===================================================================== An iEntry.com Mailing ===================================================================== EnterpriseSecurityNews - The Horror Of Spyware June 20, 2007 http://www.enterprisesecuritynews.com/ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Are you running Exchange email security tools from Symantec, McAfee, Trend, or MS-Antigen? Tired of their high (renewal) prices, hard to manage product, and/or lack of features? Upgrade to Ninja's next-generation email security, and spend half your admin time, and half your budget! Download Ninja Email Security - US/CANADA ONLY http://aj.600z.com/aj/29963/0/cc?z=1&b=29960&c=29961 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ The Horror Of Spyware David Utter | Expert Author Coding Horror's Jeff Atwood ventured onto the Internet in search of no-cd game patches for a fresh re-installation of Windows XP SP2, and got nailed by a drive-by malware installation. By venturing online to websites for his desired game patches, before applying the host of Microsoft updates a fresh installation needs, Atwood exposed his PC to the sordid side of the Internet. Atwood was victimized faster than you can say, "Hey buddy, wanna buy a Rolex?" He recounted his tale on the Coding Horror blog that he pens. "I figured I'd save myself that work, and just pop into a few specific web sites for a few quick downloads. Couldn't hurt, right?" "Let my mistake be a lesson to everyone reading this: never browse the web without the very latest version of your preferred web browser," he continued. Then he decided to explore the malware problem further, this time from a default installation of the September 2001 version of XP, inside of a virtual machine. A NAT router prevented any passive infection from taking place before Atwood began surfing. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ You need to make a conference call, and you need it now. Whether you are a Fortune 500 company or a small business just getting on your feet, you need to meet when and where it’s convenient for you. Set Up Your Account For Free And Start Conferencing Today! Try ConferenceCall.com Now! http://aj.600z.com/aj/29877/0/cc?z=1&b=29408&c=29876 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ As soon as he hit the GameCopyWorld website, it was game over for his virtual gaming machine: This comes as a shock to me, because GameCopyWorld is recommended often in gaming forums. I consider(ed) it a reputable web site. I've never had a problem with the site before, because I usually surf with the latest updates. But the unpatched browser spyware infestation from visiting GCW-- just from visiting the web pages, even if you don't download a single thing-- is nearly immediate and completely devastating. From there, Atwood turned to a series of Sysinternals applications to unhook the malware from the virtual PC. His post showed how he stepped through processes and registry information to track down and clean the virtual machine of the spyware. Some commenters on his story suggested the steps he took may not have been enough, if a rootkit had made it onto the system. They said Rootkit Revealer should be run on such a system as well. Rootkit Revealer link: www.microsoft.com/technet/sysinternals/utilities/RootkitRevealer.mspx ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Call the Domain Experts Today Find the perfect domain name & great tools for growing your business. BuyDomains.com. Business Starts Here. http://aj.600z.com/aj/30050/0/cc?z=1&b=30048&c=30049 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^ About the Author: David Utter is a business and technology writer for SecurityProNews and WebProNews. ===================================================================== ===================================================================== For ad details and prices... mailto:susan@ientry.com ===================================================================== Signup for free newsletters: http://www.ientry.com/page/newsletters ===================================================================== --- EnterpriseSecurityNews is an iEntry.com publication --- http://www.iEntry.com iEntry, Inc. 2549 Richmond Rd Second Floor Lexington, KY 40509 ====================================================================