Jump to content
Latest News
  • *** *** FIRTH is a word we must not forget , KEEP THE KIDS SAFE *** caution , this forum contains opinions , humour , sarcasm and irony , procede at your peril *** can you remember when TRUST was something and HONOUR was something *** caution , this forum contains opinions , humour , sarcasm and irony , procede at your peril *** KARMA IS A FUCKING BITCH ***

Welcome to Pattaya Live

Welcome to Pattaya Live, like most online communities you must register to view or post in our community, but don't worry this is a simple free process that requires minimal information for you to signup. Be apart of Pattaya Live by signing in or creating an account.
  • Start new topics and reply to others
  • Subscribe to topics and forums to get email updates
  • Get your own profile page and make new friends
  • Send personal messages to other members.

  • advertisement_alt
  • advertisement_alt
  • advertisement_alt
Sign in to follow this  
JACK DANIELS ESQ

Linux, Malware, Viruses, Popups, Google, Chrome, Other Bs

Recommended Posts

Linux - whether you like it or not, is the only way one can safely navigate the 'Net these days

Even OX [Mac] has become a nightmare, a liability - despite it being a Unix fork many moons back

NSA, Google, Facebook, Chrome are the worst perpetrators of all - they will absolutely grab all your traffic

MS Windows + IE is a recipe for disaster - at least use Firefox and strap it down, no updates ever

I still have XP SP2 - 10 years old, zero MS updates + Avast [updates] - works just fine ..

Why would one retune a winning, top fuel dragster - it will only go slower, freeze it, then harden it

Dont touch Flash - Jobs was correct - dont go near Utube etc - thats where are the script-kiddies hang

post-27174-0-56476200-1430240642_thumb.j

AVG is useless - y'all might as well go bareback - Avast works, even the freebie

Always use Ccleaner, Malwarebytes & Malwarebytes Rootkit - download off their own site only, not CNET

If CC & Mal et al, dont fix your MS kludge, d/l Combofix - a last-ditch effort before ya run a fresh install of W.xx

Tails ... buy it or have one of your IT wonks build one if not competent enough - do all ya secure banking, browsing, email with zero records ... reboot to normal life

I run Linux KDE + Firefox + Adbloc - havent seen ads, popups, viruses, mal-anything scripts ... aint seen shit in 10 years

Most viruses originate at the keyboard - folks do dumb things, make stupid decisions - dont ever use CNET for anything ... its loaded with crapware, its own executables ...

https://www.piriform.com/

http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

https://tails.boum.org/download/index.en.html

Happy secure surfing

Regards

Jack

post-27174-0-98364900-1430241671_thumb.j

Share this post


Link to post
Share on other sites

Pretty much agree with all that, especially CNet, an industrial-strength distribution center for viruses and malware.

To me Windows 7 is to XP what XP was to Windows 2.0 so we part company there. I also disagree with your assertion that you should not update your software. Updating is primarily good for removing so-called "zero-day exploits", although the prospect of getting new features and bug fixes for free is also an attraction.

For antivirus, I use Norton (paid subscription) but check it occasionally by running portable scanners and scanners for specific viruses and malware. Never a problem. Norton also has an anti-Malware program that checks for rootkits called "PowerEraser", which is a free download. I also use a rootkit detector from McAfee, AND one from Kaspersky, both also free. I also use CCleaner and Malwarebytes Anti-Malware. There's also a Malwarebytes Anti-Exploit, which is supposed to monitor for zero-day exploits. Haven't tried it yet.

BTW, another way to protect yourself from attack is to probe your firewall. There are online tools to do this; the one I use is GRC ShieldsUP! It probes your firewall by checking for ports that are open and unprotected, which is a major attack vector for hackers. There are others out there, but this one is convenient and thorough.

PS: You correctly suggested people only download software from the publisher's website, then you posted a link to "Bleeping Computer" for downloading Malwarebytes!

Here's the correct link: https://www.malwarebytes.org/mwb-download/

And here's the link for CCleaner: https://www.piriform.com/ccleaner/download

PPS: I also use CCleaner on my Android phone. Further, after reading that some apps are benign when installed then become malicious when updated, I installed Avast Anti-Malware. Both seem to work well.

Share this post


Link to post
Share on other sites
Guest Bazle

A lot of good info there lads, cheers.

Yes, thanks from me too to both of you for taking the effort to post that info - although a lot of it is mumbo jumbo to me!

Further, after reading that some apps are benign when installed then become malicious when updated, I installed Avast Anti-Malware.

It sounded a good idea to put this on my phone. In Playstore, I can find Avast Antivirus and Security. Is that what you are referring to, please?

A follow-up question. I assume that Avast is not a charitable organisation so why do they provide this app for free - i.e. how do they get their money from it?

Thanks.

Share this post


Link to post
Share on other sites

A lot of good info there lads, cheers.

No worries mate. ;)

Yes, thanks from me too to both of you for taking the effort to post that info - although a lot of it is mumbo jumbo to me!

I'd be glad to try explaining anything I posted, with the disclaimer that the explanations might also be mumbo jumbo! :fun: Perhaps not tonight though, it's 2:30AM here.

It sounded a good idea to put this on my phone. In Playstore, I can find Avast Antivirus and Security. Is that what you are referring to, please?

Yep. https://play.google.com/store/apps/details?id=com.avast.android.mobilesecurity&hl=en

A follow-up question. I assume that Avast is not a charitable organisation so why do they provide this app for free - i.e. how do they get their money from it?

Thanks.

First, like many apps/Windows programs it entices you to buy the premium version by offering additional features in the paid version.

Also, offering a free version of software that works well might entice some users to consider the company's other paid products, especially for their business/enterprise needs, where the real bucks are.

Share this post


Link to post
Share on other sites
Guest Bazle

No worries mate. ;)

I'd be glad to try explaining anything I posted, with the disclaimer that the explanations might also be mumbo jumbo! :fun: Perhaps not tonight though, it's 2:30AM here.

Yep. https://play.google.com/store/apps/details?id=com.avast.android.mobilesecurity&hl=en

First, like many apps/Windows programs it entices you to buy the premium version by offering additional features in the paid version.

Also, offering a free version of software that works well might entice some users to consider the company's other paid products, especially for their business/enterprise needs, where the real bucks are.

Thanks, That's the same one. Downloading now.

Goodnight ;)

Share this post


Link to post
Share on other sites

i use windows vista as its the less hacked windows of them all and its known for high control on the admin rights, for that on its own is the reason why i choose to use it but many don't understand it...

if you get your head around it its great but as many consumers follow what every one says as a majority and the brands the product is branded as a bad thing......

Share this post


Link to post
Share on other sites

Pretty much agree with all that, especially CNet, an industrial-strength distribution center for viruses and malware.

PS: You correctly suggested people only download software from the publisher's website, then you posted a link to "Bleeping Computer" for downloading Malwarebytes!

Bleeping is a trusted site - it has downloads - check right side of menu, of almost everything I have mentioned/discussed here

There is not only 'one' trusted site for downloads ...

It is also where Combofix lives - the best of bunch to fix really big, obstinate MS 'Net problems - my original mission

My first blush was a bullet style overview of Secure Linux Internet Browsing without too much waffle/confusion/yadda

99% of every MS Patch Tuesday breaks more than if fixes - my XP simply works, so why would I patch it until it breaks

I dont even like patching my production Linux O/S - run 6 different O/S - easier to install a clean O/S every time - about 12 minutes

Again, the object is to illustrate Linux simplicity - dont have to d/l all the crapware to simply keep MS running .... CPU cycle hog

Regards

Jack

post-27174-0-75185700-1430254195_thumb.j

Share this post


Link to post
Share on other sites

Great info

JD, as you know I'm flirting with the idea of removing W7 from one of my machines and loading it with Linux

Share this post


Link to post
Share on other sites

i use windows vista as its the less hacked windows of them all and its known for high control on the admin rights, for that on its own is the reason why i choose to use it but many don't understand it...

if you get your head around it its great but as many consumers follow what every one says as a majority and the brands the product is branded as a bad thing......

I use Vista on my own lappy too. I can't exactly say it is trouble free but it is probably a case of "better the devil" you know etc.

Will be buying a new one later this year and after 30 years man and boy with Microsoft I think its going to be a Mac.........

Share this post


Link to post
Share on other sites

My 2 kids have there own laptops, one running Win 8 the other a MacBook. The Win 8 is machine is forever getting messed up with ridiculous pop ups etc, the Mac has never missed a beat and is 1 year older. If you are not overly PC savvy and just want a machine that works MacBook is the way to go, if you don't mind the price tag.

Share this post


Link to post
Share on other sites

Yes, thanks from me too to both of you for taking the effort to post that info - although a lot of it is mumbo jumbo to me!

It sounded a good idea to put this on my phone. In Playstore, I can find Avast Antivirus and Security. Is that what you are referring to, please?

A follow-up question. I assume that Avast is not a charitable organisation so why do they provide this app for free - i.e. how do they get their money from it?

Thanks.

Bazle

Excellent Q&A - one must of course question that entire AV 'industry' - we knew and worked with Pete Norton in Santa Monica before it was kludged ..

Why didnt MS fix the AV problem ? - why would one keep throwing good AV money after bad O/S money ... ?

Avast et al, will always provide top performance for free, in the hope of snagging one on their paid product bandwagon

Same applies to Malware/CCleaner - why would one pay for something if their trail/freebie version is garbage.

Again, as most folks use a PC to write emails/docs/surf/etc why would one go thru all the MS/AV pushups when a much simpler solution is available for free ... ?

Also read some of the Snowden revelations and what big brother is up to .. if one is serious about business and need confidentiality in communications.

One cant use MS anything - in fact, I wouldnt fork out one brass cent for anything MS produces today - claw your MS EULA money back - on principle

MS W 7/8 are a disaster - be very careful of anything 'cloud' - its the next clusterphuque waiting to happen

Regards

Jack

post-27174-0-13595900-1430298466_thumb.j

Share this post


Link to post
Share on other sites

Great info

JD, as you know I'm flirting with the idea of removing W7 from one of my machines and loading it with Linux

My pleasure Amigo - will do a Linux howto for you soonest ...... appears to be a lot less hostile here

Do you have an IT wonk near you in Pattaya, in case the partitioning, ISO burning, installation, MBR, etc goes pear-shaped?

You can always blame Dubya, Cheney - everybody does ...

Regards

Jack

PS - many thanx for the warm welcome ... much appreciated

post-27174-0-82968700-1430299776_thumb.j

Share this post


Link to post
Share on other sites

Again, mostly agree with the above. Win 8 is a disaster but Win 7 is the best Windows ever, hands down, miles better than any other Windows.

Why use Windows? Mostly because it's got the most software available for it, including the most free stuff, by a country mile. It's the most interoperable, networks and communicates with almost anything with a comm port. It's the industry standard for almost every non-entertainment industry, especially industrial applications.

I don't mind having to keep it clean, comes with the territory, same as Android. If you want open architecture with its many advantages, you have to put up with the downsides.

Concerning internet security, it pretty much doesn't matter which OS you use, since the comm protocols and encryption algorithms used are all the same regardless of OS. They have to be or communication would be impossible. If the NSA or some other party has cracked the encryption method used for a connection, e.g. SSL 3.0, you're compromised regardless of which OS it's implemented in. Linux is also just as vulnerable to so-called "man in the middle attacks" and other spoofs as any other system. Same for phishing scams and social engineering hacks. And, if your network firewall isn't up to scratch and you're running web servers etc., you're just as vulnerable to internet attacks as anyone else.

If I was looking for the best OS ever it wouldn't be Windows, Linux/Unix or any of that ilk, it would be the modernized version of a real-time multitasking OS like RMX, with a GUI, support for USB, UPnP, etc. But again, cross-platform compatibility would be an issue and support for new technologies would be small due to the tiny programmer community, so technical best does not equate to most usable.

So for me it's going to be Windows, at least until I don't need to serve customers any more. And, maybe forever. Antivirus and crap cleaners (and processors with large enough testicles to run them without impacting user-perceived performance) are a tiny price to pay in exchange for almost unlimited free and cheap software that is right on the knife edge of technology at all times.

As always, YMMV.

Share this post


Link to post
Share on other sites

i use windows vista as its the less hacked windows of them all and its known for high control on the admin rights, for that on its own is the reason why i choose to use it but many don't understand it...

if you get your head around it its great but as many consumers follow what every one says as a majority and the brands the product is branded as a bad thing......

Amen to that - if it works, why fix it 'till it breaks ....

Not saying you do, but be very careful of admin rights - root will get one in all kinds of trouble on the net especially

They own you - make sure anyone else who might share you machine uses a separate, limited-rights, strapped-down a/c

I still run XP as root, but never ever on the 'Net .... only run 'root' to fix/maintain Linux stuff over the 'Net ......

I also keep all my data in a separate container, in a bespoke partition, nowhere near any O/S, plus copies on a USB SSD

Dont ever store anything of value on the cloud - Facebook is less dangerous, Zuckface is a world-class [rich] hacker, script-kiddie

Regards

Jack

Share this post


Link to post
Share on other sites

...Dont ever store anything of value on the cloud...etc.

You could have left out the bit about "value" and you'd still be right.

The "cloud" is the biggest scam in the history of computing, a way to trick and coerce people into paying for things they should have for free, letting for-profit companies have all your secrets on a silver platter, and letting a third party act as a gatekeeper between you and your own data.

Share this post


Link to post
Share on other sites

There is only one way to keep your information safe, don't put it on your computer.

Share this post


Link to post
Share on other sites

There is only one way to keep your information safe, don't put it on your computer.

Close, but no cigar - safe to store digital info on one's own machine - dont store it on someone else's machine [ie] cloud - ever

Most folks dont have anything worth stealing that NSA wants - but why give your data away to your competitors - encrypt

it - there are several utilities that will work across most O/S platforms - educate yourself first, make intelligent decisions

based on your needs and capability - use an encrypted USB SSD/thumb drive - never have it connected whilst on the 'Net

Use Tails - a 'live' Linux O/S as discussed earlier to send anything securely over the 'Net - dont ever use any 'social media'

garbage - they are giant collection trolls who work hand-in-glove with NSA, et al

https://tails.boum.org/

Some light reading to go with your daily porn ration ....

http://lifehacker.com/five-best-file-encryption-tools-5677725

Best Regards

Jack

post-27174-0-15258200-1430416781_thumb.j

Share this post


Link to post
Share on other sites

Close, but no cigar - safe to store digital info on one's own machine - dont store it on someone else's machine [ie] cloud - ever...etc.

Yep, agree, things can be stored safely on your machine. A few simple precautions will save you a lot of trouble.

For most folks, the biggest security threat to their computer comes not from the internet but from giving others physical access to it. So, make sure your user account always has a password, password-protect your screensaver, and set your computer to demand your password when it's taken out of standby mode. I have a superuser account, but certainly consider making a normal account for yourself with a different password if physical security is an issue. Additionally, for a laptop, set it to go into standby mode when you close the lid, so you can secure it simply by closing the lid, such as if you want to go take a quick leak. For desktop systems you can log out if you want to secure the computer.

If you're even more paranoid, on some systems you can set a hard disk password that needs to be entered even if the HD is transplanted into another machine. Those are usually set in the BIOS setup. HD passwords are devilishly hard to crack because the password is not on the disk media but on the firmware of the disk control electronics. (Note: I cracked on once for a girl whose ex had locked her hard drive, simply by having her give me a list of best possibilities and trying them one by each.)

Having said all that, it's best to have a backup that isn't online all the time regardless of what else you do.

Also agree about the "cloud" as mentioned earlier. BTW, I wouldn't bother thinking that encrypting cloud-stored data will protect it, unless it was encrypted using an algorithm whose "master key" hasn't been given to the NSA. This is usually required before the US government will allow an encryption method to be distributed.

One really good method I've run across for securing data is that you do whatever you're going to do to secure it, such as put it into a password-protected archive, then you rename the resulting archive file, making sure to change the extension, and put it someplace where it blends in with other files.

For example, you create a password-protected archive using, say, WinRAR and stick your sensitive data into that. You then rename that to something like "netxportsvc.dll" and stick it into a Windows system folder that contains lots of other dll files. This adds the additional complications of 1) finding the file, 2) recognizing it as the file you're looking for, and 3) figuring out what program was used to encrypt it.

Share this post


Link to post
Share on other sites

For most folks, the biggest security threat to their computer comes not from the internet but from giving others physical access to it. So, make sure your user account always has a password, password-protect your screensaver, and set your computer to demand your password when it's taken out of standby mode. I have a superuser account, but certainly consider making a normal account for yourself with a different password if physical security is an issue. Additionally, for a laptop, set it to go into standby mode when you close the lid, so you can secure it simply by closing the lid, such as if you want to go take a quick leak. For desktop systems you can log out if you want to secure the computer.

For example, you create a password-protected archive using, say, WinRAR and stick your sensitive data into that. You then rename that to something like "netxportsvc.dll" and stick it into a Windows system folder that contains lots of other dll files. This adds the additional complications of 1) finding the file, 2) recognizing it as the file you're looking for, and 3) figuring out what program was used to encrypt it.

An ounce of prevention beats a pound of cure ..... all day long

The smart hackers will detect a new, large .dll file as bogus, delete it or d/l for further massaging later

I use a WD 2TB USB HHD - keep all my important shit on it - never connected to my rig, except offline

If you use root/admin/superuser online with MS, somebody already owns you - why even risk it - dont.

As previously stated, use Linux when online - use judicial housekeeping - multi-boot to MS as required

One simply needs to minimize risk of contamination as much as possible - middleware not withstanding

There are bots everywhere, malware in abundance, everybody is mining CPU cycles, spreading chaos

There is no need to become a statistic ... dont take risks, always be vigilant, its like crossing the street

Take care, happy surfing

Jack

post-27174-0-23703800-1430580438_thumb.j

Share this post


Link to post
Share on other sites

...The smart hackers will detect a new, large .dll file as bogus, delete it or d/l for further massaging later

IF they're looking for something specific. If they're just snooping around they aren't likely to be looking at DLLs in your Windows/System folder.

If you use root/admin/superuser online with MS, somebody already owns you - why even risk it - dont.

Even I don't have enough tinfoil for this one I'm afraid. My computer is basically undetectable based on my port probing tests, and it sits behind TWO firewalls, the Windows firewall in the lapper and one in the ADSL modem.

Again, unless someone was looking for something specific I don't think they'd waste time on systems with even a modicum of security when there are so many out there that are easily detected, whose ADSL modems are set to allow default remote access, and whose passwords have never been changed from factory.

As previously stated, use Linux when online - use judicial housekeeping - multi-boot to MS as required...etc.

Certainly the safest, but more security than I think I need. I guard my online identity jealously, and it would be a long row to hoe to figure out who I am based on much I put out there, possibly except my email. If someone is willing to spend the time to crack their way onto my network they won't see much, my computer has no shares (I checked), and the only file server I have out there is a media tank that has movies and music on it.

I think I've probably put up enough obstacles to keep the casual snoops and perhaps even the first-order hackers out. I scan for malware of all sorts, including rootkits, fairly frequently, and my virus scanner (Norton, paid subscription up to date) scans continuously in the background. I seriously doubt there's anything like a RAT on my machine. Also, I'm not exactly some clooless noob who would see something unusual or out of place and not check it out.

Basically, nothing we do will make us 100% safe online. Even using Linux as I suggested earlier. What I figure is that you don't have to set the bar too high; if you simply set the bar above zero most casual hackers aren't going to bother, and the more dedicated ones won't be interested in a machine unless they know for a fact there's something valuable on it.

Kinda like the locks on your house: They don't have to be very good, just good enough to discourage the casual thief. A professional burglar would walk right in past all but the very best locks, but the street thief looking for a quick score is gonna try the knob then move on to the next house. And, the pro isn't bothered with just any ol' house he runs across, for him to waste his time he's going to be sure there's something good in there. That's why he's a pro.

BTW, so you don't think I'm too complacent, see if you can find my thread on smart TVs spying on their owners. I was accused of running a Reynolds chapeau factory on that one. :fun:

Edit: http://www.pattaya-live.com/index.php/topic/99155-smart-tvs-record-and-transmit-personal-info-to-third-parties/

Share this post


Link to post
Share on other sites

BTW, don't know if you saw this, a website that scans for webcams that are either open or still have the factory default passwords: http://www.insecam.org/

Caused quite a stir about 6 months ago and was taken down. Recently I was searching for something else and ran across the fact that it was back up again.

Check it out, some interesting and bizarre shit out there.

Share this post


Link to post
Share on other sites

Basically, nothing we do will make us 100% safe online. Even using Linux as I suggested earlier. What I figure is that you don't have to set the bar too high; if you simply set the bar above zero most casual hackers aren't going to bother, and the more dedicated ones won't be interested in a machine unless they know for a fact there's something valuable on it.

Tails is 100% secure - it runs in RAM, non-persistent mode - ask Snowy, but y'all have to go via Vlad .... puck USG/NSA

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
Sign in to follow this  

×
×
  • Create New...