, I ended [...]
Rootkits: A New Form of Malware
Recently, two of my “high risk” Internet users caught a nasty spell of malware. How nasty? Try rootkit nasty! Rootkits go above and beyond spyware by replacing system files and concealing themselves from system utilities. The first PC had a combination of spyware named TSPY_QQPASS.BUY and a rootkit named Greypigeon. Both PCs had the latest [...]
Spyware: The Never Ending Story
Those spyware boys are getting smarter! Recently had a remote laptop user that kept having his home page hijacked by www.securitynetpage.net even though the home page in Internet Explorer was set to our company web site. Autoruns showed no suspicious BHOs. After poking around in the registry and finding nothing, I took a look at [...]
More Spyware Fun
Countless articles could be written on spyware. Recently, I ran into Troj/LdPinc-LZ on a PC. The really bad part is that Spysweeper didn’t detect this piece of malware even with the latest definitions! I am therefore recommending that you use Ewido as the software can be used passed 30 days (the real-time protection will get [...]
The Master of Spyware
Ben Edelman has a PhD in Economics from Harvard. Yet, he likes writing on spyware and how it infects systems. His reports are very detailed and interesting. He even has full videos of how spyware infects a system. Check him out at www.benedelman.org. – Soli Deo Gloria
A Look at Look2Me Malware
We looked at killing off spyware before. That spyware was pretty mild. Let’s look at some really nasty stuff! Here is an installer for Look2Me. Note: DO NOT INSTALL THIS ON A PRODUCTION COMPUTER! Use Virtual PC or Vmware if you want to take a look at this spyware. The file is ZIPed, then RARed, [...]
WMF Exploit
There’s a nasty exploit going around involving WMF files. Windows XP SP2 is not protected by any of the updates now available. Check out this video showing the exploit in action. It infects your computer with spyware, then prompts you to buy Winhound for $39.99 to clean it off! F-secure’s blog describes this little demon. [...]
Posts