SecureSlash.com

Well, Today is the craziest day for Bitdefender. This looks like a climax of the movie iRobot. Thousands of windows users install bitdefender for securing their machine. But, Unfortunately a lame update file from bitdefender started killing itself(literally).

Today, All Windows7 64bit users received a threat alert called “Trojan.Fakealert.5″.

And it detected all DLL files / EXEs of my windows machine as a trojan and started deleting them. You know how frustrates it? I really have a paid account for Bit Defender Internet Security 2010. I ignored my nerd friend’s words about installing a 3000 days crack for bitdefender and I called myself as “I dont want to steal someone’s work”.

But today, My taskmanager, explorer & almost everything got quarantine. I didnt paid to bitdefender for this lame mistake.

What is the cause of Trojan.FakeAlert.5?

There was a wrong update from bitdefender caused this issue.

How to fixTrojan.FakeAlert.5?

Disable the realtime protection

Antivirus -> Shield -> Disable Real-time protection.

Do not run any scans. Disable if there is any scheduled scans.

Try to do a “System Restore” or restore the “Quarantine” files.

There a big thread at bitdefender forums with thousands of active frustrated users(including me) shouting bitdefender for this lame problem.

Note: My friend & Secure Slash co-editor Mr. PaimPozhil said to me that, There is a “real” trojan in that same name. So, Do not just disable bitdefender!  Scan your computer using “SpyBot Search & Destroy” it will find the exact trojan alone as well. Thanks Paim

While DeVaan is adamant that 95% of PCs now have good driver support, Microsoft doesn’t want a repeat of that experience when Windows 7 comes around, and thus constantly emphasised the need to cooperate with hardware builders. “Ecosystem readiness is a super-important part of the lessons learned,” DeVaan said.

That may be slightly easier because Windows 7 represents a less radical evolution for hardware companies. “In Vista, we changed a lot of our device driver models and other things at low levels of the system,” DeVaan said. “For Windows 7, we have the tenet that if something works on Vista, it really should work on Windows 7.”

Indeed, while Windows 7 has an enhanced driver installation model that is designed to simplify installation, many of its features are implemented via XML and other information stored in what’s known as the Device Display Object. In theory, hardware manufacturers can simply add those components to their existing Vista driver rather than rewriting the entire code base.

However, the window of opportunity (ahem) for relatively private testing won’t be wide. Windows vice president Steven Sinofsky confirmed that Microsoft hopes to have a widespread release of an official Windows 7 beta in early 2009. Although widely available both via its PDC and WinHEC appearances and through numerous illegal torrent sites, the current Windows 7 release is the internal M3 candidate, which is missing many new UI features and isn’t being touted as feature-complete, but rather as a pre-beta. (Most of the demos at WinHEC, incidentally, were on later internal builds.)

Read the full story

Sunday:

One day a lamer installed his Vista Ultimate x86 just after adding 1Gig DDR ram. He noticed that installation was smooth and OEM Emulator also went nice. His installation passed in “Genuine” check too. Great!!

Monday:

I hate installating OS in my live machine. It will lead us to install all of our applications, Firewall, Antivirus (I dont use “total security”, A primary Firewall only software is 5 times better than ALL Security shits here software). But Mr.Lamer is eager to download all of his day to day applications like (MSOffice, Winamp, WinRar, RoadRash, VCD Cutter, Yahoo Messenger, uTorrent & etc).

Tuesday:

Everything was smooth. But, Suddenly he got Sky and some birds on monitor. LOL Yes, Blue Screen!

It says some xxx_POOL_Error & Memory dump … He dont know why.

Wednesday:

He become very sad, Yes He already spent 5 days for downloading Vista from a ThePirateBay torrent. He started blaming Vista, Microsoft & almost all microsoft products. He started explaing his experience with his friend. We know that all lamers has a better lamer as their friends. He too experienced same Sky & Birds problem.

Thursday:

Mr.Lamer heard that most of his friends(ofcourse lamers) blamed vista. So he decided to go back to Xp Pro.

Friday:
Windows XP Professional – WoW This is what I call stable OS!! Vista Sucks!! Vista Sucks!!

Well, I see lots of my classmates still blaming Vista.

How not to be a Lamer?

First Understand what is happening inside your hardware & software.

First of all they have to understand onething that, Latest version is always better than older versions.
No matter what powerful Processor you use. But You must need 2GB minimum ram.
40% of RAM comes with “Failure” issue. If you are inserting two rams in your mobo then both of their FSB must be same.

If you use 333mhz & 800mhz rams then you may expect “Auto restart” or Blue Screen problems.

Next one is your drivers. If you have installed a new modem, graphics card, audio device recently then you must check its installation status. An unsuccessful installation may lead BlueScreen errors.

Memory & Drivers cause most of the blue screen problems. If you want to go deeper then download & install Win Debug www.microsoft.com/whdc/devtools/debugging/ and analyze your DMP files.

It is an excellent tool to figure out your hardware issues.

Most of the lamers use pirated copy, They deserve 0$ and expects millions. You can find an another big lamer group in Digg.com they usually digg it & comment bad on all microsoft related topics. They thinks themsevels as Linus, Larry Wall, GNU & others. All they are JUST LAMERS.

lamers never analyze things, They stick with Peer group. They never find solutions. If you do the same then do not do it more. Find the solutions & stop being a lamer.

Lamers can not find the exact problem and solution. All they can say is

“I suck last night, Vista does now!”.

Know the basic features of Google’s own browser Chrome here . It may be cool for beginner level internet users and google fans. But I am unable to migrate from FF’s Firebug.

When i was sitting workless just thought of testing my browser with java script and also my system capability to work on stress.I did two test in two browsers

1.Internet Explorer 6.0

2.Firefox 3.1X
(more…)

You may have a site that has background other than White.

<!– ckey=”72D5D611″ –>

And sometimes when using css/javascript menus,etc when the people navigate to other pages , you will see a Big Flash entering the eyes

Not to mention, average users will get Annoyed by this and leave the site unless you provide something that makes them cope that behavior of the browser

You may not notice this in famous Firefox browser but IE is prone to this kind of behavior

To fix the problem easily we can ask all users to switch to firefox but this is not always the case so

Here is the fix for Internet Explorer

we have tried some advice from fellow webmasters that you can setup cache on IIS webserver,etc.. most people dont have previlage to do that or their hosting admins may not be interested in doing that.

So without any ones help you can fix this yourself by using an Iframe

Make a new file like iframe.html or index.html whatsoever

Make the background to the color of your site background <body bgcolor = “xxxx”>

then make a iframe with this code

• <iframe src=”http://secureslash.com/” allowtransparency=”true” align=”left” frameborder=”0″ height=”1024″ scrolling=”no” width=”100%”></iframe>

change the secureslash.com with your site url.

And dont forgot that, You need to use some javascript to change the browser address bar url according to the current source of iframe. Google or Live it for doing this.

Thats it , Enjoy Cheers

Paimpozhil

Its getting hit by Trojan virus:

Read the News about Thousands of infected websites.

A lot of sites are now being attacked with JavaScript Trojans

the server is not attacked by virus , this happens to both Linux and windows server sites.

so it is doesnt look like a server based attack

How this happens?

when the computer from where you upload data thru FTP/fp is infected , it injects some JavaScript to all html files.

so how you can prevent this happening is keep your pc up2date by having recent antivirus,antispyware and then change your ftp logins.

If there is a Repeating same pattern of JavaScript on 100s of your files you have a shell script for Linux server users that can remove these injected javascript .

so you can request your host or you yourself can run this on your shell

find ./ -type f -exec sed -i ‘/unescape/d’ {} \;

this command will remove all the lines with pattern ‘unescape’

some virus has lines of function okban, in that case you can try pattern ‘okban’

it depends on your need.

you can do the same with a software called GrepWin for replacing/searching PERL Regular Expression patterns on your files

http://tools.tortoisesvn.net/grepWin

use it to search for patterns and replace with null or use the options to delete those lines

this can be either used on a windows server or client side (but then you have to upload all modified files again )

To find files quickly on the redhat based distributions (fedora,centos,rhel,etc)

You need to first index the file names before you can search them quickly for this command is

updatedb &
man updatedb

& (lets you to run the command in background so you can do something now
in shell in mean time)

then after it is done.

you can find files using command locate

locate [filename or part of filename]

Example

[xxx@server1 plugins]$ locate wysiwyg
/scripts/wysiwygpro_cleanup
[xxx@server1 plugins]$
man locate
You have to update the index periodically else it will be outdated and not pretty useful as it should be

so add this to your cron job to make it run once daily
$crontab -e
1 1 * * * /usr/bin/updatedb

This will update it daily to the db

If you dont want to index it daily & If your files rarely change you
can change it weekly or monthly by just changing it accordingly on crontab

making , editing crontab is out of subject of this article but the
simple way is

crontab -e & paste that cron command and then save it.

Online Cron command generator

After a long research, I findout digg has nearly 87000 users.

12K diggers dugg microsoft stories.
24K diggers having an interest about iPhone
14K diggers dont like iphone

10K diggers having an interest about “Hacking” stories
42K diggers dugg “Digg” stories.
12K diggers dugg “Pairs hilton” stories
13K diggers reads “Saddam Hussein” stories
14K diggers having an interest about “HD-DVD”
5K diggers love Ubuntu
16K diggers likes [pic] stories
12K diggers support PirateBay
34K Sites are linking to digg.com

48.6% of digg users come from USA.
30% of diggers dugg stories by reading the “Title” alone.

Digg.com is not in any country’s “Top 10 Websites” or “Top 20 Websites” list
Digg.com is not in world wide “Top 100 Websites” list.

97% of digg users are proud to say they use “Digg.com”

68% of digg comments are offensive

42% of digg users hate “Digg Comment system”

92% of diggers uses the word “fuck” & “suck” in their comment.

Digg lost 4% of traffic in [Aug'07]
Digg’s traffic rank reduced 11 in [Aug'07]
Digg becomes a good “Information Portal” next to Wikipedia.

Note:
98.4% of internet statistics are made up.

Recently we have got to a site called alpha software somewhere through google , found some very interesting funny pages there.

This Alphasoftware claims they are 10x-50x more efficient than the other scripting languages

and you can see more of this crap on their site http://www.alphasoftware.com/ )

But i dont get the exact reason why they use asp themselves for their homepage

http://www.alphasoftware.com/about/contact.asp

some people might argue that This is not asp , and they might have spoofed the extension with help of their web server mime configurations but Look at this

http://www.alphasoftware.com/resources/it_related_9.asp and take rest!

why do they use asp that is 10x less effiecient or slower than their AlphaSoftware.

Some more of their technology

“Application Hosting

Once you have built your web application, the next step is to host or deploy your application to the Internet or intranet so that remote users can access your application via a browser. “

So you need to buy all these

Alpha version 5, application server and a runtime

it will cost you Very minimum of 1097 $ (very cheaper than php which i got for free)

https://www.alphasoftware.com/shop/AlphaFive/index.asp?UserType=new&RTSEL=0&V8SEL=0&WASSEL=0

Making some software that eases the people’s hard tedious work is always good but yelling stuff like 100x faster than this,that ,everything makes us look bad of them.

look at this

“Microsoft Access, Visual Basic, FileMaker, PHP, ASP, JSP, Cold Fusion all have merit, but none can match the combination of power and simplicity that is the trademark of all Alpha Software solutions.”

Why ? i find ruby on rails / cakephp a lot easier than this stuff after seeing few of their demos,etc

and finaly their product doesnt look that impressive decide for yourself )

http://afas.alphasoftware.com/SamplePages/

we are not encouraging them so we didnt provide any link to there website

If you people would like to share some about this you can comment here, make it more fun!.

Geek/Nerd
They never cared about EULA at all.. They hit :Next: button as much as faster .. and unchecks “Show readme file” checkbox. And starts using the application

Home user:
They search for Readme.txt or Install.txt first. They do everything step by step. They just pulls the EULA page scroller to end. They change the installation path to “D:\Softwares\Program files\New crap\” .. Again they read s readme file. and starts using application.

Pirate
They Search for an exact crack for current version. They tries to download from file sharing networks like e2dk,bittorrent… And do everything like Technical user.

Enterprise user:
They reads feedback about the software everywhere before purchasing. And reads EULA carefully… They do everything with default values.. They dont like to take risks like changing the installation directory.. etc., They asks all the staffs to read readme.txt file before using it.