[MikesWhatsNews] MWN #741 HackFix
- From: "Mike" <mikebike@xxxxxxxxx>
- To: mikeswhatsnews@xxxxxxxxxxxxx, mikeswhatsnews@xxxxxxxxxxxxx
- Date: Thu, 15 Jul 2004 17:16:54 -0700
MikesWhatsNews, 16, 07, 2004
in today's issue #741
HackFix Updates
Windows Security Updates for July 2004
2 Microsoft® Picture It!® Express software free
3 JR Split File 2.1
4 StartupRun v1.21
5 MAC - Tiger Primer
6 Why does Task Manager, MSCONFIG, or REGEDIT disappear while opening?
7 CoolWWWSearch SmartKiller MiniRemoval 1.0
8 CCC Cafe Cop
9 Save Your Incoming Messages
10 ActiveX Spyware Scanning
11 Forward the Email Headers with Courier Email
12 Dig McDug game
____________________________________________________________
NOTE: Any time you see the " ++ ", it means there is more
of the article, or story, on the linked site. Mike
____________________________________________________________
There is a complete archive of past MikesWhatsNews newsletters
available to members on the Yahoo page, it is searchable by word
or issue #. Here is the address direct to the messages;
http://groups.yahoo.com/group/MikesWhatsNews/messages
and; http://www.freelists.org/archives/mikeswhatsnews/
The HTML version is availible here http://www.http://www.mwn.ca/
____________________________________________________________
Please rate this Ezine at the Cumuli Ezine Finder
http://www.cumuli.com/ezines/ra20853.rate
<a href="http://www.cumuli.com/ezines/ra20853.rate";>
AOL Users</a>
___________________________________________________________
HackFix updates, thanks to Christy;
staff@xxxxxxxxxxx
Http://www.hackfix.org
This weeks Virus Pattern Updates (07/15/2004)
All Software listed Alphabetically by Company name as some
companies manufacture more then one product.
Aladdin Knowledge Systems
Esafe Desktop/Gateway/Enterprise
Last Updated July 14/2004
To update your software
Visit: http://www.esafe.com/esafe/downloads/virusig.asp
Or
From the Esafe folder in your Start Menu select Download Updates
~~~~~
AlWil Software
Avast Antivirus
Last Updated July 12/2004
To update your software:
Visit: http://www.avast.com/eng/download/updates/index.html
Or
Right click on the AVAST icon in the system tray, Select iAVS Update,
AVAST will check for updates and download the appropriate files as needed.
~~~~~
Authentium Software Systems
Command antivirus
Last Updated July 14/2004
To update your software
Visit http://www.authentium.com/support/downloads/index.cfm
~~~~~
Center for Antivirus Technologies (CAT)
Quickheal
Last Updated July 1514004
To update your software
Visit: http://www.quickheal.com/winupg.htm
Or
Open Quickheal select Utility from the top toolbar and liveupdate. Follow
the
onscreen prompts. Alternately you can select Liveupdate directly from the
QuickHeal program menu on the startmenu.
~~~~~
Frisk Software Systems
Fprot
Last Updated July 14/2004
To update your software
Visit: http://www.f-prot.com/download/home_user/
~~~~~
Computer Associates
E-Trust
Last updated July 15/2004
To update your software
http://www3.ca.com/support/vicdownload/
Or
From the Respective folder in your Start Menu select Autodownload
For Vet Anti virus
http://www.vet.com.au/html/software/update.html
Be sure to have your Customer ID and your registered email address
handy for verification.
**Note**
We knew this time would come eventually, that Computer Associates would
not continue to support/update the older program
https://www2.my-etrust.com/services/ipe_support??
~~~~~~
GeCad Software
Rav (Reliable AntiVirus)
Last Updated: July 14/2004
To update your software:
Visit: http://www.ravantivirus.com/pages/dldupdate.php?type=Daily
Or
Open Rav and select Rav Update from the toolbar
~~~~~
Grisoft Inc.
AVG
Last updated July 14/2004
To update your software
Visit: http://www.grisoft.com/us/us_index.php
Or
Open AVG and click Virus Database to check for updates
Or
Open AVG control centre and click Update Manager/update now
**Note: To help speed up AVG updates you can set your program to use
an alternate download site.
Open AVG control centre->update manager->download from server. The
drop downbox should have listed www.grisoft.com (default) and
www.grisoft.cz. (be sure to select "apply" when done to save the changes)
The default site is most often used so can at times become temporarily
unavailable. By using the secondary site (www.grisoft.cz) helps to ease
the server and makes your update go quicker as most don't use it!
~~~~~
H+Bedv
AntiVir
Last updated July 15/2004
To update your software
Visit: http://www.free-av.com/antivirus/allinonen.html
Or
Open AntiVir, from the top toolbar select Tools->start internet update and
follow the on screen prompts.
Vexira
Last updated July 15/2004
To update your software
Visit: http://www.centralcommand.com/updates.html
Or
Open Vexira, from the top toolbar select Tools->start internet update and
follow the on screen prompts.
Vexira Antivirus is marketed by Central Command however it is the same
program as Antivir with only a different name.
~~~~~
Kaspersky
Kaspersky Anti-Virus (formerly AVP)
Last updated July 09/2004
To update your software
Visit: http://www.kasperskylabs.com/updates.asp
Or
Open AVP from the top toolbar click Tools-> Update virus definition
Or
From the Kaspersky folder in your Start Menu select AVP updater
*Note* Avp now has available a cumulative update and a
daily update with the daily being any important items they
feel shouldn't wait till the next cumulative update. Our
dates here are based on the most recent Major update.
**Note: Improved update accessiblity. To ease the update web traffic
Kaspersky labs has additional servers for autoupdating. The program
defaults to use one server but can be altered to check a variety of
servers. Select Kaspersky updater, select update via the internet to
open the drop down box(es) select "location" Check the box labeled
"Use alternate locations from the list" select next and next to update.
This option should stay selected after the first time. This helps
Kaspersky lighten the load for updates and helps you obtain updates
easier.
~~~~~
Network Associates
Mcafee
Last updated July 14/2004
To update your software
For Mcafee Visit
http://www.networkassociates.com/us/downloads/updates/superdat.asp
(for Virus and Engine updates)
Drsolomn (Product no longer available for new users however
updates still available for current users): Go to the following
Internet site: http://download.mcafee.com/updates/4x.asp
IMPORTANT: When you get to this site you may notice that it refers
to VirusScan. This update is not only for VirusScan. It also works
with Dr.Solomon's.
Or
Open your respective software virus scan scheduler, double click
Auto update, click Run Now to do a manual live update, or click
Schedule to set up a timed live update.
~~~~~
Norman Data Defence
Norman Virus Control
Last updated July 14/2004
To update your software
Visit: http://www.norman.com/downloads.shtml#definition_files_updates
Be sure to have your Valid Username and password handy for verification.
Or
From the Norman folder in your Start Menu select Internet Update
**Note Norman Virus Control web updates are only for version prior to
5.0. Norman 5.0 can only be updated via the update in the program itself.
Thunderbyte Anti Virus
Current Version: This product is no longer being supported.
http://www.norman.com/tbav.shtml
~~~~~
Softwin
BitDefender (Previously known as AVX - AntiVirus eXpert as of Nov 06/01)
Last Updated July 15/2004
To update your software
Visit:
http://www.bitdefender.com/bd/site/downloads.php?menu_id=19&s_id=3
Or
Open BitDefender select Protection Options->live upgrade
Or
From the BitDefender folder in your Start Menu select Bitdefender Live
Press Release on the software change
http://www.bitdefender.com/press/ref1.php
~~~~~
Sophos
Sophos Anti Virus
Last IDE available July 15/2004
To obtain the latest IDE files
Visit: http://www.sophos.com/downloads/ide/
**Note: Sophos does not update as other products do. They update
the Engine/software once a month (or so) to include all the previous
IDE files. New IDE files are available with new virus threats and must
be downloaded individually until the next software update is available.
Our update dates reflect the most recent available IDE file.
~~~~~
Symantec
Nortons AntiVirus
Last updated July 14/2004
To update your software
Visit: http://www.symantec.com/avcenter/defs.download.html select
your language -> product from the list
Or
Open Nortons software and click the "live update" button
Or
From the Nortons folder in your Start Menu select LiveUpdate -
Norton Antivirus
~~~~~
Trend Micro
PcCillin
Last updated July 13/2004
To update your software
Visit: http://www.antivirus.com/download/pattern.asp
Be sure to have your Registration number handy for verification
Or
Open PcCillin click Update then click Update Now (or Update later
to Schedule a timed update)
~~~~~~~~~
If there is an Anti Virus program that is Not listed here that
you would like to see added to the weekly updates list Please
feel free to let us know.
Remember Your anti virus software is only as good as the user...
If you don't keep it updated it won't provide you with maximum
protection.
This weekly Update will be sent every Thursday on or after
6pm (eastern) to keep you up to date on virus pattern updates
available. Virus patterns are checked for most recent update
date as of 6pm Thursdays.
~~~~
~ Hackfix Project Staff
staff@xxxxxxxxxxx
Http://www.hackfix.org
3017 St Clair Ave #176
Burlington, Ontario
L7R 3L7
____________________________________________________________
Windows Security Updates for July 2004
http://www.microsoft.com/security/bulletins/200407_windows.mspx
++
Security Bulletin MS04-022
Windows 2000 Service Pack 2 (SP2)
Windows 2000 SP3
Windows 2000 SP4
Windows XP
Windows XP SP1
Windows NT Workstation 4.0 SP6a with Internet Explorer 6 SP1
Windows NT Server 4.0 SP6a with Internet Explorer 6 SP1
Security Bulletin MS04-023
Internet Explorer 6 SP1
Note This issue affects Internet Explorer, a component of Windows.
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
Windows XP
Windows XP SP1
Windows Server 2003
Windows 98
Windows 98 Second Edition (SE)
Windows Millennium Edition (Windows Me)
Security Bulletin MS04-019
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
Security Bulletin MS04-020
Windows NT Workstation 4.0 SP6a
Windows NT Server 4.0 SP6a
Windows NT Server 4.0, Terminal Server Edition SP6
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
Updates are available to address these issues.
For additional information, including Technical Details,
Workarounds, answers to Frequently Asked Questions,
and Update Deployment Information please read
the Microsoft Security Bulletin Summary for this
month at: http://go.microsoft.com/fwlink/?LinkId=32567
_______________________________________
What You Should Know About Download.Ject
http://www.microsoft.com/security/incident/download_ject.mspx
Published: June 24, 2004 | Updated July 13, 2004
Get this information in additional languages
Microsoft teams have confirmed a report of a security issue known as
Download.Ject that affects customers using Microsoft Internet Explorer, a
component of Microsoft Windows.
Important Users of Windows XP Service Pack 2 Release Candidate 2 (Windows
XP SP2 RC2) are not at risk.
When a user visits a Web site hosted on a server that is infected with
Download.Ject, the Web pages download a Trojan horse to the user's computer.
This Trojan horse is named Backdoor:W32/Berbew, also known as Backdoor-AXJ,
Webber, or Padodor. When this Trojan horse runs on the user's computer, it
may perform several actions, including monitoring Internet access to capture
sensitive information such as logon names and passwords, or opening fake
dialog boxes that prompt the user to enter confidential information such as
ATM card codes, credit card numbers, or other confidential information.
Microsoft has released a tool to help you remove Backdoor:W32/Berbew Trojan
horse variants from your computer.
Actions for Home Users
1.
Download and Run the Download.Ject Payload Detection and Removal Tool
Go to the Download Center to download and run the detection and removal
tool.
Get the tool from the Download Center now
<http://www.microsoft.com/downloads/details.aspx?familyid=FC84B8B5-A64D-483
7-B65F-96925A514F71&displaylang=en>
++ There is more on the web site.
____________________________________________________________
2
Microsoft® Picture It!® Express software
http://avery.mktdb.com/digitalPP/en/register.cfm
Smile! Avery® is going to show you how easy it is to print your own
professional quality photos at home with a free sample pack!
The pack includes Microsoft® Picture It!® Express photo editing
software, samples of Avery Photo Paper and $5 off towards the purchase of
any Avery Digital Photo Paper product.
Just click the registration button to receive your FREE sample pack from
Avery!
Offer expires August 31, 2004.
____________________________________________________________
3
JR Split File 2.1 free
http://www.nonags.com/nonags/filesplit.html
Win9x/NT4/ME/Win2k Updated: Jun 11, 2004
Split a large file into smaller files so that they can be easily copied or
managed. The JR Split File allows you to split a large file into smaller
files and create a standard .bat file that can be used to reconstruct a copy
of the original file. This function is useful for breaking large text files
into more usable segments or for breaking a file into segments to fit on
multiple diskettes.
++
____________________________________________________________
4
StartupRun v1.21 free
http://nirsoft.mirrorz.com/
The StartupRun utility displays the list of all applications that are loaded
automatically when Windows boots. For each application, additional
information is displayed (Product Name, File Version, Description, and
Company Name), in order to allow you to easily identify the applications
that are loaded at Windows startup. if StartupRun identifies a spyware or
adware program that runs at startup, it automatically paints it in pink
color. In addition, you are allowed to Edit, disable, enable and delete the
selected startup entries. You can also save the list of startup items into a
text or html files, and even add a new startup entry to the Registry.
++
Thanks to; Sean
http://groups.yahoo.com/group/mycomputerheadaches/
____________________________________________________________
5
MAC Tiger Primer: Safari 2.0
http://www.macworld.com/weblogs/editors/archives/000251.php/?
The arrival of Tiger next year will also spell the arrival of Safari 2.0, a
revised version of Apple's Web browser that will feature support for the
emerging world of RSS feeds, plus several other new features.
RSS, short for Rich Site Summary or Really Simple Syndication, is a
technology that lets Web publishers generate small text files that contain
basic information about Web content. If that sounds vague, it is -- but when
paired with a program that can process RSS files, it can radically change
the way to deal with information on the Internet.
++
From; macworld.com
____________________________________________________________
6
Why does Task Manager, MSCONFIG, or REGEDIT disappear while opening?
http://www.mvps.org/sramesh2k/ToolsQuit.htm
When you open System Configuration Utility [MSCONFIG], Registry Editor or
Task Manager, they flash for a second and quit. This symptom is caused by
Viruses. These three are important system utilities which the viruses
target.
A quick workaround is to rename the files and run them.
Extracting new copies of these files with the same name will not help.
The following viruses terminate REGEDIT.EXE and TASKMGR.EXE processes:
W32.HLLW.Kefy:
http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.kefy.html
W32.HLLW.Cydog@mm:
http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.cydog@xxxxxx
l
Backdoor.IRC.Yoink.A:
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.irc.yoink.a.
html
Backdoor.Volac.dr:
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.volac.dr.htm
l
W32.Kwbot.R.Worm:
http://www.symantec.com/avcenter/venc/data/w32.kwbot.r.worm.html
W32.spybot worm disables NAV, Msconfig, Regedit and Task Manager:
http://www.bitdefender.com/bd/site/virusinfo.php?menu_id=1&v_id=114
http://securityresponse.symantec.com/avcenter/venc/data/w32.spybot.worm.html
The same symptom is caused due to Klez, Yaha Viruses.
~~~
The following viruses deletes Regedit.exe, Regedt32.exe, Msconfig.exe,
Taskmgr.exe
W32.Petch.B :
http://www.symantec.com/avcenter/venc/data/w32.petch.b.html
W32.HLLW.Maax.B@mm:
http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.maax.b@xxxxx
ml
Run a full system scan.
Be sure you update the anti-virus software definitions.
Also, see the immediate workaround:
Rename these utilities and run them or use MVP Doug Knox's
"Emergency Msconfig, Regedit, Task Manager" utility:
http://www.dougknox.com/xp/utils/xp_emerutils.htm.
This utility creates usable copies of MSCONFIG, REGEDIT AND TASK MANAGER by
creating copies of the actual files to
C:\EmergencyUtils folder.
BTW, the alternate copies will have the following file names:
MSCONFIG1.EXE, TASKMGR1.EXE and REGEDIT.COM
Online Virus Scanners and Security tests:
http://www.mvps.org/sramesh2k/Scanners.htm
++
____________________________________________________________
7
CoolWWWSearch SmartKiller MiniRemoval 1.0 free
http://www.spychecker.com/program/miniremovalcw.html
remove CoolWWWSearch Win98/ME/2000/XP
CoolWWWSearch SmartKiller MiniRemoval (v1/v2) is a small standalone tool
that checks for the CoolWWWSearch parasite and removes it if found. If you
are infected with CoolWWWSearch (1/2), it can cause anti-spyware websites to
be closed in your browser and also prevent use of some popular anti-spyware
tools (immediately closes the application window).
This small program will allow you to remove CoolWWWSearch.
____________________________________________________________
8
'Christy's Computer Corner'
thanks to Christy;
http://www.1stpick.org
Cafe Cop Freeware
http://cafecop.nliventech.com/cc_freeware.htm
Cafe Cop (Desktop Edition) is a freeware desktop utility for system
administration, internet billing, Web site blocking &
filtering. It can be used for a variety of purposes and places like internet
cafes, gaming centres, homes, offices etc. It is a
desktop (single client) prototype of Cafe Cop (shareware) which has many
more features. A brief list of Cafe Cop(DE) features is given as below:
1. Internet Timer
2. Website Blocking
3. Report Generation
4. Application Launching
5. System Utilities
6. Speeding up internet surfing
7. Internet Explorer security options
Cafe Cop (Desktop Edition) facilitates a better surfing experience, provides
control over the content that can be viewed
on any computer. It provides reports regarding internet usage and cash
generated.
~~~~~~~~
9
Save Your Incoming Messages - Quick!
There is a quick way to do your daily filing in Outlook Express.
Suppose you get a bunch of not-quite-junk mail that you eventually want to
read, but don't want it junking up your Inbox
at present. Simply right-click on the message and select "Move to Folder."
"My Local Folders" opens up.
Then, just type the first letter of the file you want and click OK (or hit
Enter) when you find it.
If you have more than one file with that first letter, just keep pressing
the letter and watch the highlight move from folder to folder.
If you have folders within folders, when you get to the folder you are
looking for, you can continue to use the
"type-first-letter" technique, or you can change to the arrow-down keys to
locate the sub-folder.
Note: You can do all of this without ever opening the message or after you
open and read a message.
When you click OK, you are immediately returned to your Inbox or where ever
you moved the message from.
Was this forwarded to you ?
Get your own subscription here:
<1stpickPCtips-request@xxxxxxxxxxxxx?Subject=subscribe>
____________________________________________________________
10
ActiveX Spyware Scanning
http://www.spywareguide.com/txt_onlinescan.html
Because the never ending war against Spyware is escalating to new heights,
SpywareInfo and XBlock have joined forces to achieve the most effective
malware detection.
How does it work?
This scanner is an ActiveX applet. After a short delay in which your browser
downloads the control file, you will receive a "Warning Dialogue" requesting
permission for the scanner to run. Click "Yes" and the applet will pop up
and scan. You will be alerted if any spyware is found. When a spyware or
malware is found, you will be alerted and asked if you want to remove it. If
no spyware is found, the scanner will disappear on its own.
++
Thanks to; Martha http://www.marthas-web.com
____________________________________________________________
11
Forward the Email Headers with Courier Email
If you are like me and use an alternate email program you may find it has
some handy features.
I frequently need to forward Spam and the email headers to report it.
Courier email makes it easy.
Hold down the Shift key and click the Forward button.
The new mail window opens with the email and the headers ready to send.
____________________________________________________________
12
Play Dig McDug from NStorm! free download
http://www.nstorm.com/games/game_detail.asp?game_id=135
Dig McDug is a superb game for all arcade lovers.
If you are a game gourmet with hunger of some old-fashioned fun, this game
has amazing strong vintage flavor to it, which instantly returns you back
into the days of retro gaming.
But since the game-realated technologies have advanced significantly since
that time, what you get is the classic,
wrapped with rich colorful game graphics, mind-boggling sounds and catchy
music! Dig McDug is packed with dozens of game levels, bonuses and tons of
gold. You are to navigate a digger machine through the level in order to
collect emeralds, gold, dollars and various bonuses.
You should be careful to avoid monsters.
____________________________________________________________
If you wish to unsubscribe from our list send an email to
mikeswhatsnews-request@xxxxxxxxxxxxx?Subject=unsubscribe
Antivirus software is a good choice to scan your system for possible viruses,
however no virus scanner is 100% effective as manufactures cannot keep up with
the rapid change of viruses that happens daily.
Be sure to update yours regularly.
http://www.hackfix.org/software/antivirus.html
______________________________________________________________________
Please feel free, to offer constructive criticism, as that will help me keep it
interesting.
I also welcome any submissions about new products, web pages, or articles of
interest.
All submissions posted in MWN will be given proper credit.
"MikesWhatsNews" believes in giving credit where credit is due but at times
deadlines and information that is very important to readers we accidentally
misspost an item.
If you believe something to be miscredited, or you know the author of one of
the articles which we have posted as 'unknown', please do let us know so we can
correct the information where applicable.
Many times in a article you may see a click here for more information, or to go
to a link, these often will not work, as the original information, was taken
from a page with HTML links. This is when you will want to go to the webpage
indicated in the article, ++ ,for 'the rest of the story'
***MfM*** indicates that I am adding my own information to a particular
article.
`~*~*~*~*~*~`
Mike ~It's a good day if I learned something new.
You can read a sample of my newsletter on my web page http://www.mwn.ca
My virus pages ~ http://virusinfo.hackfix.org
mytech@xxxxxxxxxxx
~*~*~*~*~
Was this forwarded to you? Want to subscribe? Send an email
to mikeswhatsnews-request@xxxxxxxxxxxxx?Subject=subscribe.
For a complete list of email commands for our list send an email
to ecartis@xxxxxxxxxxxxx with a subject line of "info mikeswhatsnews" without
the quotes.
If you wish to unsubscribe from our list send an email to
mikeswhatsnews-request@xxxxxxxxxxxxx?Subject=unsubscribe
To contact the list moderators send an email to
mikeswhatsnews-moderators@xxxxxxxxxxxxx
~*~*~*~*~
Other related posts:
- » [MikesWhatsNews] MWN #741 HackFix