antiviruslist.net

Christmas Day and New Year’s in front of the eyes, and even Koobface viruses gang have already busy just like to come to celebrate. It’s just that their celebrations do a little different, namely the attack poured into Internet users.

Based on observations of Symantec Security Response, the latest action Koobface – which is a play on the Facebook – involve posting messages through Facebook profiles with a direct link to a fake Facebook page or a page a fake video.

“Users will be offered a file called setup.exe and upgrade of Flash Player or the free antivirus that is said to protect users from Koobface,” Symantec wrote in their statement.

Fake Facebook posting approximately the same as below:

I caan’t ffall asleepp affter viewwing thiss videeo. I haven’tt seenn aanything liike this
I can”t falll aslleep aftter viiewing thhis vvideo. I havven’t seeen aanything likee thhis
I caan’t ffall aslleep aftter vieewing thiss videoo. I haveen’t seeen annything llike thiis

Each message contains a link that if clicked will take the user to a Facebook page or open a page containing a video of Christmas-themed video.

Here are some simple tips to stay safe when accessing the internet:

• Be careful what you click: Do not easily click on a link from an unknown sender. Remain cautious of the message in a website or a message that seemed to come from a website, check the URL message.
• Apply protection. Make sure you use a security solution up-to-date to protect from spam and viruses.
• Each click has consequences: When asked to allow (allow) or ignore (deny) an application to access the internet, always select ignore (deny) if you are not absolutely sure that the sites that are accessible and secure the original site.

Facebook security hole has been exploited to spread the dirty woman picture link. According to AVG anti-virus vendor, the picture was obscene worm CSRF (Cross-Site Request forgery), which spreads through the wall of the Facebook users.

This worm just like an ad with a picture of bikini-clad woman. ‘Want something hot? Click this button, Baby, “the article stated teasing tone in the ad.

However, if tempted to click it, the picture concerned would participate on the wall of Facebook users. To stop this problem, the AVG claimed only Facebook can do.

Fortunately, in a short time, the Facebook managed to stop the circulation of the offending images. So far, no other adverse effects were reported except the sight of bikini woman on Facebook user’s wall.

Responding to this problem, Facebook denies that this picture is a worm, but it is a form of clickjacking. According to Facebook spokesperson, Simon Axten, not many Facebook users are affected by this problem.

Threats to computer security and data can come from many things, such as viruses, trojans, and others. One security vendor, Sophos make a guide (ebook pdf) so that we better know and be alert to the security of data and computers. Threatsaurus, a guide from a to z for data security and computer.

This free PDF ebook Threatsaurus, the az of computer and data security threat, containing starting from A – Z matters related to computer security (a to z of threats), such as Adware, Autorun worms, Trojan Backdoor, until the term Botnet Zombies. Each term is described with clear and sometimes given concrete examples of previous events.

This ebook is comprised of 120 pages also contain an explanation of the security software (security software) such as Anti-spam, Antivirus, Firewall and others. Then the next chapter discusses tips for maintaining computer security / data (safety tips), such as how to:

* Avoid viruses, trojans, worms and spyware
* Avoiding Hoax
* Securing Data
* Avoiding the spam
* To be safe on the internet
* Choosing a safe password
* Safe to buy online
* And others

Finally, this ebook explains a brief history of the development of virus (Virus Timeline), starting from 1949 until 2009 this year.
You can download this ebook directly through this link below.

After the initial release of paid version of AVG 9 in last october, they finally release the free version of this antivirus. Which means, we can download and use it as free, off course for personal use only.
Speed improvement is the main issue of this antivirus. AVG claims that this new version is faster 50% compare to the old version.

Compared with the previous version, AVG Free 9 has larger file installation, around 71-72 Mb.
The minimum operating system requirement are as follows:
- Windows 2000 Professional SP4 + Update Rollup 1
- Windows XP Home Edition SP2
- Windows XP Professional SP2
- Windows XP Professional x64 Edition SP1
- Windows Vista (x86 and x64, all editions)
- Windows 7 (x86 and x64, all editions)

And the minimum hardware requirements are as follows:
- Intel Pentium 1.5 GHz CPU (1.8 GHz recommended)
- RAM (Memory) 512 MB
- 450 MBspace hard drive for installation (550 MB recommended)

Download AVG 9 Free Edition (71.2 MB)

Some time ago Av-comparatives issued the third phase in 2009 an antivirus test, which focuses on the ability of direct virus scan (On-demmand comparative) with sample virus/malware around 1.6 million.

Sample malware about 1.6 million include: windows viruses, trojans, worms, backdoors and others.

This third test stage has begun about the middle of August in 2009 and then, and the final results in the update (updated) around mid-September. However, this test is the latest test because some versions include a new anti-virus, compared to the previous test. Among Kaspersky 2010, Avira 9 and Norton Antivirus 2010.

Each antivirus updated on August 10, 2009, and during the testing performed, the settings made at the highest settings, except for Sophos and F-Secure.

Av-comparatives, independent agency to test a variety of antivirus, anti-virus test re-issued a third stage. Compared to the previous test in May 2009 last month, this test includes new versions of many antivirus like Avira 9, Kaspersky 2010, BitDefender 2010, ESET NOD32, Norton Antivirus and more.

The number of malware samples that are used around 1.6 million, including windows viruses, trojans, worms, backdoor/bot, macro viruses and others (in this article the term “virus” that covers all). This amount was taken between January 2009 to August 2009.

On-demand test is a test by giving a sample virus, antivirus directly scan for these files. The results seen how the virus is not detected, scan time and also to detect errors other clean files.

Antivirus products that are included in this test are as follows:

• Avast! Professional Edition 4.8.1384
• AVG Anti-Virus 8.5.406
• Avira Antivir Premium 9.0.0.446
• BitDefender Anti-Virus 13.0.13.254
• eScan Anti-Virus 10.0.997.491
• ESET NOD32 Antivirus 4.0.437.0
• F-Secure Anti-Virus 10.00.246
• G DATA Antivirus 20.0.4.9
• Kaspersky Anti-Virus 9.0.0.463
• Kingsoft Antivirus 2009.08.05.06
• McAfee VirusScan Plus 13.11.02
• Microsoft Live OneCare 2.5.2900.28
• Norman Antivirus & Anti-Spyware 7.10.02
• Sophos Anti-Virus 7.6.10
• Symantec Norton Anti-Virus 17.0.0.136
• Trustport Antivirus 2.8.0.3017

TEST RESULTS
Av-comparative in the third stage of this test using test results in a 2 rank/antivirus ranking, the best ability to detect the virus and the number of errors that are not detect the virus files. In addition, we will also see the comparison results of various antivirus scan speed is.

The results of virus detection capability (1.6 million malware samples)

Number of Error Detection

Antivirus Scan speed

Rates from av-comparatives
As mentioned earlier, av-comparatives rank by looking at two things: The ability to detect the 1.6 million samples of the virus and the number of errors that are not detect the virus files. The result is as follows:

Seeing the results of the above, actually not much different from the results of on-demand test before (Test antivirus May 2009). detection ability of virus in big 5 above is still held by the same anti-virus.

Scan speed of some products has increased, especially the Avast Antivirus. Including Avira, Norton Antivirus, BitDefender, F-secure and Kaspersky. While some decline, especially the KingSoft, including McAfee, ESET NOD32 and Norman (though relatively small). While AVG did not have increased the speed on this 8.5 version (AVG version 9 has not participated in this test).

About 2 days, a lot of news circulating about the attacks on the blog / site by the worm which is still using the old version of WordPress (version 2.8.2 or under). Since then, the importance of this security problem, it is advisable to immediately upgdare before reading this article.

This is also mentioned by one of the developers own wordpress (matt) to immediately upgrade to the latest version (2.8.4 at present)

One of the blogs that mention this security issue is the article Old Lorelle on WordPress Versions Under Attack, and recommend immediate upgrade to version 2.8.4 before reading the article because it was so dangerous this security hole.

There are two indications that the site / blog which uses wordpress attacked (hacked) this, which are:

• There is a strange addition to the permalink settings, such as example.com / category / post-title /%&(% 7B $% 7Beval (base64_decode ($ _SERVER% 5BHTTP_REFERER% 5D))% 7D% 7D |.+)&%/ Search the key is “eval” and “base64_decode”
• The second indication is the existence of hidden Administrator. Need to check a user with a suspicious name, such as “Administrator (2)”, and we can not access this user account or delete it ..

Before the upgrade, be sure to read or at least know how to upgrade the database such as backups. If there is a new version, then the admin will have to upgrade the information (applies to the 2.7 version)

Upgrade process is actually very easy, just click the Upgrade Now on wordpress admin menu, and the upgrade will usually run less than 1 minute. If this is not possible, this feature may be shutdown by your hosting provider. Try asked your hosting supports.

This attack is only vulnerable to the site / blog which uses wordpress installation itself, does not apply in wordpress.com blogs.

Few days ago, i couldn’t access this website. Little bit confuse what the h*** is going on. I doubled check the DNS server, fine. Checked network status, running well. Contacting lunarpages support, there was nothing error.
The funny thing is, i still can access my other websites, even though they have the same network hosting. I’ve tried to check the event viewer of my laptop. It said:

Dhcp error
The IP address lease 114.59.251.217 for the Network Card with network address 00A0D5FFFF85 has been denied by the DHCP server 114.59.228.253 (The DHCP Server sent a DHCPNACK message).
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Everytime i’ve tried to access this site, that error messages appears. So, it must be anything about network connection of my computer. I’ve tried to fix it with following instuctions of microsoft windows support (I’ve used Windows XP PRO). But still there is nothing positive results. Until i suspect that my computer infected by some virus. After running scanning, i’ve found W32/Downadup.gen which block all connection regarding all antivirus texts.

Based on estimates of F-Secure, one of the new variant of this worm was infecting almost 9 million computers in just 4 days. Amount not less for the recent worm appeared.

Original name of this worm is Worm: W32/Downadup.gen and has various aliases such as: W32/Conficker.worm.gen (Symantec), Mal / Conficker (Sophos), Worm: Win32/Conficker (Microsoft). It is also known by the name Conflicker and Kido (example name: Worm: W32/Downadup.gen! A, Net-Worm.Win32.Kido.ih). This worm categories includes malware that run on windows 32-bit, so called W32.

Sites which have been blocked quite a lot, including the web using the following text (or block can always bring a Time Out message when opening the site):

• Virus
• Spyware
• Malware
• Rootkits
• Defender
• Microsoft
• Symantec
• Norton
• McAfee
• TrendMicro
• Sophos
• Panda
• ETrust
• F-secure
• Kaspersky
• F-prot
• NOD32
• ESET
• Grisoft
• Avast
• Avira
• Comodo
• Clamav
• Norman
• PCTools
• Rising
• Sunbelt
• Threatexpert
• Wilderssecurity
• Windowsupdate
• Avp
• Avg

For those not yet affected, to avoid this worm, you can download updates for Windows XP Microsoft Security Update MS08-067 (Patch for fixing the security holes). Whereas if the computer is infected, it can download remover tool from windows itself. Here’s the link: