Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Hardhead

Pages: 1 [2] 3 4 ... 19
16
For those having problems Firefox is working on what I believe to be a new version coming out in the next few days if the hot fix is not working. I’m going to wait as I stated above. Note I have not tried the hot fix.

https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/

17
Thanks Ron for the heads up.
There are hot fixes for the issues but if it was up to me I would wait until Firefox comes out with a new version before doing anything. That’s only my thoughts. Read more about the issues below:

https://forums.malwarebytes.com/topic/246969-your-firefox-extensions-are-all-disabled/


18
It amazes me what people will  do for money.
It's sicking...  :(

19
 By Sergiu Gatlan

    April 25, 2019 01:56 AM 0

Quote
The TA505 hacking group ran a spear phishing campaign targeting a financial institution during April with the help of a signed version of the ServHelper backdoor and a number of LOLBins designed to help the operation evade detection.

TA505 is a threat group known to have been active since at least Q3 2014 [1, 2] and to have attacked a multiple financial institutions and retail companies using large sized malicious spam campaigns driven with the help of the Necurs botnet and dropping the Dridex and Trick banking Trojans, as well as the Locky and Jaff ransomware strains on their targets computers. [1, 2, 3]

During November 2018, TA505 started distributing new malicious tools as discovered by Proofpoint, the ServHelper backdoor and the FlawedGrace remote access Trojan (RAT) as part of multiple malware campaigns focused on banks, retail businesses, and restaurants.

https://www.bleepingcomputer.com/news/security/ta505-spear-phishing-campaign-uses-lolbins-to-avoid-detection/

20
Quote
An exploit has been discovered that could allow ad blocking filter list maintainers for the Adblock Plus, AdBlock, and uBlocker browser extensions to create filters that inject remote scripts into web sites.

With ad blockers having a a user base of over 10 million installs, if malicious scripts were injected it would have a huge impact as they could perform unwanted activity such as stealing cookies, login credentials, causing page redirects, or other unwanted behavior.
The $rewrite filter option

For those who are unfamiliar with how ad blockers work, they utilize lists of URLs related to advertisements and malicious behavior and are typically maintained by a small team of people or even a single person. When these lists are loaded by an ad blocking extension, like Adblock Plus, the extension will prevent the browser from connecting to the listed URLs and thus advertisements or malicious scripts are unable to load.

For example, below is the filter list for the popular ad blocking list called EasyList.

https://www.bleepingcomputer.com/news/security/adblock-plus-filters-can-be-exploited-to-run-malicious-code/

21
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 28, 2019, 03:55:11 am »
Hello Dan,
Can you please check your PM here @ CoU from me and read the two I sent.
Two files were clean and I chose to allow. I ran both files at VT. Both looked good.
Also you will find what I ran into also with whitelisting. I do believe I can reproduce what happened if you need the exact details. I just need to restore my image backup...

Regards,
Hardhead


22
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 18, 2019, 12:11:14 am »
Hello Dan,

I did a clean uninstall except removing the settings and everything seems to be running fine so far on Win 8.1 home.
One thing please, could you check your PM here and reply to what I found to happen on 2/13/2019.
Love the max gui which you can use the arrow buttons to move in any direction..  :)

Thank you and I'm looking forward to reporting anything unusual and the 5.0 version coming in the future!

Regards,
Hardhead

I cleaned install 4.99 and when I select white list my scroll up-down and sideways don't work unless I left click on an entry first. Then if I say switch to user log, the same thing happens.
I’m running Win 8.1 and if you highlight or right click on any entry you should be able to move any direction with the arrow buttons in max or minimize. Just highlight the entry and try that. See if that works for you. It works for me on Win 8.1.

23
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 17, 2019, 02:48:35 am »
Hello Dan,

I did a clean uninstall except removing the settings and everything seems to be running fine so far on Win 8.1 home.
One thing please, could you check your PM here and reply to what I found to happen on 2/13/2019.
Love the max gui which you can use the arrow buttons to move in any direction..  :)

Thank you and I'm looking forward to reporting anything unusual and the 5.0 version coming in the future!

Regards,
Hardhead


24
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 14, 2019, 04:54:38 am »
Thanks Dan  :)

26
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 13, 2019, 04:32:44 am »
Sorry, thing I forgot to mention is I’m sure Dan is still working on the blacklist for the next version that will be released.  :)

27
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 13, 2019, 04:15:56 am »
@Shmu26 Can't you just delete all the entry for that file in userlog/whitelist, put VS in "always on" and just run the file again?
If it's not auto deleted it should let you give the chance to run the file ( and VS will list it as user allowed in the logs and you could run it from now on)

Atleast i think what i did when i wanted to run a file with about 4 Virus Total flags.
With 5 it would be auto quarantined
I just did that recently myself about 3 days ago . I deleted logs and whitelist and retrained VS. I had over 428 entries and now after I retrained I only have 292 in my whitelist.  I have only had 3 blocks one of them where my AV definitions which Dan fixed, my AV upgrade was blocked and I allowed it. The last one was Raymond’s MDS & SHA Checksum which I reported as an false positive. https://raylin.wordpress.com/downloads/md5-sha-1-checksum-utility/ I use the free version.

I think the most important thing is to know that your computer is clean. Have a expert check if you don’t know how before making any changes. JMO... Then I would go with VS and its alerts. Remember VS can stop bad things but if you are infected that should be fixed first.
I would recommend farbar.
64 bit https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
32 bit https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/

28
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 12, 2019, 08:16:33 pm »

Right click then CTRL C then CTRL V
That gets me half way there.
I can copy the log entry, and I can paste it into notepad, but can I somehow turn it into a whitelist entry?
I have never added a custom rule before but I would think that it would be done clicking Rules.
You can can wait for someone to confirm.

29
VoodooShield / Re: VoodooShield v4 STABLE Thread
« on: February 12, 2019, 06:10:12 pm »
I don't know how to whitelist a block entry in the User log. It doesn't seem that I can copy the details to clipboard or anything. Am I missing something? I guess I am out of practice with VoodooShield.
Right-click the entry... Whitelist window pops-up.
Doesn't work for me. I right click, and nothing happens.

Right click then CTRL C then CTRL V

30
Members Corkboard / Re: On And Off And Back On The Tobacco Wagon
« on: February 05, 2019, 05:32:26 am »
Thanks Al,
My only problem is the nicotine juice and nothing else. When I stopped the cigarettes it took a while and I could taste things better and actually my smell was changed too. I was amazed how I could smell things now that I never could before and also not waking up in the morning coughing up flim anymore. God only knows what chemicals that I was injesting because I smoked menthol cigarettes. I’m not saying that vaping is the answer but it helped me get away from cigarettes and I can honestly say I have not smoked a cigarette for about 2 1/2 years to date. Somewhere around there give or take a few months. I was introduced to vaping at my last job from a younger fellow that was my lead man boss. I started working there in 2013 and it took me a while to get off the cigarettes but I finally did and like I said now I cannot stand the smell of them. I have been to the doctor and I can smell in the room if a patient that smokes has been in the room before me. That’s how much my smell has changed. Now I do have allergies and that is due to pollen in the summer and winter and sometimes I sneeze but I use a over the counter medicine that helps me with that.

I will conquer the vaping. I know its just a matter of time and I’m not getting any younger.
Thank you you for your support !
I will not let myself down or you either.

Pages: 1 [2] 3 4 ... 19