Jooske's Blog on security

Identity theft

2009-02-21T12:38:00.002+01:00

Dear visitors,
There is an abusive case of identity fraud / theft in the Netherlands.
A very abusive smear forum thinks to have me identified as a person with maybe the same name as somebody else and added all kinds of sensational gossip to the subject.
It is not me and i don't think all which was written belongs to the person either. If it all was true one should be aged at least two hundred years on Internet to be able to do all that and all at the same time and place. Impossible.
Probably a very frustrated webmaster and his blond angels.
So be warned. I take full distance of all that childish and abusive gossip which has nothing to do with me.
Of course criminal court is informed in the meantime. As identity fraud and stalking are supposed criminal activities even in the Netherlands. The webmaster has been identified plus his abusive team.
Very sorry for this unwanted confrontation. It's proof of staying away from the kind of forums.

Other people came with proof of being infected by visiting that forum, with trojans like win32/agent.BHO.trojan, which is used as a downloader and can be manipulated to compromise your system, alert.exe, which has the kind of options depending on it's programming, various keyloggers.
Further the webmaster collects all IP addresses for further abuse. If they come visiting from competitive fora he bans them immediately on IP and installs a trojan.
The kind of fora to keep far from ever in your life.

But i am not the person abused and smeared in that forum.

Long time no see

2009-02-12T16:26:00.003+01:00

Dear visitors,
Due to many circumstances i didn't really update this blog.
Many changes occurred. For instance after a long pause DCS came up with new security software. No more trojan scanners which was the end of TDS, Trojan Defence Suite loved by many world wide. Which was for the world known trojan and virus definitions coder reason to change jobs.
Cryptosuite went with the developer Jason Annice to his new company Ghost Security where he created various fine programs as well.
Honestly said i lost myself somewhat in the new circumstances.

So for recent information about all these products and companies please visit the developers sites and the Wilders Security Forum.

People who asked (thanks for asking!) don't worry about me, I'm fine and busy not sure about my own next steps yet.
I do feel the nice warm and honest atmosphere ever in that forum and the stuff we were dealing with, the education and joy.
So if you're serious about computer security please keep frequenting those sites mentioned! :)
Thanks and till next contact!

Translation software and websites

2005-10-09T11:15:00.000+02:00

Have your software and websites translated.
Reliable and fast. It does drive more customers to your products and information.
You can have spoken tours eventually in combination with msagents.
We do voiceovers and written translations of software, websites, manuals, interpretation for phone and radio, etc.
English to Dutch, spoken and written, Spanish to Dutch spoken only.
For other language pairs i can put you in contact with very reliable and experienced translators all only translating to their own native languages.
See my profile http://www.proz.com/pro/115630

Free scanner + repair for infected JPEGs (for MS04-028)

2004-10-22T22:35:00.000+02:00

As many of you would know there is a critical vulnerability that allows attackers to gain control over a remote system simply by enticing the victim into viewing a specially-crafter JPEG file.

A free scanner has now been released to help with the detection and disinfection/repair of JPEG files infected with MS04-028 exploit code.

The scanner is available in both console and GUI user interfaces, and at less than 30kbs in size it's a quick download and easy to use. More information and the direct download link can be found here: http://www.diamondcs.com.au/jpegscan/

Please help us spread the word, and please share with your friends and colleagues to help reduce their chance of infection.

Enjoy the program.

CryptoSuite

2004-06-19T06:10:00.000+02:00

Looking for encryption software? If you have any important documents you should DEFINITELY be considering it. It is very easy for others, such as family members, governments, police and hackers to see information stored on your computer.

What you need is a program which makes that data un-readable to anyone but yourself, this way you can keep those files on your computer like you would any file and be certain that no one else can view it. Even the military and your government.

CryptoSuite is a powerful encryption program that not only protects and encrypts data on your PC, but also allows you to have secure conversations and remove important information from your hard drive forever using secure file deletion.

CryptoSuite was in development for 15 months prior to it's first release and will continue to be updated into the future for free!

I definitely love the encrypted chat option in it, which you can host on your own PC in stead of some far away anonymous chatserver, you know what is happening, who you invite to login to your conversation on your system. Invite a whole group, friends, colleagues, family reunion, quick business meeting online from many locations. Think of secure conversations for business use.

Fire up Port Explorer and you can see the person logging in, check the datapackets in the socket spy, look in the Port Listen in TDS on that port and see the datapackets going by fully encrypted as they go over internet.
And of course Port Explorer enables you to end conversation with one person from a group while closing the host leaves not any trace your conversation ever existed on that whole big internet.

CryptoSuite

New program for DCS: Process Guard

2003-10-27T14:34:00.000+01:00

Today Diamond Computer Systems released a new program, Process Guard, which will guard your system's processes for unauthorised terminations like for instance by trojans.

New program available!
Diamond Computer Systems ProcessGuard

What is DiamondCS Process Guard?
DiamondCS Process Guard is an advanced security system that protects both system and security processes (as well as user-defined processes) from attacks by other processes, services, drivers, and other forms of executing code on your system. The first program of its kind, Process Guard is made possible by a kernel-mode driver that securely controls process-to-process access in a relatively simple but technically efficient, safe, and secure manner. Although Process Guard is a very powerful program due to its low-level nature, its intuitive graphical interface actually makes it very easy to use for both novice and advanced users alike.

Please understand that this is the very first release of this program, and due to its low-level nature, we're anticipating some minor issues to be discovered. If you do experience any issues, simply email admin@diamondcs.com.au
Also visit our support and information forum.
At this stage the only known issue worth mentioning is that, in some cases after you restart your computer, you may get an error message from Process Guard saying that it couldn't attach to the driver. This is a minor issue and can be ignored - it will be fixed in the next update, and after seeing the message box, you can simply run Process Guard manually and it will start up just fine.

We hope you enjoy the release of this new program - please help us spread the word!
Get to the site ProcessGuard and to the /processguard download pages for the free evaluation download and purchase!

In the meantime we're at ProcessGuard version 2.000 released 25 march 2004.

Recently in September 2004 version 3.000 was released, which deals with the XP SP2 issues and some more features and enhancements are included.

No single moment without this new layer in securing your system!

REVIEW: 11 port-to-process mappers (Security Administrator magazine article)

2003-10-14T15:43:00.000+02:00

A wonderful and very comprehensive review about port-to-process mappers, in which DiamondCS Port Explorer and OpenPorts (the commandline version) scored really high.

Roger A. Grimes (author of the famous book "Malicious Mobile Code: Virus Protection for Windows") has just released a new article for Security Administrator magazine. Possibly the first article of its kind to approach this subject matter, it looks into port-to-process mapping/port enumeration, and compares 11 programs (including Port Explorer, OpenPorts, TCPView, FPort and more).

Roger's conclusion: "The strongest contender in this comparative review is DiamondCS, with its GUI utility Port Explorer and its command-line tool OpenPorts. Sysinternals' TCPView is a good backup choice, if you can avoid the stability problems I experienced on NT. Foundstone's Fport is a good alternative to OpenPorts in the command-line port-enumerator field. But if you perform network security or administration for a living, you should have a copy of Port Explorer."

Full article
http://www.secadministrator.com/Articles/Index.cfm?ArticleID=40313&pg=1

Diamond Computer Systems

2003-08-27T11:17:00.000+02:00

I publish here links where the software is available and where to get info and support.
The DCS products are top notch and support second to none.
Perth - Australia based company with long and deep experience, specialised in trojans and worms detection and protection.

TDS
Famous is their TDS, Trojan Defence Suite, a series of tools and utilities, scanners to detect all possible nasties on your system, trojans, worms, rats, backdoors, spybots, keystrokes, dialers, drats, downloaders, fight them and put right what is necessary. Warnings for registry changes and easy removal of registrykeys and alarming files. On the registered version is the exec protection available, the resident part which checks every file for possible malicious code before it gets permission to execute.
An other attractive extra is the ability to add scripts for own functions; in the Private TDS registered operators only forum are other operators working together on most interesting scripts.
TDS supports Microsoft (r)(c)(TM) speech and msagent technology enabling voice commanded or timed actions.
The radius detection scanner is the strongest, with daily updates (mo-fr).
Yet TDS is for beginners and power users both, using it as a one button click scanner or all the other 50 tools.
The current version is TDS-3, the version 4 family is in the build. Don't let this keep you from evaluating and registering the software as registered users are upgraded to TDS-4 for free. TDS is very well worth it's money!

WormGuard
Another strong product from DCS development is WormGuard, created to block worms and malicious scripts. Before it allows any suspicious file it pops up with a warning, telling you why it was blocked and enabling you to look inside the file in the safe mode without harming your system in any way.
WormGuard is working all in the bottom of your system without using any resources, till it jumps up on blocked code.
You can easily configure the blocking messages so all family or co-workers can understand what to do, or hide the "allow" buttons from other users. You can add file names to the blocking list and exclude areas and files from checking.
WormGuard 3 is the current version, version 4 is all rebuild from scratch into an even more powerfull tool with several additional functions, soon to be released for beta-testing. Don't let this hold you back to get the evaluation version and register your copy, as licensed WG-3 users are upgraded to WG-4 for free!

Port Explorer
The new tool from the DCS development, the first port-to-process mapper for all windows versions, including windows95/98/me. Translated in eight languages by native speakers, to make this already very easy to use tool even more understandable. In one blink of an eye one can see in the GUI all connections from and to your computer system, suspicious and hidden connections show up immediately in red, so you know which processes and sockets to give immediately closer attention. You are able to sniff on the data packets send to and from your system from every socket, you can block sending and/or receiving and kill unwanted processes and trojans. Every action is logged, also when you're not around your computer. A very nice tool where you can decide and save your eye candy settings.

DiamondCS created many tools, all available as freeware and some with a pro version too, like the
console tools
RegProtection
AutostartViewer
APM (Advanced Process Manipulation)
OpenPorts
etc.
DiamondCS software

Accessing Diamond CS via Clickbank

2003-08-27T09:37:00.000+02:00

For the people who have problems accessing the sites via the Clickbank, there are several options which might cause this:
* In the HOSTS file updates there are several entries blocking Clickbank. Make sure you remove those blocking entries. Somebody told me he renamed his HOSTS file temporary to spare himself the search for the many Clickbank entries in that file, to be able to enter any link via Clickbank at all.
* I noticed you have to remove about all privacy blocking like the Privacy header information, allow banner advertisement, cookies, ActiveX, maybe java.
* Just adding Clickbank to the trusted zone in Internet Explorer might not be enough.
I'm very sorry for this inconvenience. On the other hand Clickbank is a known secure way for internet business where your private data and credit card is safe so one can safely lower some security.
Thank you for your business.
DiamondCS software

Welcome!

2003-08-24T19:43:00.000+02:00

This is my first webblog, intended to write about security on your pc, networks, internet as a whole, tools, software, tips about good software and where to look for more info. If you want to communicate with me find me in the forums mentioned in the sitebar, DCS, Wilders and Helpcomputer forums.
Let me know if you want to be added as a member to contribute to this webblog with interesting writings about computer and internet security and software tools for that.
Enjoy!