About this site

This site is dedicated to giving you the tools you need to protect your privacy
from spyware, & adware, particular attention is made to detecting &
defeating spyware this site is just starting,so check back from time to time
for updates & content as i add them if you have something you'd like to add,
to the site please send me an E-Mail

reflist: 038-16.08.2002
you may download it on Software page2

Serious privacy problems in Windows Media Player for Windows XP

http://www.computerbytesman.com/privacy/wmp8dvd.htm

KAKWORM
http://www.antivirus.com/vinfo/virusencyclo/default2.asp?m=q&virus=JS%2EKAK&alt=KAK

A malicious remote applet may be able to execute arbitrary code on
the user's computer or obtain directory listings. Applets using the
PhotoDeluxe Java code can reportedly be scripted via (IE) and used to
obtain directory listings on the local system. If IE is started from within
PhotoDeluxe via a Link button, then malicious code would be able to
use the PhotoDeluxe Java code to download Java that could execute
malicious code on the system.

While no solution was available from Adobe at this time, CERT has
recommended t0 disable Active scripting and Java in the Internet zone
and the zone used by Outlook, Outlook Express, or any other email
client that uses Internet Explorer to render HTML.

This posted by Interceptor at

suggestafix.com

A physically local user may be able to access the system if an
administrator applies the "disconnect" feature of the Terminal Services
client and then leaves the workstation idle. This means a Windows
Terminal Services client may cause the Windows screen saver lockout
mechanism to fail to lock out the system.

No solution was available from M icrosoft at this time, but the vendor
is working on a fix.

For Win2000 Server with SP0, SP1 and SP2, and the Terminal Server
client under Win98SE, Win2000 Pro, WinXP Pro

Reported by: Steve Shockley

It has been reported that specially designed packets (TCP SYN flag)
operating on XP's networking port of 445 (enabled by default) may
cause the server to tax it's CPU useage resulting in a DoS attack.

No solution was available from Microsoft at this time.

Reported by: "Adonis.No.Spam"

They have their New Version out today. Fixing yet another AOL
connectivity problem. You can get it Here http://www.trillian.cc/

Future Defenses: Technologies to Stop the Unknown Attack
by Nicholas Weaver
last updated February 21, 2002

http://online.securityfocus.com/infocus/1547

Robert's bookmarks: Posted @
Suggest A Fix Support Forums

SecurityFocus - INTRUSION DETECTION LIBRARY
http://www.securityfocus.com/cgi-bin/library.pl?cat=51

Intrusion Detection and Network Auditing on the Internet - Articles, Tutorials, Surveys
http://www.infosyssec.org/infosyssec/intdet1.htm

Network Intrusion Detection: An Analyst's Handbook, Second Edition
http://www.newriders.com/books/title.cfm?isbn=0735710082

Network Security Information: Intrusion Detection
http://secinf.net/iidse.html

Michael Sobirey's Intrusion Detection Systems page
http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html

Talisker's Intrusion Detection System List
http://www.networkintrusion.co.uk/ids.htm

Open Source Security Testing Methodology Manual
http://www.ideahamster.org/osstmm.htm

Have a file extension and don't know what it is? This is a great
database: http://filext.com/

Posted By,Interceptor at Suggest A Fix Support Forums

Firewall Forensics (What am I seeing?)
http://www.robertgraham.com/pubs/firewall-seen.html

The FBI's Magic Lantern Whats next?
http://www.wnd.com/news/article.asp?ARTICLE_ID=25471

NOTE***

this company does not hide the fact that it collects user info......however, several
websites using this one have been found in violation of how the info is used..

http://www.interhack.net/news/cm-tracking.html



This one is a Bad one

http://www.poenews.com/inhouse/vx2.htm

Test the security of your email system!
Is your email system secure against email viruses and attacks?

http://www.gfi.com/emailsecuritytest/





Useful info - XP services list

http://www.blkviper.com/WinXP/servicecfg.htm

Netscape flaw leaves cookies unsecure
http://www.infoworld.com/articles/hn/xml/02/01/29/020129hnnetscape.xml?0129alert

Engineers are working to fix a glitch in a Microsoft Web server that has
prevented Windows XP users from downloading software updates,
including a patch for a security hole, a company spokeswoman said Monday.

http://www.zdnet.com/zdnn/stories/news/0,4586,5101730,00.html?chkpt=zdnnp1tp01

The FBI has Strongly Recommended that
All Users Immediately Disable WinXP's
Universal Plug n' Play Support


Steve Gibson is back with a vengeance; he's addressing another one of
Microsoft's oversights with the release of UnPlug n' Pray. With it, you
packets on port 5000. "What the heck is that supposed to mean?!"
Universal Plug and Play. If you don't understand what it
is and what it does, then the FBI is encouraging you to disable the feature altogether.
Ouch. Now, this isn't the same thing as regular Plug and Play. Kinda like
how Java and JavaScript are two totally different beasts? Check out
Steve's page; he did a bang up job at explaining UPnP. You can disable
the service manually: right-click My Computer | Manage | Services and
Applications | Services. Then, right-click Universal Plug and Play |
Properties | Startup type: Disabled. Or, download the free utility
(unless 22k is too big a file for you).

& XP users have a look at this
XP-AntiSpy 3.0 Date added: 12/10/2001
Developer's web site
enhance XP's privacy

http://www.webattack.com/get/xpantispy.shtml
Please make sure what you d/l is v3.31 - that's the latest one.


Now here is a great site for win XP Tweak's

***VIRUSEYE ALERT - 28th January***
There is a new virus in circulation with the key details as follows:
· Virus name: W32\Myparty.A-mm
· Official name: W32\Myparty.A-mm
· Number of copies seen so far: 5774
· Time & Date first Captured: 26/01/02
· Origin of first intercepted copy: Canada
· Number of countries seen active: 67
· Top three most active countries: GB, US, Italy

Technical Details:

SUBJECT:

new photos from my party!

BODY:

free web hosting | free website | Business Hosting Services | Free Website Submission | shopping cart | php hosting

Hello!
My party... It was absolutely amazing!
I have attached my web page with new photos!
If you can please make color prints of my photos. Thanks!

For up-to-date statistics on this virus and others visit: http://www.messagelabs.com/

NEWS: Version 1.2 is an effective cure against more "persistant intruders" like SEXHOUND and
MYCPWORLD.
THE PROGRAM
StartPage Guard (SPG) protects your PC from cyberscam, by monitoring status of your internet
browser StartPage and preventing it from any unauthorized changes.

FEATURES
* ALWAYS remember user-selected StartPage.
* Alerts if start page has been changed.
* Detects and reports transparent-redirect attempts.
* Can automatically revert to user-selected start page without user interaction.
* Deals with disabled (grayed) set-startpage-address buttons on IE.
* Simple and user friendly interface.
* Whole program is a single, small (300+k) file, written in C++.
* Install / uninstall included.

http://www.pjwalczak.com/spguard/index.php

Lavasoft has released the newest reflist for AdAware 5.83. 083-16.08.2002.
Here to be taken to Lavasoft's download page.

	Could it be Spyware ? Enter the name of the software and find out

Not sure if it has spyware? Then click here and find out! Put this on your site.

If you have any suggestions?
Notice a dead link?
Then please E-mail me.
Click Me


Privacy Policy

Top

SUBSCRIBE TO LOCKERGNOME TODAY! Windows Daily Digital Media Tech Specialist Bits & Bytes Penguin Shell