Focus on Virus Mode:
(Page 3 of 62)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Updateg Trojan 2011-01-31
Jay Scalf (jayscalf comcast net)
StartEdLite says one of my computers has Updateg Trojan set to start at
Windows startup. Anyone know anything about this? MalwareBytes, Zone
Alarms, and Emmisoft failed to fine it. How do I locate it and get rid
of it? (The g at the end is not a typo.) StartEdLite says it messes with
the clock.

[ more ]  [ reply ]
By the way 2011-01-31
Jay Scalf (jayscalf comcast net)
Trojan Updateg is not on the "Threat Expert" list.

------------------------------------------------------------------------
---
This list is sponsored by: Black Hat

Attend Black Hat USA, July 28-August 2 in Las Vegas, the world's premier
technical event for ICT security experts. Featuring 30 hands

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Adrian J Milanoski (amilanoski gmail com)
I wasn't implying to use VirusTotal as a testing solution, but merely
suggesting it to gather information on the suspected malware.

Alternatively, the information you just provided about virustotal is
in fact interesting and I will read your blog for further information.
I looked a little further b

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Sandeep Cheema (51l3n7 live in) (1 replies)
I see what you mean. That's very interesting. So a bad guy can eventually sign up on mailing lists and get genuine email addresses for spamming. Not to mention it's a cakewalk to automate the entire process. Baah. And that's exactly what's happening. It's true that cached threads mask the email but

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Jay Scalf (jayscalf comcast net)
Re: Malware database 2011-01-17
Jay Scalf (jayscalf comcast net) (1 replies)
This is what I am getting:

Your request for support has been received. Your service request reference
number is contained in this email. Please note that email should not be
used for urgent requests. For issues requiring immediate attention, please
contact the Information Security HelpDesk at x2612

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Adrian J Milanoski (amilanoski gmail com)
virus analysis 2011-01-15
renzuwolf (renzuwolf gmail com)


2011-01-15

renzuwolf

Hello

I caught a virus named kido.ih, and i want to do some analysis ,but when i make a breakpoint in function "CreateThread's third parameter£¨00877789£© it can not stop in the thread function address,and go on in main thread, why this happend?

00877B84

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Sandeep Cheema (51l3n7 live in) (2 replies)
That's odd. Seriously. I thought all securityfocus mailing lists are manually filtered. Strange I didn't receive that.

Regards, Sandeep
Sent from BlackBerry® on Airtel

-----Original Message-----
From: Jay Scalf <jayscalf (at) comcast (dot) net [email concealed]>
Date: Mon, 17 Jan 2011 14:08:50
To: <focus-virus@securityfocus.

[ more ]  [ reply ]
RE: Malware database 2011-01-17
Graham Scrowther (g scrowther kew org)
Re: Malware database 2011-01-17
Jay Scalf (jayscalf comcast net)
RE: Malware database 2011-01-17
Anshuman Anil Deshmukh (anshuman cybage com) (1 replies)
Hi,

I am assuming here that the user using this tool will go through the help
file before he uses Combofix. It requires very basic steps like enabling the
system recovery, disabling existing antivirus, etc. If this is not done, the
tool warns you with a strict warning which I think every user shoul

[ more ]  [ reply ]
Re: Malware database 2011-01-17
David H. Lipman (DLipman verizon net) (1 replies)
RE: Malware database 2011-01-17
Anshuman Anil Deshmukh (anshuman cybage com)
RE: Malware database 2011-01-14
Anshuman Anil Deshmukh (anshuman cybage com) (1 replies)
Hi Huffen,

Following are my suggesstions-

1. Kaspersky one of the leading antivirus vendor has a removal tool which is Kaspersky Removal Tool; though size of the tool is bit bulky i.e. Around 80 MB. The good part of this tool is that it generates the report of scan in ver detailed manner and let y

[ more ]  [ reply ]
Re: Malware database 2011-01-17
Jay Scalf (jayscalf comcast net)
Malware database 2011-01-14
Huffen Doback (huffen doback gmail com) (6 replies)
I came across an error the other day that I suspected to be from some
form of malware, but I couldn't exactly pin it down.  I googled the
process in question, srvpool.exe, but couldn't really find any
definitive answers.  I ended up reimaging the computer just to play it
safe.  But this whole experi

[ more ]  [ reply ]
Re: Malware database 2011-01-14
Jay Scalf (jayscalf comcast net)
Re: Malware database 2011-01-14
Lorenzo Cavallaro (lorenzo cavallaro gmail com) (1 replies)
Re: Malware database 2011-01-14
Huffen Doback (huffen doback gmail com)
Re: Malware database 2011-01-14
Jason Iacono (jasonmiacono gmail com)
Re: Malware database 2011-01-14
Jose Nazario (jose monkey org) (1 replies)
Re: Malware database 2011-01-14
David H. Lipman (DLipman verizon net) (1 replies)
Re: Malware database 2011-01-17
Jay Scalf (jayscalf comcast net)
RE: Malware database 2011-01-14
Richard High (RichardHigh imgva com)
RE: Malware database 2011-01-14
PEREZ, ROBERT (RAPEREZ VENTURAFOODS COM)
Final Penultimate last Call for Papers for CanSecWest 2011 (deadline Jan. 17th, conf March 9-11) 2011-01-13
Dragos Ruiu (dr kyx net)
"First they ignore you, then they ridicule you,
then they fight you, then you win." -- Mahatma Ghandi.

Well if Fox's new comedy show "Breaking In" is any
indication, infosec has now entered Ghandi's second
stage. http://goo.gl/ZpLDp [youtube] (hat tip to Adam
O'Donnell for this humorous find, an

[ more ]  [ reply ]
nullcon Goa dwitiya (2.0) Call For Papers Closing on 30th November 2010-11-16
nullcon (nullcon nullcon net)
nullcon Dwitiya (2.0)
The Jugaad(hacking) Conference

nullcon is an initiative by null - The open security community.

Website:
http://nullcon.net

Calling all Jugaadus(hackers)
It's the time of the year when we welcome research done by the
community as paper submissions for nullcon.
So, sip your co

[ more ]  [ reply ]
nullcon Goa dwitiya (2.0) Call For Papers Closing on 30th November 2010-11-16
nullcon (nullcon nullcon net)
nullcon Dwitiya (2.0)
The Jugaad(hacking) Conference

nullcon is an initiative by null - The open security community.

Website:
http://nullcon.net

Calling all Jugaadus(hackers)
It's the time of the year when we welcome research done by the
community as paper submissions for nullcon.
So, sip your co

[ more ]  [ reply ]
nullcon Goa dwitiya (2.0) Call For Papers 2010-09-01
nullcon (nullcon nullcon net)
nullcon Dwitiya (2.0)
The Jugaad(hacking) Conference

nullcon is an initiative by null - The open security community.

Website:
http://nullcon.net

Calling all Jugaadus(hackers)
It's the time of the year when we welcome research done by the
community as paper submissions for nullcon.
So, sip your co

[ more ]  [ reply ]
(Page 3 of 62)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus