Beyond

Open=Source takes one in the eye as Trojan.PWS.ChromeInject.B  secretly works as a Firefox plugin and steals bank login details on any of 103 domains belonging to mainly non-US banks. BitDefender identifies ChromeInject as “…the first malware that targets Firefox.”

Fortunately the infection rate thusfar is low; but there’s always a chance of this type of thing escalating. The false plugin works by running a JavaScript and a Windows executable file: Seemingly this trojan only affects Firefox running in Windows; Linux and Mac are most likely safe, at least from this version of this trojan. How long this will be the case is anyone’s guess.

Is this the start of a long-running malware campaign against Firefox. Will a plethora of variations of this trojan be targeted at Firefox by the malware writers? Judging by previous form I would expect that to be the case. What would you suggest? Do you agree with me, or do you think that this is just a one-off?

I must try and get one of those T-shirts…and a boob-job.

Carrying on from yesterday’s post; I’m pleased to report that, despite setbacks, the operation is complete and a total reinstall has been achieved, including all third-party software and files that I’d backed up on the other computer in whatever format.

To be honest the backed-up files were copies of backups of backups that were getting a bit old and stale - A whole new system was called for anyway, which hadn’t actually been done fully since I built the original computer in March 2007. The original computer had a hardware malfunction relating to the BIOS, and I had the motherboard replaced under warranty; installing a backup of the original system straight to it. That software has crashed and been repaired twice since. To be honest it was like a patchwork quilt - So I’ve done the right thing in starting again.

I encountered BSOD’s soon after reinstalling Windows XP and SP3. I had added a few pieces of third-party software at this stage, but I was unable to account for the stop errors nevertheless. At this point I make a strong recommendation for Ad Aware 2008 from Lavasoft; which was the only program able to find a hidden virus and another piece of malware which somehow mysteriously got onto the system and caused the crashes.

I built this machine; so I’m rather familiar with it. It uses an Asus M2VTVM motherboard which appears to be rather finnicky about software compared to my other machine which runs very stably under virtually all conditions with a Shuttle motherboard.

As you have read from the previous article; the operation was made somewhat difficult by, and a total reinstall was virtually forced by, a catalogue of errors and dysfunctions both on the part of Windows as well as to a certain extent on my part. These lengthened the operation somewhat, causing me to dedicate the entire weekend towards getting the machine running again, which has reduced the amount of time I would otherwise have spent on this blog.

Nevertheless the show must go on; and I’ve endeavoured to bring something rather than nothing to you despite this minor catastrophe right on top of the illness which put me out of action for a while a week before. Hopefully with a bit of luck normal operations will be resumed forthwith.

Have you ever had a hard-drive clap out on you? What was your experience?

I was checking my email earlier when I saw an interesting article on a new type of social-network worm:

“Security company ESET’s analysis of Win32/Inject.NBL reveals it to be an interesting piece of malware.” “This instant messaging-based bot has the following functions built into it:

• download
• update
• rm
• msn.msg
• msn.stop
• aim.msg
• aim.stop
• triton.msg
• triton.stop

In other words, it can download files, update itself, remove itself, and send messages through MSN Messenger, AIM and Triton, spreading itself on those networks. This is a nice chunk of functionality.”

What next - A virus that decides whether it likes you or not? Are viruses becoming more intelligent? The first viruses were more an annoyance than anything else; soon to be followed by the destructive type of virus that lurks on your system undetected until its clock reaches zero-hour and it delivers harmful payloads that wreak havoc with your machine. Around the same time they were equipped with their own SMTP engines, enabling them to mail themselves as an attachment to a bogus email-message on the internet to any email addresses that they could find on the host machine…You know the story.

Not long ago appeared the network-aware variety of virus that actively sought out unprotected paths in cyberspace to infest anything from individual computers to entire networks: The first signs of intelligence.

Nowadays worms are infecting individual machines and adding them to a collective, using those collectives as botnets to launch mass DDOS attacks, send and relay spam and [illegal] porn.

As computers develop in sophistication, will we one day see independent malevolent data-entities roaming the web, looking for a computer to possess and set up home in, like some form of information-based AI? In my opinion it’s not that far off being a future reality given the right circumstances. Could our computers eventually at a future date become a separate living collective entity - Life; but not as we know it? Maybe it’s already starting to happen?
Is “Skynet” only a piece of science fiction from the Terminator series; or will some similar lifeform eventually evolve? Will that lifeform be malevolent? In my estimation, if it actually did happen, probably not; given that it would have access to nearly all of human knowledge and be able to devise intelligent and productive concepts for itself from that information. Without doubt it would probably be hard to live with; particularly initially, but I feel that soon certain people would befriend it and it would learn from them as well as they from it. Could such an entity become a new “god” that lives in cyberspace? Would there be a Cyber-Fundamentalist cult? What are your thoughts on this?

In the post I made earlier entitled “A Geek’s Toolkit Supplement: Loaded USB Drive ” I spoke of what I described as “branding files”: Files that I add to the operating system to indicate that I am supplier, builder, and maintenance tech for a particular computer.

I can hear your brains whirring; so before you start thinking that I’m up to something naughty I’ll show you exactly what I mean. Oh yes; this only works if you have Windows XP installed, so don’t go trying it with a Linux or a OSX installation and then comment that I’ve messed up your operating system or “I can’t find those files in Ubuntu!” - “It doesn’t work with Leopard!” You’re quite right; it doesn’t - So be forewarned.

If this information has already been added to your operating system by the manufacturer then I suggest it best to just leave it anyway.

(Why are you playing about with your computer like this anyway? What do you hope to achieve? Oh well; your problem, not mine.)

The aim of the exercise is to customise Windows XP’s general tab in the System Properties dialogue box that you call up by right-clicking the My Computer icon and selecting Properties.

This customisation involves adding support contract information and a logo. It involves using only Notepad and whatever program you like to use to create a 256-colour bitmap.

Buy “WordPress on Crack” - Build your own WordPress plugins: Click Here!

OK let’s start with the details: I won’t tell you exactly what details I put for computers that I build; so for this exercise we’ll assume that these details are regarding a computer built by the Acme Computer Corporation:

The computer is a Datamax, model 55102. Support line is 1-800-ACME…

Open Notepad and type the following text, replacing the example with your company’s details etc:

[General]

Manufacturer=Acme Computer Corporation

Model=Datamax 55102

[Support Information]

Line 1=Call 1-800-ACME for technical support

Line 2=  support [at] OMG [dot] acmecomputer [dot] com.invalid

Line 3=500 Billion Byte Drive

Line 4=Pixelgraphicsville, USA

Save this file to %windir%\Windows\System32 as Oeminfo.ini

Create a 256-colour bitmap of your company’s logo that is no more than 96X96 pixels in size. Save this file to %windir%\Windows\system32 as Oemlogo.bmp

Yes I deliberately soiled the picture: ‘Better safe than sorry.

To see the results either right-click on the My Computer icon or press the Windows and the Break key simultaneously.

And that’s how it’s done - No registry edits, no hacking into anything. This is a white box system builder’s trick; but it’s no massive secret. The files aren’t permanent anyway; if you remove them or reinstall your operating system the dialogue box reverts to default.

Fire Your Computer Technician!

A computer technician spills the beans and makes available the knowledge he has charged clients hundreds in service fees for.

CLICK HERE

Being a geekette; that is a female computer designer/builder, as well as a blogger, I often get asked by my girlfriends (And some of their boyfriends too - Shh!) to pop over for a cuppa and attend to some problem they’re having with their computer. Most of these problems turn out to be software-related, so it’s always a good idea to come prepared - Although I can download most of what I need from the internet, sometimes their internet connection is not working for whatever reason, and more than one is on dial-up - Which can make downloading a program a 2-hour job in itself.

To combat this I have a 1Gb USB flash drive with most of anything I might need on it; plus loads of links to anything useful on the internet itself that might be useful which I haven’t bothered to include because I probably won’t need it.

A Topless and Bottomless Photo of Me

Buy “WordPress on Crack” - Build your own WordPress plugins: Click Here!

I pop the cord from which the USB stick hangs around my neck, and go to sort out their issues.

I mainly have program installers in the form of .exe files on the USB drive: These are always useful. I also am able, in a worst-case scenario, to provide them with a temporary internet connection via my mobile device, for which I also carry a USB bluetooth dongle to plug into their computer on the rare occasions where it is necessary; such as an instance a year plus ago where a friend somehow lost the driver for their network interface device and was unable to communicate with their router as a result: I removed the old driver which was faulty but obviously didn’t have that particular driver on the USB device; so I set up a temporary internet connection via my mobile phone/bluetooth and downloaded a new driver, installed it - Target neutralised.

The items I have on my USB drive are listed below: I’m sharing this with you as I’m assuming that as a geek you too get called out to similar situations; but being unable to fix it on the spot you end up taking their computer home, doing the work in your spare time, and returning their computer at a later date; which causes inconvenience to both parties.

Advertisment:

Fire Your Computer Guy or Girl!

A computer technician spills the beans and makes available the knowledge he has charged clients hundreds in service fees for.

Computer Secrets Unleashed

To find out more

CLICK HERE

The files I carry around on my USB device are as follows:

1. AVG Anti-virus.exe installer: You’d be mightily surprised how many people don’t run an anti-virus program! They might find that their computer slows down with use; and, not realising that it is caused by the registry getting cluttered with crap among other things, they start removing programs which they think are unnecessary in order to attempt to get the machine to speed up again, one of those “unnecessary” programs being their anti-virus program.

2.. A free anti-spyware program; such as AdAware and Spybot Search and Destroy - For the reason stated above or that they didn’t even know what spyware was etc. The latest AVG antivirus has built-in spyware-protection, but that protection is not exhaustive, so it’s always a good idea to install extra spyware protection supplemental to that.

3. Free FTP clients in .exe installer format, such as WS-FTP-LE and FileZilla: They do occasionally come in handy.

4. Diagnostic programs; such as Core Temp.exe, Diskcheckup.exe… I know; rather than listing them all here I’ll show a picture of all the icons below and to save a lot of my time I’ll let you Google for them all.

Obviously the folders are of my own making: Batch Files contains some useful batch files that I wrote or copied, Dragons Websites contains the URLs of the websites of the millionaire entrepreneurs from the BBC series “Dragon’s Den”, Glint(Program) contains the .exe file of the Glint System Monitor program, KK contains pictures which I use regarding Kustom Komputa; Suppliers, Parts, and Circuits contains URLs to suppliers of computer hardware components, plus a few electronic circuits, Web Shortcuts contains hundreds of various useful URLs, Websites contains copies of all my website files from some of my various sites, WP Plugins contains some useful WordPress plugins. Some of the files, such as DSC00* are photos from my mobile phone. aports.zip shouldn’t be on there as it’s a program that contains malware. OEM Exel and OEM INXP are folders containing branding files which I add to the OS to indicate that I am supplier, builder, and maintenance tech for a particular computer. The file “Kustom Komputa” is a copy of some files from my Kustom Komputa website. WP Themes contains WordPress themes. The Folder “Self-Installing Scr” contains a number of screensavers that I created and which automatically install on the computer upon activation of the .exe file thereof. (No malware involved.) The folder Paint.net contains the program Paint.net, and the folder “Sounds” contains some alternative Windows sound effects as spoken by the Daleks from the BBC TV series “Dr Who”.

There are also a number of shortcuts which you don’t normally see on any Windows desktop. These shortcuts; such as “Sound Recorder“, “Volume Control“, “Command Prompt“, “Device Manager“, and “Sleep or Hibernate” are described on this site, including the method to create your very own icon(s).

So that’s pretty much it: Carry this lot plus your own personal files around on a USB flash drive and you won’t go far wrong.

HTH (’Hope That Helps.)

Click Here