MooSoft Musings » windows

Firefox Addons Lead to Malware

moosoft — Fri, 05 Feb 2010 18:47:25 +0000

Two experimental add-ons, Version 4.0 of Sothink Web Video Downloader and all versions of Master Filer were found to contain Trojan code aimed at Windows users. Version 4.0 of Sothink Web Video Downloader contained Win32.LdPinch.gen, and Master Filer contained Win32.Bifrose.32.Bifrose Trojan. Both add-ons have been disabled on AMO.

Facebook “Unnamed App” Hoax Leads to Rogue AV

moosoft — Wed, 27 Jan 2010 17:17:29 +0000

There is a hoax going around on Facebook about a bad application called “Unnamed App.” This is leading people to Google for information on it which is turning up results for Rogue Anti-Virus. These Rogue Anti-Virus applications try to trick you into installing them by claiming your computer is infected with a variety of malware.

Credit goes to Peter Kruse for finding this issue.

Patch available for the IE exploit along with seven others

moosoft — Thu, 21 Jan 2010 23:47:02 +0000

Microsoft has released a patch for the IE exploit dubbed Aurora and seven other vulnerabilities. You can get the updates via Windows Update.

Details of the patches can be found here: http://www.microsoft.com/technet/security/Bulletin/MS10-002.mspx

Malware now exploiting the IE flaw

moosoft — Wed, 20 Jan 2010 15:56:48 +0000

There is now malware in the wild exploiting the IE flaw as reported here. If you haven’t already followed the suggestions there you should do so now.

UPDATE: Internet Explorer 0-Day Exploit Allows Remote Code Execution

moosoft — Tue, 19 Jan 2010 20:47:53 +0000

Microsoft is going to release a special patch for this exploit. I will update this post when they announce the date of the patch availability.

See http://blogs.technet.com/msrc/archive/2010/01/19/security-advisory-979352-going-out-of-band.aspx

UPDATE: The patch should be released tomorrow January 21st.

UPDATE: The patch is now available on Windows Update!

Internet Explorer 0-Day Exploit Allows Remote Code Execution

moosoft — Fri, 15 Jan 2010 09:49:17 +0000

What is is: A malicious website can be crafted that will allow IE to be compromised and allow code to be executed on your computer.

What is affected: Internet Explorer versions 6, 7 and 8.

What you can do:

Get the IE patch from WindowsUpdate.
Run Internet Explorer in protected mode on Vista and Windows7.
Use a lower access account when browsing the web. Do not log in as administrator.
Raise the security zone in Internet Explorer to high.
Use an alternate browser such as Firefox or Opera.

More technical details can be found @ http://www.microsoft.com/technet/security/advisory/979352.mspx

Latest Zbot Campaign

moosoft — Tue, 24 Nov 2009 21:59:29 +0000

The latest Zbot campaign claims to be a package of photographs that you need to download and run to see. This is the malware delivery. If you see a site like this you should close it immediately.

The Cleaner 2010 users are protected from this threat. Credit goes to “ISC SIE Security researchers” for finding this new campaign.

New program: BITS

moosoft — Fri, 20 Nov 2009 20:40:13 +0000

BITS shows you if your CPU supports 64-bits and hardware virtualization (useful for VirtualPC, VMWare and XP Mode on Windows 7). Freeware.

BITS

Windows 7?

moosoft — Mon, 26 Oct 2009 07:25:54 +0000

You may be wondering if The Cleaner 2010 works with Windows 7. It does indeed and very well! The Cleaner 2010 has been rigorously tested on Windows XP SP3, WindowsVista and Windows 7.