Ok – about 22 or 23 critical updates for Windows ME. I’m suspecting it’s never visited the Windows update site. While it’s going I make sure that the adware scanners and antivirus scanner get to pull updates from the web as well. It’s also time to scan for running network services that shouldn’t be running. It may be a dialup machine, but we don’t want UPNP listening over the connection.
Tag: antivirus
-
Antivirus update response times
We know that for Windows systems especially antivirus is a must. Up to date antivirus is the MOST important though. So how do the different vendors do in responsiveness and quick antivirus definition updates…? The SecurityFix has an article on just that today. The comparison is courtesy of av-test.org.
-
More wolves in sheeps clothing – rogue or suspect antispyware
(or for that matter, rogue or suspect antivirus.) What’s fascinating about this category is most of these products either use security vulnerabilities to get into a system, or merely convince a person browsing the web that they’re the right tool for the job. Kind of like virtual con-men in a sense…. Anyway… Spyware Confidential has a listing of the top 10 rogue/suspect antispyware programs. Some familiar names are mentioned…
-
Malware scanning?
The SANS institute is warning of an increase in reports of malware scanning for vulnerabilities. Currently these samples of malware are undetected by current antivirus signatures. They’re requesting samples of the malware for analysis. The last such surge in scanning was about a week ago when they noted a spike in scans to port 1026. It turned out that was advance recognition of the dasher worm trying to circulate.
-
Network Security guide for the home or small business network – Part 4 – Know your software
Ok, so you’ve got a hardware firewall and you’ve got antivirus. You’re safe right? Well, not entirely. I’ve mentioned the flaws of antivirus. It’s always a step behind. A firewall doesn’t protect against unknown viruses, so what else is there to do? I’m going to tackle this in two steps. The first is to know what software is running on your system. Isn’t there a lot of that? How can I keep up?
-
Disinfecting a PC… part 3
Picking up from last time… AVG was failing to install with a peculiar registry error. (Which I didn’t see much reference to online.) OK, so here is another fruit of the online search (so many bugs to identify…)
jawa32.exe is listed as spyware.seekseek in sarc’s database.
OK – let’s see if we can kill of some of these suspects… it’s time for a couple cycles of ctrl-alt-del to remove running processes that look suspect, followed by msconfig – disabling of processes running at boot, reboot, repeat.
-
How festive – the dasher worm…
The securityfix is reporting on a new worm that exploits an older Windows vulnerability. The worm is called dasher and is in at least it’s second iteration. Sans noticed an odd increase in port 1025 scans on the tenth of the month which was early activity of this worm. It looks like the first version of the worm didn’t work fully, but this second one does. It installs a keylogger.
-
Network Security guide for the home or small business network – Part 3 – Antivirus
Ok, the first two entries thus far, hardware firewalls and software firewalls have been fairly operating system independant. A hardware firewall is best, but if that’s not possible a software firewall will do until you get a hardware firewall setup. This next item is (currently) a must have for Windows users. However, Mac and Linux users may see the day soon when it is an essential part of security for those systems as well. These days I am stunned to see PC’s that don’t have an antivirus program installed.
-
Clamantivirus may get support from eEye?
This would be a good thing for clamantivirus. eEye is considering “adopting” clamav for inclusion in their Blink product. The idea is that they would improve clamantivirus and then start integrating it as antivirus scanning functionality in their product. This would be really promising for the prospects of having clamav (clamwin) do real-time, on-access scanning on the windows platform.
-
Network Security guide for the home or small business network – preface
OK, this is an ambitious idea, but the two articles on Titan Rain and the lack of IT security training has planted a bug under the saddle so to speak…. I don’t know how many parts will be in this series. In fact, I may add to it from time to time even after an initial series. This is intended as a “crash course” in the essentials of network security. It’s aimed at the home users and managers of small networks (small business owners?) that haven’t thought about network security before and maybe will be a reference of some value even to those that are more intermediate. The essentials of network security will be covered in the first few posts.