Smokey's Security Weblog

veritas odium parit

ANNOUNCEMENT: Change Siteowner- & Leadership Smokey’s Security Forums


Smokey’s was founded and launched by me August, 2006. Eleven years after forums establishement it was about time for my full retirement hence transferred ownership domain and site leadership as well to Mr. Pete Kendell, on internet better known as Starbuck.

I have all confidence in Pete that he will continue Smokey’s in the demanded straight and reliable way the site is known for, past years he already was my substitute and is very capable and fully qualified to run the site. Current policies and rules will not be changed by him, important too : site name Smokey’s Security Foums  will never be changed.

Pete is a man dedicated to all facets of computer security, he is the best successor I can wish. With him the very high site standards will be unaltered continued.

Dave Mook aka Smokey

Retired Owner Smokey’s


May 7, 2017 Posted by | Alerts | , , | Leave a comment

How to defend yourself against Microsoft’s never-ending push efforts regarding Windows 10

At the moment Microsoft is pushing Windows 10 to the point where it’s getting really annoying, Microsoft’s never-ending efforts to shove down Windows 10 our throats is ridiculous, annoying and is witnessing a very bad and blameworthy attitude, arrogance and a complete lack of decency too. On regularly basis Microsoft invents new dirty tactics to archive their final goal: all Windows 7 and Windows 8 users should “upgrade” their system with Windows 10, the sooner the better.

Defending yourself against Microsoft’s sneaky efforts isn’t easy, but there’s hope: the free program GWX Control Panel will protect you against the annoying Microsoft Windows 10 upgrade attacks.

GWX Control Panel can be used to do the following on Windows 7 and Windows 8 (literal info from developers website):

– The Disable ‘Get Windows 10’ App feature removes Microsoft’s “Get Windows 10” nagware app from your notification area.
– The Prevent Automatic Windows 10 Upgrades feature checks for system settings that leave you vulnerable to unwanted Windows 10 upgrades and gives you the ability to fix them.
– The Prevent Automatic Windows 10 Upgrades feature also restores your Windows Update control panel to its normal behavior if it gets hijacked by Windows 10 advertisements or installers.
– The Delete Windows 10 Download Folders feature locates and deletes hidden Windows 10 installer files that Microsoft secretly downloads to your computer.
– The Delete Windows 10 Programs feature easily deletes hard-to-remove program files that are known to prepare your computer for Windows 10 upgrades.
– The program alerts you if your Windows Update settings change from one of the safer “download only” or “check only” options to “automatically install” behind your back and gives you the chance to fix it with the Change Windows Update Settings feature.
– The optional Save Diagnostic Info feature (in the right-click pop-up menu of the title bar) generates enhanced diagnostic reports that give you detailed information on any settings GWX Control Panel finds that leave you open to unwanted Windows 10 behavior.
– The optional “Monitor Mode” feature runs quietly in the background watching for unexpected system changes, and alerts you as soon as any new Windows 10 settings or files are detected.

Screenshot GWX Control Panel:


When you enable GWX Control Panel’s optional Monitor Mode, a new icon will appear in your notification area that will alert you if GWX Control Panel detects any unexpected files or settings that leave you vulnerable to Windows 10. Once enabled, GWX Control Panel will start and quietly monitor your computer whenever you log in to Windows.

I have tested the program with a Windows 7 system, it works flawlessly. I recommend the program without any hesitation to all Windows 7 and Windows 8 users!

More info about the program, a how-to and download also on developers Ultimate Outsider GWX Control Panel blog.

January 8, 2016 Posted by | Uncategorized | , , , , , , , , | Leave a comment

Norton Internet Security v22.5.4.24 (patch 22.5.4) update released in all supported languages

I’m pleased to announce that there is an update available (v22.5.4.24) for the Smokey’s Choice Awarded top-notch security software Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Norton Antivirus and Norton Security Suite. As with all previous Norton Security software updates, this version is being released in a phased manner. The update is available in all supported languages. To download it, run LiveUpdate.

Changes in this release

* Fixes an issue where ‘iTunes Hangs when trying to Eject’
* Fixes an issue where ‘Display driver issues leading to ‘product not starting’
* Fixes an issue where ‘Nothing happens when I click on Scan’
* Several fixes for desktop flickering issues’ and other problems with Win10 upgrades.
* Clean up left over items during a Windows 10 upgrade to prevent Live Update errors
* Fix for a crash in Hebrew specific layouts.
* Fixes the alignment issue on clicking help in main UI
* Fixes an issue where ‘Auto-Protect is Greyed out’
– and other fixes…

It’s easy to verify you have the update, just launch the Main User Interface, click on Help, and select About.


This update v22.5.4.24 is currently officially available via LiveUpdate only, however there is also the possibility for a direct download from the Symantec/Norton servers. You can install the downloaded update/patch over the top of your existent Norton product. This time too the update will be no problem at all, all previous Norton Security settings will remain unaltered after the update. The update will be accomplished within a few minutes, reboot is not not be required. Important: run LiveUpdate after updating to the new version!

Direct downloadlinks full version / update / trial / Norton Security v22.5.4.24 (patch 22.5.4)

– Norton Security ENGLISH Language:

– Norton Security with included Backup ENGLISH Language:

Norton Security and Norton Security with included Backup in all other supported languages: change language by changing to e.g. Norton Security 22.5.4 DUTCH:

October 4, 2015 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, Malware, Norton Internet Security, Phishing | , , , , , | Leave a comment

[NEWS] Malwarebytes Acquires Junkware Removal Tool (JRT)

Exciting news, the Junkware Removal Tool (JRT) acquisition by Malwarebytes will make the outstanding malware removal tool Malwarebytes Anti-Malware MBAM (detects and removes e.g. worms, trojans, rootkits, rogues, spyware, and more)  stronger and better.

MBAM Press Announcement:

SAN JOSE, CA – June 22, 2015 – Malwarebytes, the company founded to protect people and businesses from sophisticated malware attacks, today announced the acquisition of Junkware Removal Tool, a security program that searches for and removes potentially unwanted programs (PUPs) such as adware, spyware, and toolbars. The acquisition will integrate its definitions and tactics into the Malwarebytes product line.

Junkware Removal Tool owner and developer, Filipos Mouliatis, will also be joining Malwarebytes Labs out of Houston, Texas. “Malwarebytes is a highly respected anti-malware and anti-exploit company that I’ve known of for years, so I was excited to hear about the possibility of working together,” said Mouliatis. “I look forward to helping further develop software that will destroy potentially unwanted programs such as adware and spyware.”

“Let’s face it, PUPs are a growing problem, and the Junkware Removal Tool is a fantastic addition to strengthen our ability to address them,” said Malwarebytes founder and CEO Marcin Kleczynski. “We’re proud to be integrating this technology. Not only that, Filipos’ creativity and ingenuity are great additions to the Malwarebytes team. With this move and others to come, we’re doubling down on expanding our PUP protections, and our customers will see the benefits very soon.”

Junkware Removal Tool is a popular download on sites such as CNET, MajorGeeks, and The security utility consistently ranks in the top 10 downloaded Windows apps on all three sites, and has had more than 4 million downloads on alone.

“At, we’ve found that adware and PUPs have increasingly become one of the largest sources of problems for our visitors,” said Lawrence Abrams, owner of “With Malwarebytes and Junkware Removal Tool being two of the most popular downloads, it’s going to be exciting to see how these two programs will join forces to further protect our visitors against adware and PUPs.”

Malwarebytes has already taken an aggressive stance on targeting and removing PUPs, adware, spyware, and grayware. Acquiring Junkware Removal Tool reinforces its commitment to fighting not only harmful and deceptive PUPs, but also annoying and misleading ones.

The integration of Junkware Removal Tool within Malwarebytes Anti-Malware will take place over the next few months. The stand-alone JRT program will remain intact for those who wish to use it.

Announcement source: Malwarebytes Press Center

Malwarebytes Anti-Malware (MBAM) homepage: here

June 22, 2015 Posted by | Uncategorized | , , , , , , , , , , , | Leave a comment

Review Updated 2015 MateGo MG380G Full HD – SONY CMOS sensor – built-in-GPS Dashcam Car DVR

Contents Overview Shenzhen Onstar MateGo MG380G Dash Cam Review

1. Matego MG380G picture gallery
2. Reason for purchase
3. Dash cam specifications
4. Review
5. Conclusion/verdict

6. Where to purchase

– 6.1 Where to purchase an action/dashcam
– 6.2 Where to purchase a spare power cord
– 6.3 Recommended action- and dash cam retailers & vendors
– 6.4 Non-recommended/inadvisable action- and dash cam retailers & vendors

7. Update: review MG380G by Dashcamtalk

8. Download Section

– 8.1 Download User Manual Chinese/English MG380-380G
– 8.2 Download Firmware Updates
– 8.3 Download Video Registrator/GPS Track Player for DVR, Dash Cam (Registrator Viewer)


1. MG380G picture gallery














 2. Reason for purchase

I bought the MateGo MG380G dashcam because used hardware is similar to the popular and very well reviewed Panorama G (Street Guardian SGZC12SG) cam, body and hardware are identical with eachother so there’s no difference at all between the cams. The MG380G sells under other brand names as well too.

Despite the fact that all these cams are produced by manufacturer Shenzhen Onstar Technology Co. Ltd. there is only one huge difference between mentioned dash cams: the price. The MateGO MG380G is a low cost camera, the branded versions sell at a premium price so my choice for the MateGo was very easy: why paying a premium price for a top-notch cam when the very same cam can be bought for an affordable, relative low price?

3. Dash cam specifications

– Manufacturer: Shenzhen Onstar Technology Co. Ltd.
– CSR Zoran Coach 12P Processor
– A+++ build quality
– FULL HD 1920x1080p@30fps, 1280x720P@60fps
– 2.7″ Smart “Capacitive” TFT LCD Touch Screen, 24-bit color
– 2015 Sony Exmor IMX322 high-sensitivity CMOS Sensor
– 14MP, 7 Element Glass strong sensitivity Lens / 154 degree panorama diagonal viewing angle
– Auto White balance
– Built-in GPS with Auto Date Time Set
– Date/time stamped video
– BOSCH Event G-sensor
– Built-in smart motion detect algorithm with pre-recording
– Photo / Driving Recording / Parking Recording / Emergency Recording
– 15Mbit/s Bitrate H.264 MP4 (see remark and picture in chapter 4 of this review)
– No interference to your GPS navigation or FM
– Built-in MIC, Speaker
– High Heat resistant Supercapacitor
– Outstanding Day and Night Vision
– Built-in wide dynamic rage (WDR) image processing
– Wide operating temperature range from -20 to 70˚C
– A/V output support
– Power supply: direct 12/24V and Micro USB 2.0 5V/1A
– exFAT as well FAT32 file system supported
– Up to 128GB SDXC/SDHC full size SD Card (Class 10 Required), 256GB and 512GB SDXC SD Cards *probably* supported too.
– Dash Cam dimensions are 103mm x 63mm x 41mm
– Durable/high quality ABS engineering plastic shell material

– In the box: Onstar MateGo MG380G, Suction Cup Mount, 12/24v Power Cable, USB Cable, English User Manual.

4. Review

Physical casing of the MG380G has very good build quality, compared with other dashcams I had before the MG380G has best build quality.

Using the cam the first time in my car was very easy and uncomplicated, connected the cam to car’s 12/24V power supply and the cam was recording straight away, without any prob. You can also connect the cam with the micro usb port to provide the cam with power, this worked flawlessly too. Only thing you have to adjust the very first time you power-up the cam is date/time and timezone, however future date/time adjustments aren’t demanded anymore because integrated GPS module will adjust such automatically.

The GPS module is working extremely well, after power up the cam there is a GPS fix within just a few seconds. During recording there is also no lost of GPS signal/fix so the module is like the cam itself of high build quality.

The cam has a top quality 2.7″ Smart “Capacitive” LCD Touch Screen, this is the reason settings adjustment is very easy. Touch screen is reacting very well.

The cam has exFAT formatting firmware so no need to format a high capacity SD card in your PC before use, just stick your (SDXC/SDHC) SD Card in the cam and the cam will format high capacity SD cards >64Gb in exFAT. I tested the cam with 8, 16, 32, 64 and 128GB cards and all cards were working without any glitch. I also tested the cam with Micro SD Cards with adapter, that worked fine too. Important: don’t format a (new) SD Card in your PC, let the dashcam do that job! FWIW in the cam I use a full size Lexar Professional 633x SDXC 128GB card, till today this card runs without any malfunction whatsever.

Cam has an 2015 updated Sony Exmor IMX322 sensor with excellent quality “WDR” function integrated, it provides superb quality night time recording, the best I have seen till yet. Day time recording quality is also very good.

Lens is capable of taking in 1080p footage at 30fps with a real viewing angle of 154 degrees, this is the reason this cam will miss absolutely nothing.

Noteworthy is the fact this cam use a capacitor instead of a battery, this means that the cam has no problems at all with high temperatures in your car.

Cam firmware (recent firmware is v1.02.00, see below for downloadlink) is working very well, OTOH no possibility to fine-tune recording settings like e.g. White Balance and EV.To be honest this cam don’t need fine-tuning at all because the cam is adjusting all settings demanded for best recording quality automatically. But: many people want to have the possibility to make some adjustments by themselves.

MateGo MG380G’s bit rate: there are discussions and claims that MateGo branded MG380G’s runs with a bit rate of 11-12Mbps, and that only the non-branded MG380G dashcams has a bitrate of 15Mbps. Frankly said, all these claims are bullshit, I can assure you that the MateGo branded MG380G dashcam runs with a bitrate of 15Mbps (see image below, it shows the bit rate of my MateGo MG380G, firmware version 1.01.03, however with firmware versions 1.01.01 and 1.01.02 the same result):


5. Conclusion/verdict

The Onstar MG380G is probably best bang for the buck, it’s a top-notch dashcam with very good build quality. Used hardware is recent and up-to-date, all hardware components are of high quality. Daytime time recording quality as well recording quality during night is superb. Firmware needs improvements regarding manual White Balance and EV fine tuning. Logs only in KPH, no possibility to change to MPH. Included USB cable is too short however included 12/24V power cable is long enough.

I know you can buy much cheaper dashcams, same is valid for more expensive cams. But please consider that this cam is very reliable and therefore will provide you with that what really counts: useful proof at the moment you need such, e.g after a car accident. I can recommend this cam without any hesitation.

6. Where to purchase

– 6.1 Where to purchase an action/dashcam

Important issue: where to purchase an action/dashcam? You can buy them on many places like e.g. Amazon, eBay, AliExpress,, local vendors and online dealers/vendors. It’s hard to find a reputable vendor not only selling quality cams but also providing good support and service during and after the purchase. And keep in mind, a good feedback score on sites like e.g. Amazon, eBay or isn’t a guarantee at all that seller is reliable.

As I told before it’s very hard to find a reliable action- and dash cam retailer, hence in this review we have two retailer/vendor dedicated sections: 1) 6.3 Recommended action- and dash cam retailers and 2) 6.4 Non-recommended/inadvisable action- and dash cam retailers. Titles of these two sections are speaking for itself, by recommending or not recommending certain retailers we try to help action- and dash cam buyers to find  a reliable retailer, or opposite, to avoid certain retailers. Note to retailers: if you are an action- or dash cam retailer/vendor, no matter what brands you sell, and are opinion you are reliable please fill out the contact form on bottom of this review completely, if we like what we find out about you there’s the possibility we will add you (for free) to the survey of recommended retailers. This survey will include links to your sales channels.

Personally I had very bad experiences with a well-known eBay dashcam seller located in China (as I described in a previous blogpost) so many times it’s a matter of having good luck to find a decent seller. Finally, don’t look only for cheapest dashcam price when you have the intention to buy a cam, service and support is equal (and probably even more) important. Most of the time it’s better to spend a few bucks more and purchase a dashcam from a reliable and decent seller instead of preferring a cheap seller.

– 6.2 Where to purchase a spare power cord

It’s always handy to have a spare power cord, I bought a LSON quality cord for my MateGo MG380G for a cheap price on Price is only $3,38, with free shipping, this cord will fit MateGo branded as well all non-branded MG380G dashcams, Panorama G – Street Guardian SGZC12SG and Drivewatch 380G cams included (and many other dashcams too). Cord specifications are:

Article: Power cord w/ On / Off Switch
Brand: LSON
Color: Black with red switch
Material: ABS
Power Supply: DC
Input Voltage: 12~24V
Output Voltage: 12V
Output Current: Max. 1500mA
Interface: 3.5mm plug
Cable length: 150cm
No interference to your GPS navigation or car radio

– 6.3 Recommended action- and dash cam retailers & vendors

Pier28, Inc. Pros: top-notch and highly appreciated seller providing excellent service, support and after-sales. Cons: prices are above average. Sales channels: webshop, and

– 6.4 Non-recommended/inadvisable action- and dash cam retailers & vendors

– eBay seller estore009 (unreliable seller: delivers faulty and/or Dead-On-Arrival (DOA) cams, extremely long time to deliver, very bad after-sales)

– Amazon seller Drivewatch (cheating/dishonest seller: promotes his business and dash cam 380G on Amazon by the way of fake customer reviews)

 7. Update: review MG380G by Dashcamtalk

Update July 12, 2015: the well-known Dashcamtalk forum recently produced a Matego MG380G review too. Conclusion of the review:

“The MateGo MG380G is a good buy given its excellent video quality, low price and full features . At the $100 price range, you will not find a better camera for night time video quality. This camera comes with a lot of features and best night video quality for $100 but it is not the most discreet. If you want a discreet camera consider the Mini 0805 but if you want a slightly more premium product, get the MateGo MG380G.”

Note: Dashcamtalk closes the review with a survey where to purchase the MG380G for lowest price, and is recommending i.a. eBay seller estore009. I fully disagree with estore009’s recommendation by Dashcamtalk, IMO it’s a very unreliable seller. It’s not without reason I’m saying so, in a previous blogpost about the Seezeus Shadow Recorder GT550WS dashcam I already made a statement about estore009:

“Stay far away from estore009, items sold by him are or could be faulty, service is a non existing word for him”

8. Download Section

– 8.1 Download User Manual  MG380/MG380G in Chinese/English

User Manual  Onstar MateGo MG380/MG380G  in Chinese/English language can be downloaded here, it’s downloadable from Google Drive.

– 8.2 Download Firmware Updates

Firmware v1.01.03 (2015/06/16) Onstar MateGo MG380/MG380G can be downloaded here, it’s downloadable from Google Drive. It concerns the original, unaltered Shenzhen Onstar MateGo MG380/MG380G firmware, don’t try to flash the firmware on other dashcams.

Main changes firmware v1.01.03

Original text (in Chinese language):



Literally English language translation:

The main changes are as follows:

Optimize IQ to join all day long exposure algorithm

Update 2015/10/29: firmware v1.01.04 is released, there is no list of firmware changes available. This Onstar MateGo MG380/MG380G firmware can, like previous firmware v1.01.03, be downloaded from Google Drive here. Firmware upgrade instructions are included.

Update 2016/01/06: firmware v1.02.00 is released, this is an important firmware upgrade, will optimize video quality. This most recent Onstar MateGo MG380/MG380G firmware can, like previous firmware v1.01.04, be downloaded from Google Drive here. Firmware upgrade instructions are included.

Note: keep in mind that while flashing an electronic device with updated firmware can be beneficial to you, the risks that are involved can sometimes outweigh the benefits for the user. Flashing an electronic device can be risky and when done improperly, you may “brick” your device. “Bricking” a device renders it entirely useless.

– 8.3 Download Video Registrator/GPS Track Player for DVR, Dash Cam (Registrator Viewer)

There are several Video Registrators/GPS Track Players available, however I strongly advise to use Registrator Viewer, IMO it’s Simply The Best Player For Dashcams you can get, it’s also free.

Very sadly the Registrator Viewer developer was killed in a tragic motorcycle accident some months ago, therefore his website is expired and (of course!) you can’t download there the software anymore. However the software is still available and downloadable via my Google Drive, download the latest version of Registrator Viewer here. User Manual in English can be downloaded from Google Drive too, download here.

Demanded Operating system Registrator Viewer: Windows XP / Vista / 7 / 8 [x32 and x64]. Not known it will work with Windows 10.

System requirements:

– For playing FullHD video requires a processor with a total frequency of all cores of at least 4 GHz or support DXVA (hardware decoding) in the graphics card.
– For the user interface requirements are negligible.

May 31, 2015 Posted by | Action & Dash Cam Talk: News | , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , | 58 Comments

Most recent firmware download for Seezeus Shadow Recorder GT550WS

For security reasons on the road I use a dashcam (dashboard camera) in my car, like many others also do. My dashcam choice to use was a Seezeus Shadow Recorder GT550WS GPS 2.7″ LCD HD 1080p WDR GPS Logger Dash Cam Car DVR + GPS module, this for reason of the fair price, many useful features/options and very good clear picture quality by daylight as well at night.

Why to use a dashcam? The answer is simple: to be able to provide video evidence in an event of an accident, there are many idiots on the road and it can become very handy in case such an idiot will cause an accident. But not only pure idiots on the road, also many careless people aren’t watching the road in the way it should be, they use their cellphone, laptop, navigation and other equipment during driving and lose demanded attention for what’s really going on.

I noticed there’s a real need for dashcam firmware updates, many people are looking for it but can’t find a download source. That’s the reason I offer you the most recent firmware v2.6G for the Seezeus Shadow Recorder GT550WS. Keep in mind this firmware is only suitable for mentioned dashcam, don’t try to flash it on a different dashcam. And when you brick your dashcam during a firmware flash you will lose dashcam vendor/seller warranty.

On Google Drive you can download the GT550WS most recent firmware v2.6G here YouTube instructions how to flash the firmware here It’s an instruction movie for a different dashcam however firmware flash procedure for the GT550WS is similar.

Drive safely!

Note: because the Seezeus Shadow Recorder GT550WS died very soon (read the story below) I had to buy a new cam, this time I decided to go for a Onstar MateGo MG380G. With the MateGo I’m really happy, my review about the MG380G can you find here. In the review there’s also a downloadlink to the most recent Onstar MG380G firmware v1.01.03, dated 2015/06/18.

Update May 31, 2015: I bought the cam first week of December 2014 from a eBay seller named estore009, located in China, and received the item more than 1 month later, in the middle of Jan. 2015. Starting with the first day I used the cam there were problems: with the firmware, with a faulty GPS module, cam also stopped regularly with recording, and finally the cam freezes on the start screen during boot-up and therefore is the cam useless now forever. Mind you this all happened within 4 months after I used the cam for the first time, and long delivery time also didn’t make me happy at all. You will understand atm I’m really pissed, and asked seller estore009 for a refund. Seller isn’t willing to do so, and even don’t want to talk about a partial refund. IMO after all the problems I had with the cam seller should provide decent service hence a refund could be the only acceptable solution but as told before seller refused such. Therefore my advice: stay far away from estore009, items sold by him are or could be faulty, service is a non existing word for him.

March 1, 2015 Posted by | Action & Dash Cam Talk: News, Comparisons, Reviews, Tests | , , , , , , , , | 4 Comments

[How-to] Vulnerability test Superfish, Komodia, PrivDog & similar

Probably you have heard about the Lenovo debacle, many of their laptop series are preloaded adware/spyware Superfish (you can also call Superfish a dirty piece of malware) that will intercept all your secure connections and this will allow criminals to do it too. Superfish uses an “SSL hijacker” (Komodia Redirector with SSL Digestor) and an untrustworthy Komodia root certificate. Komodia Redirector with SSL Digestor installs non-unique root CA certificates and private keys, making systems broadly vulnerable to HTTPS spoofing. In this way an attacker can spoof HTTPS sites and intercept HTTPS traffic without triggering browser certificate warnings in affected systems.

Many other softwares do similar because Komodia sold its malicious kit to other companies as well, some of these companies/vendors are e.g. Atom Security, Inc, Infoweise, KeepMyFamilySecure, Kurupira, Lavasoft, Qustodio and Websecure Ltd. There will be others as well.

Superfish removal can be done via Windows standard add/remove programs utility, find Superfish Inc VisualDiscovery, tick it, and click uninstall. Uninstalling Superfish and other Komodia-type programs does not remove the root certificates, so you need to do this: type certmgr.msc into the Windows search box, right click on the programs name, and select “run as administrator” from the pop-up menu. Subsequent click the action menu item and select “find certificates”. Type Superfish etc into the search box and click the “find now” button. If you find an unwanted certificate, right-click and select delete.

Fwiw never download from unsafe places such as CNet’s or from Google search ads, downloading software from such places can be really dangerous, in many cases the downloaded software can and will be contaminated with adware, spyware and/or malware.

There’s a simple way to check your machine on the existence of Superfish, Komodia, PrivDog & Co, we advise you to visit the filippo vulnerability test page and perform the vulnerability test: Important: do the test with all browsers installed.

Instructions for identifying and removing a root certificate from Windows here:

Finally we know that many AV (antivirus) products will find and remove the Superfish, Komodia, PrivDog and similar crap, despite we still strongly advise to perform the filippo vulnerability test and to check your machine also on the existence of untrustworthy certificates.

March 1, 2015 Posted by | Uncategorized | , , , , , , , , , , , , , , , , , , , , , | Leave a comment

Ad Muncher ad- and poupup blocker will become completely free for everyone shortly

Today Murray Hurps, the Ad Muncher developer, announced that with upcoming Ad Muncher v5 the software will be free for everyone.

Murray Hurps: “Ad Muncher is normally available for $29.95, plus $19.95 per year after that, but will soon be available in exactly the same form as a completely free product. All users will receive the daily premium filter list updates, including users who were previously using Ad Muncher Basic”.

This is of course fantastic news, Ad Muncher is one of  (probably even the best) of the ad- and popup blockers and advertising removers there is so we all can be very pleased about Murray’s announcement. Nevertheless we all should keep in mind that Murray’s decision to make Ad Muncher a free product wasn’t easy, it’s very generous: besides his own need for earnings he have to pay salaries for three people and it’s going along with usual expenses.

We can expect that Ad Muncher will become free at the moment version 5 will be released, according to Murray version 5 release will happen shortly.

Finally, Murray also explained that those who have recently purchased Ad Muncher can ask for a refund if they’re still covered by the 30-day refund policy, but he explains too that every refund will reduce the chances of Ad Muncher surviving as a fee product. So please people, those who purchased recently Ad Muncher please support Murray and his Team and don’t ask for a refund.

From me a well-meant Thank You Murray, you are a great guy!

June 26, 2014 Posted by | Downloads, News | , , , , , | Leave a comment

Microsoft released emergency out-of-band update fixing IE zero day vulnerability

Today Microsoft have released an emergency out-of-band update (2965111) to fix a zero day publicly disclosed vulnerability in Internet Explorer (Microsoft Security Advisory 2963983). The vulnerability could allow remote code execution if a user views a specially crafted webpage using an affected version of Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user.

This security update is rated Critical for Internet Explorer 6 (IE 6), Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 6 (IE 6), Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers.

More info about the fix here: MS14-021 :Security update for Internet Explorer: May 1, 2014 The advance notification of the update lists Windows XP as among the affected platforms, indicating that it will be among the platforms patched, in spite of its support period ending weeks ago.

Users with Automatic Updates enabled do not have to do anything, although running Windows Update will apply the fix immediately.

May 1, 2014 Posted by | Alerts, News, Vulnerabilities | , , , , , , , , , | Leave a comment

How to enable LTE/4G on Samsung Galaxy Note 3 (SM-N9005)

Like me you have a fancy and expensive International Samsung Galaxy Note 3 SM-N9005 that conform specifications should be LTE/4G capable and nevertheless no LTE/4G ? It’s probably making you angry and mad, I assume you damn Sammy (again) for delivering a mobile phone that doesn’t do what it should do. Of course you have installed Android KitKat 4.4.2 but still no LTE option available via Start Screen > Apps > Settings > More Networks > Mobile Networks > Network Mode.

Normally in that Network Mode menu should be following options visible/available:

– LTE/WCDMA/GSM  (auto connect)
– WCDMA/GSM (auto connect)
– WCDMA Only
– GSM only

At the moment the mentioned  LTE/WCDMA/GSM  (auto connect)” option is missing you have a problem, you aren’t able to use LTE/4G. Don’t worry. there are several solutions/fixes to solve the lack of LTE/4G. Keep in mind that the solutions will only work with a rooted phone (up to you to take the risk of rooting, you will lose probably phone-guarantee because Knox counter will be tripped and security-wise there are also reservations).

The solutions (again, keep in mind my reservations about rooting your phone):

1. Change with a root explorer of your choice (e.g. Root Explorer, Solid Explorer or EF File Explorer) the value “false” in file into “true” by way of build-in text editor of the root explorer. The file is located in root/data/property. Be sure permissions of are set to rw, after altering the file save the file and make it read-only. Reboot your phone, now you will see and be able to pick the option  “LTE/WCDMA/GSM  (auto connect)” in Network Mode menu. Important: before altering ANY file on your phone be sure you have a copy of the original, unaltered file!!! Advantage of this solution: even after a phone reboot the option  “LTE/WCDMA/GSM  (auto connect)” will remain visible/activated.

2. When you are afraid or not tech-savvy enough to alter phone files you can download “Advanced Signal Status” on Google Play. Start the app, go into Advanced Info located on bottom of the app and subsequent choose  LTE/GSM/CDMA auto (PRL) in the first sub-menu of Advanced Info. In phone Network Mode menu option  “LTE/WCDMA/GSM  (auto connect)” will still not be visible but nevertheless you will be able to use LTE/4G. Disadvantage of this solution will be that after every phone reboot you have to start “Advanced Signal Status app” and reactivate LTE/GSM/CDMA option.

Please remember that LTE/4G will only work in area’s with LTE and your phone data-plan includes the use of LTE. Good luck and have fun!

April 6, 2014 Posted by | Advisories, News | , , , , , , , , , , , , | 60 Comments

Windows XP data transfer tools: Laplink PCmover Express for Windows XP and PCmover Professional

After April 8, 2014, technical assistance for Windows XP will no longer be available, including automatic updates that help protect your PC. Microsoft will also stop providing Microsoft Security Essentials for download on Windows XP on this date. (If you already have Microsoft Security Essentials installed, you will continue to receive antimalware signature updates for a limited time, but this does not mean that your PC will be secure because Microsoft will no longer be providing security updates to help protect your PC.)

If you continue to use Windows XP after support ends, your computer will still work but it might become more vulnerable to security risks and viruses. Also, as more software and hardware manufacturers continue to optimize for more recent versions of Windows, you can expect to encounter greater numbers of apps and devices that do not work with Windows XP.

To help customers on Windows XP prepare to move to a new PC, Microsoft announced a free transfer tool. They partnered with Laplink to provide Windows XP users with a free data migration tool called PCmover Express for Windows XP which copies your files and settings from your Windows XP PC to a new device running Windows 7, Windows 8 or Windows 8.1. This tool will copy your files, music, videos, email and user profiles and settings from your old PC to your new device, transferring across your home or work network, and even enables Windows XP users to customize exactly what they want to bring over to their new device. The free data transfer will NOT migrate your apps. Learn more and download the free version of Laplink PCmover Express for Windows XP here.

For Windows XP users wanting to transfer applications from their old computer, Laplink is also making available its software that migrates apps, files and settings called PCmover Professional at a special price – see here for details.

Sources: Microsft and Laplink

March 22, 2014 Posted by | Advisories, Alerts, Downloads, News | , , , , , | Leave a comment

RIP ASAP – Alliance of Security Analysis Professionals: 2004-2013

Regrettably I have to tell you that Smokey’s Security Forums isn’t ‘Site Member ASAP – Alliance of Security Analysis Professionals’ anymore, reason is simple: ASAP died.

I want to express my thanks to all the people dedicated to ASAP, this includes common and VIP-members as well ASAP Counsel and Site Owners.

A special Thank You to Corrine, (former) ASAP Secretary, she was the one keeping ASAP alive till the unavoidable happened.

August 9, 2013 Posted by | News | , , , , | Leave a comment

How to Get MSN (Live) Messenger Back and beating Microsoft’s Skype

It’s obvious that countless people are very disappointed that Microsoft has substitute MSN (Live) Messenger by Skype, most people just want to chat and don’t need all the whistles and bells of Skype at all.

Past days Messenger users received one of following messages:

A newer version is available. You must install the newer version in order to continue. Would you like to do this now?


A newer version has been downloaded and is available. You must install this newer version in order to continue. Would you like to do this now?

This is just an ordinary Microsoft attempt to force MSN Messenger users to what Microsoft is calling an ´upgrade´ to Skype, majority of the MSN Messenger users see it entirely different and are pissed they are not able anymore to use Messenger, the ´upgrade´ is a nightmare to them.

Don´t worry and be happy again, there´s a nice little piece of software that will allow you to use Messenger again: Messenger Reviver 2 by Jonathan Kay. I have tested the software on multiple PC’s and it will do what it promise: getting MSN (Live) Messenger back. To reach the aim of getting Messenger back, Messenger Reviver 2 will make some changes to your computer. These changes are harmless and can’t hurt your PC so use it without any risk.

Some info about Messenger Reviver 2 (grabbed from author’s weblog)

Messenger Reviver 2 automatically installs, repairs and/or modifies Windows Live Messenger 2012, 2011, 2009, and 2008 as well as Windows Messenger to continue signing in despite being blocked by Microsoft.

Reviver 2 supports modifying all language versions and can automatically install either 2009 or 2012 versions in 47 different languages.

Reviver will automatically attempt to detect if Messenger is still installed, which versions are eligible for modification and if you need to run a repair or new installation to bring Messenger back (if Skype has removed it).

System Requirements

Windows XP, Windows Vista, Windows 7 or Windows 8.
.NET Framework 2.0 or higher (included with Windows Vista or newer), .NET 3.5 or 4.0 recommended


To revive Messenger, click Start in the Messenger Reviver 2 Screen and the process will automatically modify Messenger and restart it.

If Windows Live Essentials is not installed, you will presented with options to either install Messenger 2009 or 2012 in the language of your choosing. Reviver will attempt to guess which language you prefer based on your prior Windows and Essentials language settings.

Additionally if Essentials is still installed, but Skype has removed it, you will be offered to just repair your Essentials install.


If you wish to do a manual re-install or repair, you can select these options by clicking the Advanced button and choosing the function you would like.

I want to make clear again that the use of Messenger Reviver 2 will not damage your PC. Also that you have to say ‘Thank You’ to the author of the application, Jonathan Kay. His weblog and Reviver Support can be found here.

Downloadlinks Messenger Reviver 2 (0,5 MB, zipped)

Link 1

Link 2

Link 3

Please report broken links, thanks in advance!

May 1, 2013 Posted by | Downloads, News | , , , , , , , , , , , , , | Leave a comment

[UPDATED / SOLVED] Be aware: malware removal program ComboFix probably infected with Sality virus

According to Marcos, employee of security solutions vendor ESET, the well-known malware cleaning/removal program ComboFix created by sUBs is infected with the Sality virus. It seems that the current installer ComboFix contains an infected file, namely iexplore.exe

I haven’t checked the issue, however have to assume that ComboFix is indeed infected with the Sality virus, especially because other security vendors have confirmed the infection.

Please don’t download and use ComboFix until the author, sUBs, remedies the issue.

UPDATE 1: Infection is confirmed by a reliable source.

UPDATE 2: To be 100% sure I checked the issue by myself, ComboFix is indeed infected by Sality.

UPDATE 3: Added a temporary Google Drive downloadlink to obtain most recent CLEAN ComboFix.exe

Data of this clean version:

Copyright sUBs
5.028.179 bytes

MD5 CHECKSUM: 0F6D28A70471051C4C7785335ACBA626


hex: 361548f74415a41f00d5345b3e3c489b3282b302c0c51266880eda586db01a12
HEX: 361548F74415A41F00D5345B3E3C489B3282B302C0C51266880EDA586DB01A12
h:e:x: 36:15:48:f7:44:15:a4:1f:00:d5:34:5b:3e:3c:48:9b:32:82:b3:02:c0:c5:12:66:88:0e:da:58:6d:b0:1a:12
base64: NhVI90QVpB8A1TRbPjxImzKCswLAxRJmiA7aWG2wGhI=

Download: removed

UPDATE  4 / FINAL UPDATE / 2013-01-30 22:00: problem infected ComboFix solved, clean ComboFix.exe is now live again, and available to download from its normal Bleeping Computer downloadlink here.

Because the problem is now solved I have removed the temporary downloadlink clean ComboFix.exe

January 29, 2013 Posted by | Advisories, Alerts, Anti-Virus, Malware, Vulnerabilities | , , , , , , | 4 Comments

Windows 8 Acronis True Image 2013 customers misguided by Acronis GmbH: software is unusable

It’s just ‘great’, you are relying on a well-known company selling Backup & Recovery software, Acronis GmbH. On their website they are promising potential customers that their Acronis True Image 2013 software is fully compatible with Windows 8, so you are buying or upgrading a previous version of the software in full faith and trust, assuming that Acronis will save you in case an disaster will happen with your PC and you will be able to boot from a recovery image in case of an disaster.

Well better forget efforts to restore the Acronis image, Acronis will let you down without mercy, your Windows 8 system will tell you: “Selected boot image did not authenticate. Press ‘Enter’ to continue”. So now you have a serious problem…

Cause of the failure message is Secure Boot, a Windows 8 Anti-Rootkit feature that will prevent the PC from booting an unrecognised operating system. Unpleasant side effect: it will also blocking Linux-based recovery environments, such as Acronis Start Up manager.

Despite the fact that Acronis is informed about the issue, they still sell Acronis True Image 2013 as being Windows 8 Compatible. I call this product sale scam. My advise to Windows 8 users: don’t buy the Acronis crap, on your Windows 8 PC it’s a useless piece of emergency software.

January 17, 2013 Posted by | Advisories, Alerts | , , , , , , , , , | 1 Comment