Smokey's Security Weblog

veritas odium parit

Norton Internet Security v22.5.4.24 (patch 22.5.4) update released in all supported languages

I’m pleased to announce that there is an update available (v22.5.4.24) for the Smokey’s Choice Awarded top-notch security software Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Norton Antivirus and Norton Security Suite. As with all previous Norton Security software updates, this version is being released in a phased manner. The update is available in all supported languages. To download it, run LiveUpdate.

Changes in this release

* Fixes an issue where ‘iTunes Hangs when trying to Eject’
* Fixes an issue where ‘Display driver issues leading to ‘product not starting’
* Fixes an issue where ‘Nothing happens when I click on Scan’
* Several fixes for desktop flickering issues’ and other problems with Win10 upgrades.
* Clean up left over items during a Windows 10 upgrade to prevent Live Update errors
* Fix for a crash in Hebrew specific layouts.
* Fixes the alignment issue on clicking help in main UI
* Fixes an issue where ‘Auto-Protect is Greyed out’
– and other fixes…

It’s easy to verify you have the update, just launch the Main User Interface, click on Help, and select About.

norton_22_5_4_24

This update v22.5.4.24 is currently officially available via LiveUpdate only, however there is also the possibility for a direct download from the Symantec/Norton servers. You can install the downloaded update/patch over the top of your existent Norton product. This time too the update will be no problem at all, all previous Norton Security settings will remain unaltered after the update. The update will be accomplished within a few minutes, reboot is not not be required. Important: run LiveUpdate after updating to the new version!

Direct downloadlinks full version / update / trial / Norton Security v22.5.4.24 (patch 22.5.4)

– Norton Security 22.5.4.24 ENGLISH Language: http://buy-download.norton.com/downloads/2015/22.5.4/NS/US/NS-ESD-22.5.4.24-EN.exe

– Norton Security with included Backup 22.5.4.24 ENGLISH Language: http://buy-download.norton.com/downloads/2015/22.5.4/NSBU/US/NSBU-ESD-22.5.4.24-EN.exe

Norton Security and Norton Security with included Backup 22.5.4.24 in all other supported languages: change language by changing to e.g. Norton Security 22.5.4 DUTCH: http://buy-download.norton.com/downloads/2015/22.5.4/NS/NL/NS-ESD-22.5.4.24-NL.exe

Advertisements

October 4, 2015 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, Malware, Norton Internet Security, Phishing | , , , , , | Leave a comment

[UPDATED / SOLVED] Be aware: malware removal program ComboFix probably infected with Sality virus

According to Marcos, employee of security solutions vendor ESET, the well-known malware cleaning/removal program ComboFix created by sUBs is infected with the Sality virus. It seems that the current installer ComboFix contains an infected file, namely iexplore.exe

I haven’t checked the issue, however have to assume that ComboFix is indeed infected with the Sality virus, especially because other security vendors have confirmed the infection.

Please don’t download and use ComboFix until the author, sUBs, remedies the issue.

UPDATE 1: Infection is confirmed by a reliable source.

UPDATE 2: To be 100% sure I checked the issue by myself, ComboFix is indeed infected by Sality.

UPDATE 3: Added a temporary Google Drive downloadlink to obtain most recent CLEAN ComboFix.exe

Data of this clean version:

Combofix.exe
Version 13.1.28.1
Copyright sUBs
5.028.179 bytes

MD5 CHECKSUM: 0F6D28A70471051C4C7785335ACBA626

SHA256 CHECKSUM:

hex: 361548f74415a41f00d5345b3e3c489b3282b302c0c51266880eda586db01a12
HEX: 361548F74415A41F00D5345B3E3C489B3282B302C0C51266880EDA586DB01A12
h:e:x: 36:15:48:f7:44:15:a4:1f:00:d5:34:5b:3e:3c:48:9b:32:82:b3:02:c0:c5:12:66:88:0e:da:58:6d:b0:1a:12
base64: NhVI90QVpB8A1TRbPjxImzKCswLAxRJmiA7aWG2wGhI=

Download: removed

UPDATE  4 / FINAL UPDATE / 2013-01-30 22:00: problem infected ComboFix solved, clean ComboFix.exe is now live again, and available to download from its normal Bleeping Computer downloadlink here.

Because the problem is now solved I have removed the temporary downloadlink clean ComboFix.exe

January 29, 2013 Posted by | Advisories, Alerts, Anti-Virus, Malware, Vulnerabilities | , , , , , , | 4 Comments

Extremely critical vulnerability Samsung Android Exynos4 based devices [CONFIRMED]

ExynosAbuse Exploit: obtaining root on Exynos4 based Samsung Android devices without ODIN flashing, malicious apps will be able to gain total control over the device by gaining root without asking and without any permissions on a vulnerable device.

Source: XDA Developers (alephzain, Chainfire)

– alephzain: http://forum.xda-developers.com/showthread.php?t=2048511
– Chainfire: http://forum.xda-developers.com/showthread.php?t=2050297

Samsung solution status: unfixed

Vulnerable devices:

– Samsung Galaxy S2 GT-I9100

– Samsung Galaxy S3 GT-I9300
– Samsung Galaxy S3 LTE GT-I9305

– Samsung Galaxy Note GT-N7000

– Samsung Galaxy Note 2 GT-N7100
– Samsung Galaxy Note 2 LTE GT-N7105
– AT&T Galaxy Note 2 SGH-I317
– Verizon Galaxy Note 2 SCH-I605

– Samsung Galaxy Tab Plus GT-P6210

– Samsung Galaxy Note 10.1 GT-N8000, GT-N8010, GT-N8013, GT-N8020

Note: Google Nexus 10 not vulnerable, Exynos5.

Temporary patch (provided by Chainfire): http://forum.xda-developers.com/showthread.php?t=2050297

Note: Chainfire requested not to redistribute the patch, instead please link to http://forum.xda-developers.com/showthread.php?t=2050297

Update Dec 20 2012

Android Central | Dec 19 2012

Official Samsung Statement Exynos kernel vulnerability issue (in full)

“Samsung is aware of the potential security issue related to the Exynos processor and plans to provide a software update to address it as quickly as possible.

The issue may arise only when a malicious application is operated on the affected devices; however, this does not affect most devices operating credible and authenticated applications.

Samsung will continue to closely monitor the situation until the software fix has been made available to all affected mobile devices”

Third-party fixes

I will only mention Chainfire’s fix. It’s the only one that is secure. Both Supercurio’s and RyanZA’s method leave you with easily exploitable holes any serious malware author will abuse.

About Chainfire’s fix

Chainfire: “This is an APK that uses the ExynosAbuse exploit (by alephzain) to be able to do various things on your Exynos4 based device.

Features for non-rooters:
– Securely patch the exploit

Features for rooters:
– Root the device (SuperSU v0.99)
– Enable/disable the exploit at will
– Enable/disable patching the exploit at boot
– Unroot and cleanup (optionally leaving the exploit patch at boot in place)

Please note that patching the exploit may break camera functionality, depending on device and firmware. Also note that if use the patch method without rooting, or keep patching the exploit at boot enabled when unrooting, you need an alternate method to re-root the device to disable this feature (like CF-Auto-Root) – you cannot use ExynosAbuse to do this since it patched the exploit. Unlike other patch authors, I do not believe in keeping an invisible rooted process running in the background while pretending you aren’t rooted, to be able to unpatch this way.

While the exploit patches work (aside from possibly disabling your camera), these are more work-around than actual fixes. A proper patch would be a kernel fix, either from a third party or Samsung themselves”

Download the fix here: http://forum.xda-developers.com/showthread.php?t=2050297

Note: please do not redistribute the fix!

December 17, 2012 Posted by | Advisories, Alerts, Anti-Virus, Malware, News, Vulnerabilities | , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

New major version of avast! Mobile Security / Anti-Theft released, v2 in development stage

As you probably will remember, December 2011 I posted a review concerning avast! Mobile Security (AMS) for Android phones, my verdict was (and still is): an excellent Security Suite, also very reliable and provided with a top-notch Anti-Theft module. For reason of the outstanding good test results AMS gained the Smokey’s 2011/2012 Choice Award, this Award will only be granted to the best among the best.

This week avast! company informed me that a new major version of the suite was released, v2, and this new version is in beta stage. They told me also that current stable v1 of the suite wasn’t updated since April 2012 for reason of development v2.

Like I told v2 is still beta but the new features sound very promising and will make the product even better, in this way protecting the user in a more solid way and providing him with additional useful features, time to provide you with a fast survey of v2 beta.

According to avast! company new features are:

* avast! Anti-Theft web portal integrated into the avast! Account
* Network Meter
* avast! widget
* Optimized UI for tablets
* Real-time protection (on-exec scanning) of apps
* Custom rules and log in the firewall
* The shield control UI to fine-tune on-access security setup
* avast! SiteCorrect for the Web Shield
* Scanning of incoming messages
* SMS/Call filter wildcards
* Greyscale notification icon

Adding all these new features to avast!’s already superb security suite will make it (again) the best security suite for android phones there is, and will put it again on top of all available suites. V2 beta avast! Mobile Security and avast! Anti-Theft are downloadable on avast! Forum, keep in mind that (like with all beta’s) use will be on your own risk. If you have the intention to download and install the beta please read the beta support thread before installing, in this way knowing what problems you can expect and current development stage of the beta.

To me it’s not clear v2 final will remain free, at the moment pricing info isn’t available.

System Requirements v2 beta avast! Mobile Security

Operating Systems Supported:

– Android 2.1.x
– Android 2.2.x
– Android 2.3.x
– Android 3.x
– Android 4.0.x
– Experimental support for Android 4.1.x

Links

– Review v1 avast! Mobile Security for Android phones: https://smokeys.wordpress.com/2011/12/24/review-avast-mobile-security-for-android-phones/
– About the Smokey’s Choice Awards: https://smokeys.wordpress.com/2011/12/30/about-the-smokeys-choice-awards/
– Downloadlinks v2 beta avast! Mobile Security and avast! Anti-Theft / v2 beta Support Forum: http://forum.avast.com/index.php?topic=101642

August 11, 2012 Posted by | Anti-Spyware, Anti-Virus, Downloads, Malware, Phishing, Toolbarware, Uncategorized | , , , , , , , , , | 1 Comment

Webroot SecureAnywhere…. just an over-Inflated Bubble?

Isn’t it amazing how at once there is a superb anti-virus, smashing all competitors, established vendors included? The Anti-Virus Holy Grail so to speak, doing a fantastic job of keeping customers PC’s free of malware, this in contradiction of these competitors? At the same time an AV with great support, prepared to listen to customers and helping them in an adequate way, and also being realistic when it regards shortcomings (however see this as a joke… an AV Holy Grail that doesn’t have any shortcomings).

Don’t look any further, don’t try any other anti-virus…. but be smart and buy NOW the 2012 Super AV: Webroot SecureAnywhere.
Competitors are selling crap,anyway, this is Webroot’s opinion, so don’t hesitate and only be satisfied with the Best of the Best: WSA (Webroot SecureAnywhere).

Of course it is true what they say about other AV vendors, please don’t call this bashing, it’s just business, okay?! Yells like “Takes up 96% less space than Kaspersky”, “Uses 97% less memory than McAfee”, “Scans more than 3x faster than Kaspersky”, “Takes up 99% less space than McAfee”, “Uses 92% less memory than Norton”, “Installs 131x faster than McAfee”, “Scans nearly 4 times faster than Norton”. The Webroot website is overwhelmed with such yells, there is hardly room left to tell the customer some (true) facts about WSA. Personally I really like this Webroot yell: “Webroot vs.Symantec is like David vs. Goliath. Only this David has a much faster, lighter, easier-to-manage slingshot”. This all is dramatic pure for sure, a climax that can’t be beaten by anyone.

I can hardly imagine that there are people believing the Webroot PR yells, after all yelling is Webroot’s trademark. OTOH they are true masters of it…. hence making it very convincing.

It starts at the very bottom with a Webroot Support Forum Helper, a PR expert on his own and also a master in repeating what Webroot employees are saying, then continues with Webroot Support/Quality Assurance Staff yelling to customers they must believe whatever the helper say, (after all, customers are stupid and clearly show their stupidity!!), subsequently we then have Webroot Support Team Staff yelling what a great product WSA is…. and finally we have the Webroot website and Support Forums, the absolute Masters of the Yell.

I admit that WSA is really small in size and fast just like WSA yells at us, however there is also a downside: it does not have the (high) detection rates that several other AV’s have. This is not just a yell from me, AV Testing Organization AV-Comparatives proved it very well: in their Protection-Test March-June 2012 AV Webroot SecureAnywhere 2012 gained the lowest protection rate of just a very disappointing 90,9%. In the test participated by 21 AV vendors/products WSA reached rank 21.

AV-Test.org, also an AV Testing Organisation, have tested WSA too. Talking again about detection rates, products like e.g. AVG’s Anti-Virus Free Edition 2012, AVG’s Internet Security 2012, BitDefenders Internet Security 2012, BullGuard’s Internet Security 12.0, F-Secure’s Internet Security 2012, G Data’s Internet Security 2012 and Kaspersky’s Internet Security 2012 were scoring better than WSA.

There is also issues false positives:

WSA gained the worst score according to AV-Comparatives False-Alarm-Test March 2012. We all know that false positives can really hurt your PC so FP’s can be dangerous just like malware is. When I have to choose between speed/used space and malware detection rates/amount FP’s ….I will choose the latter for sure.

Like I admitted before, WSA is really fast….. but regrettably not when regarding a full scan on demand, for example. Despite following Webroot’s promise: “After initial scan, full system scans typically take two minutes or less”. What Webroot don’t tell us is that a full scan will factually take hours. Furthermore, in my opinion they shouldn’t offer a ‘Full scan’ possibility at all to the customer if they are opinion it’s an unnecessary tool. After all their official POV is:

An actual full scan of the computer will both take hours in most cases and is also completely unnecessary for protecting the computer with WSA.

I clearly see here snake oil tactic of Webroot, with the aim to retain the claim of whopping fast scanning and at the same time putting other anti-virus vendors in a bad spotlight.

Webroot Inc. is also a damned well organised merchandising machine…. That they are heavily promoting their products on the Webroot (Prevx) support forums is fine, nothing wrong with that. The trick is to do the same on other forums without being provided with the spam label.

So how does the trick work? Almost every forum thread where a malware issue is discussed or advice is asked for on what AV to use…. will be provided with an urgent encouragement to use WSA. Surprisingly it’s almost always a Webroot Support Forum Helper encouraging the thread reader to do so. Final touch is then given by Webroot Support Team, praising the Webroot Support Forum Helper for his great advice and again encouraging the reader to use WSA. Finally the thread will end with a survey of where to obtain WSA good deals, the survey will be mostly offered by an anonymous user. I call this ordinary spam.
Common exception: if the thread is going ‘wrong direction’, Webroot Support Team is clever and don’t show up at all, instead the WSA Support Forum Helper will starting a tirade to the messenger of the ‘bad news’ and maintain the tactic to shoot the messenger by calling him e.g. a troll. This kind of ‘support’ can hardly be called decent and customer-orientated.

Summarizing:

I don’t say Webroot SecureAnyWhere is a bad product, but it need much improvement.
I don’t say PR is condemnable, I just don’t like Webroot’s business practices.

Furthermore,

I don’t like the way they provide support.
I don’t like the way the customer is treated.
I don’t like it when a product with very bad detection rates and lots of false positives is praised into AV heaven, please keep in mind there are better AV’s.
Last but not least, I don’t like spam.

July 22, 2012 Posted by | Anti-Spyware, Anti-Virus, Malware, Phishing | , , , , , , , , , | Leave a comment

About the Smokey’s Choice Awards

Smokey's 2011-2012 Award

Like the Smokey’s Security Weblog Hall of Shame Awards, the Smokey’s Choice Award has the sole purpose to improve users experiences and interests. Where the intention of our “Hall of Shame” is to achieve a change of mind in positive way and improvements in behavior and procedures by the Awardees, the Smokey’s Choice Award will be granted to security (related) products that has proven to be the very best quality software available on the market. Issue ‘real security’ and ‘serious improvement’ should have highest attention of security vendors, this all in customer’s interest. The  Smokey’s Choice Award is our acknowledgement of products of outstanding quality and effectiveness, in this way we honor exceptionally well software development by some vendors which results in such top-notch products no matter it concerns free software or paid products.

All Smokey’s Choice Awarded software is thoroughly tested/reviewed, in the decision to provide a product with the Award we also include a judgment concerning the price of the software compared with the competition and what will be offered for the price. Only when we are fully convinced about quality, effectiveness and price / performance, a product will be granted the Smokey’s Choice Award. Hence we highly recommend all software provided with the Award.

Currently following products are provided with the Smokey’s Choice Award:

– avast! Mobile Security Android (recent test/review here)
– F-Secure Internet Security 2012
– MBAM – Malwarebytes Anti-Malware
– Symantec Norton Internet Security 2012
– VIPRE Internet Security 2012
– WinPatrol ‘Scotty’

Again our congratulations to all Awarded vendors!

Smokey

December 30, 2011 Posted by | Anti-Spyware, Anti-Virus, Norton Internet Security | , , , , , , , , , , , , , , , | 1 Comment

Norton 360 v5.1.0.29 (patch 5.1) released – ENGLISH ONLY

Symantec/Norton released Norton 360 v5.1.0.29 (patch 5.1). Note: the patch is currently available to ENGLISH users ONLY. Norton will release the patches in other regions soon. You can also receive the update by running LiveUpdate and download the update. A reboot will be required.

All downloads are originating directly from the Symantec/Norton servers, for security reasons I strongly advise only to download from these vendor servers.

Fixes and improvements patch 5.1

This patch contains many changes and fixes from the previous version. Some of these changes include:

– Added Firefox 4 Support
– Added New TidSrv detection & notification
– Improved Activation Process
– Corrected an issue where your product may report a loss of subscription days after upgrading from a previous version.
– Added performance improvements for IE 9 plugins.
– Fixed some Registry Cleaner hangs that may have previously occurred.
– Online Backup & Restore fixes for very large (> 4GB) files.
– Fixed compatibility issues with 3rd party software such as Corel Paint Shop Pro & Max SEA.

Downloadlinks full version / update / trial / Norton 360 v5.1.0.29 (patch 5.1)

– Norton 360 Standard edition English version 5.1: http://buy-download.norton.com/downloads/CLT/N360/US/2011/5.1/ESD/N360-ESD-18-6-0-29-EN.exe

– Norton 360 Premier edition English version 5.1: http://buy-download.norton.com/downloads/CLT/N360P/US/2011/5.1/ESD/N360-PREMIER-ESD-18-6-0-29-EN.exe

May 12, 2011 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, Malware, Norton Internet Security, Phishing, Vulnerabilities | , , , , , , , , | Leave a comment

Norton Internet Security 2011 and Norton Antivirus 2011 v18.6.0.29 (patch 18.6) released – ENGLISH ONLY

UPDATE May 12, 2011: Norton 360 v5.1.0.29 (patch 5.1) released – ENGLISH ONLY

-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-

Symantec/Norton released v18.6.0.29 (patch 18.6) Norton Internet Security 2011, Norton Antivirus 2011 and Norton Internet Security Netbook Edition 2011.  Note: the patch is currently available to ENGLISH users ONLY. Symantec/Norton will release the patches in other regions soon. You can also receive the update by running LiveUpdate and download the update. A reboot will be required.

The new NIS/NAV/NIS Netbook Edition 2011 v18.6.0.29 as offered for download in this blog can be installed over the top of existent version (18.5.0.125), the update will not deliver any problem, all previous 2011 settings will remain unaltered after the update. The update will be accomplished within 1 minute, reboot is required. All downloads are originating directly from the Symantec/Norton servers, for security reasons I strongly advise only to download from these vendor servers.

Fixes and improvements patch 18.6

– Added Firefox 4 Support
– Added New TidSrv detection & notification
– Improved Activation Process
– Corrected an issue where your product may report a loss of subscription days after upgrading from a previous version.
– Added performance improvements for IE 9 plugins.
– Fixed compatibility issues with 3rd party software such as Coral Paint Shop Pro & Max SEA.

This patch also contains fixes from previous patch 18.5. Some of those changes included:

– Fixed an issue where Norton Insight might falsely report 0% trusted when Performance Monitoring was disabled.
– Fixed an issue with the Activity Map might not update when Smart Definitions are enabled.
– Improved instances where the Norton AntiSpam Toolbar might be erroneously disabled (or “grayed out”) in Microsoft Outlook 2007 and Microsoft Outlook 2010.
– Corrected an issue where “Custom UI Runtime Error in Norton AntiSpam Outlook Plugin” might display when using Microsoft Outlook.
– Fixed an issue where the option to “run” an executable was missing from a File Insight/Download Insight window.
– Corrected an issue where Idle Full System Scans would show report inconsistent amounts of Scanned Files.
– Fixed an issue where Full System Scans would not run continuously, including when the machine is left idle.
– Fixed an issue where the Norton Product may display “Subscription Expired” after updating from a previous version.
– Fixed Internet Explorer crashes that were due to Intrusion Prevention.
– Performance Enhancements were made on the Norton Toolbar for Internet Explorer 9 Beta.
– Enhanced Settings migration when updating from an older version.
– Usability and Performance improvements to the support experience.
– Added better Norton AntiSpam support for Microsoft Outlook configured with multiple accounts.
– Corrected a few instances of 8504 errors that may appear when the Norton product is launched.
– Fixed a Registry Leak issue that may occur during shutdown.

Downloadlinks full version / update / trial / Norton Internet Security 2011, Norton Antivirus 2011 and NIS Netbook Edition v18.6.0.29 (patch 18.6)

– Norton Antivirus 2011 English version: http://buy-download.norton.com/downloads/CLT/NAV/US/2011/18.6/ESD/NAV-ESD-18-6-0-29-EN.exe

– Norton Internet Security 2011 English version: http://buy-download.norton.com/downloads/CLT/NIS/US/2011/18.6/ESD/NIS-ESD-18-6-0-29-EN.exe

– Norton Internet Security Netbook Edition 2011 English version: http://buy-download.norton.com/downloads/CLT/NISNE/US/2011/18.6/ESD/NIS-NETBOOK-ESD-18-6-0-29-EN.exe

May 9, 2011 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, Malware, Norton Internet Security, Phishing, Vulnerabilities | , , , , , , , , , , , , , | 2 Comments

Norton Internet Security 2011 and Norton Antivirus 2011 v18.5.0.125 (patch 18.5) released

UPDATE May 9, 2011: Norton Internet Security 2011, Norton Antivirus 2011 and Norton Internet Security Netbook Edition 2011 v18.6.0.29 (patch 18.6) released – ENGLISH ONLY

UPDATE May 12, 2011: Norton 360 v5.1.0.29 (patch 5.1) released – ENGLISH ONLY

-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-

Symantec/Norton released v18.5.0.125 (patch 18.5) Norton Internet Security 2011, Norton Antivirus 2011 and Norton Internet Security Netbook Edition 2011 (Stable/Official Release).

Like before, I installed the new NIS 2011 v18.5.0.125 over the top of my existent version (18.1.0.37), also this time the update was no problem, all previous 2011 settings remained unaltered after the update. The update was accomplished within 1 minute, reboot was required.

Note: all downloads are originating directly from the Symantec/Norton servers, for security reasons I strongly advise only to download from these vendor servers.

Fixes and improvements

– Fixed an issue where Norton Insight might falsely report 0% trusted when Performance Monitoring was disabled.
– Fixed an issue with the Activity Map might not update when Smart Definitions are enabled.
– Improved instances where the Norton AntiSpam Toolbar might be erroneously disabled (or “grayed out”) in Microsoft Outlook 2007 and Microsoft Outlook 2010.
– Corrected an issue where “Custom UI Runtime Error in Norton AntiSpam Outlook Plugin” might display when using Microsoft Outlook.
– Fixed an issue where the option to “run” an executable was missing from a File Insight/Download Insight window.
– Corrected an issue where Idle Full System Scans would show report inconsistent amounts of Scanned Files.
– Fixed an issue where Full System Scans would not run continuously, including when the machine is left idle.
– Fixed an issue where the Norton Product may display “Subscription Expired” after updating from a previous version.
– Fixed Internet Explorer crashes that were due to Intrusion Prevention.
– Performance Enhancements were made on the Norton Toolbar for Internet Explorer 9 Beta.
– Enhanced Settings migration when updating from an older version.
– Usability and Performance improvements to the support experience.
– Added better Norton AntiSpam support for Microsoft Outlook configured with multiple accounts.
– Corrected a few instances of 8504 errors that may appear when the Norton product is launched.
– Fixed a Registry Leak issue that may occur during shutdown.

Important Symantec Corporation Statement

The issues that some users were experiencing where the Norton product would lock up after installing the 18.5 update was due to a definition that was applied after 18.5 was installed. Symantec have since corrected that definition and the issue will not occur.

Downloadlinks full version / update / trial / Norton Internet Security 2011 and Norton Antivirus 2011 v18.5.0.125 (patch 18.5)

– Norton Antivirus 2011 English version: http://buy-download.norton.com/downloads/CLT/NAV/US/2011/18.5/ESD/NAV-ESD-18-5-0-125-EN.exe

– Norton Internet Security 2011 English version: http://buy-download.norton.com/downloads/CLT/NIS/US/2011/18.5/ESD/NIS-ESD-18-5-0-125-EN.exe

– o – o – o – o – o – o – o – o -o –

– Norton Antivirus 2011 French version: http://buy-download.norton.com/downloads/CLT/NAV/FR/2011/18.5/ESD/NAV-TW-30-18-5-0-125-FR.exe

– Norton Internet Security 2011 French version: http://buy-download.norton.com/downloads/CLT/NIS/FR/2011/18.5/ESD/NIS-TW-30-18-5-0-125-FR.exe

– o – o – o – o – o – o – o – o -o –

– Norton Antivirus 2011 German version: http://buy-download.norton.com/downloads/CLT/NAV/GE/2011/18.5/ESD/NAV-TW-30-18-5-0-125-GE.exe

– Norton Internet Security 2011 German version: http://buy-download.norton.com/downloads/CLT/NIS/GE/2011/18.5/ESD/NIS-TW-30-18-5-0-125-GE.exe

– o – o – o – o – o – o – o – o -o –

– Norton Antivirus 2011 Dutch version: http://buy-download.norton.com/downloads/CLT/NAV/NL/2011/18.5/ESD/NAV-TW-30-18-5-0-125-NL.exe

– Norton Internet Security 2011 Dutch version: http://buy-download.norton.com/downloads/CLT/NIS/NL/2011/18.5/ESD/NIS-TW-30-18-5-0-125-NL.exe

– o – o – o – o – o – o – o – o -o –

Downloadlinks full version / update / trial / Norton Internet Security Netbook Edition 2011 v18.5.0.125 (patch 18.5)

– Norton Internet Security Netbook Edition 2011 English version: http://buy-download.norton.com/downloads/CLT/NISNE/US/2011/18.5/ESD/NIS-NETBOOK-ESD-18-5-0-125-EN.exe

December 29, 2010 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Bundleware, Downloads, Malware, Norton Internet Security, Phishing, Recommended External Security Related Links, Toolbarware, Vulnerabilities | , , , , , , , , , , , , , , , , , , , , , , , , , | 1 Comment

PCWorld Labs / AV-Test.org tested 13 security suites

Intro by PCLabs

It’s no longer enough for antivirus software to scan files on your PC. You need someone looking over your shoulder and telling you whether it’s safe to click that link; whether the popup for that software update is legitimate; and whether that download from your favorite social network is actually a tool created by organized criminals for stealing your personal information. You need an all-in-one Internet security suite capable of identifying, blocking, and cleaning up after a wide array of malware.

We examined 13 security suites for this story. To handle our expanded Internet security testing, PCWorld contracted for the services of AV-Test.org, a respected security testing company. We looked at traditional signature-based detection (which indicates how well products can block known malware) and at how well the suites cleaned infections and blocked brand-new, live malware attacks.

In many respects, the suites we looked at produced closely bunched results, but they did vary in the efficacy of their protection and in the extra features they offered. Ultimately, we picked Symantec’s Norton Internet Security 2011–the most balanced of the suites–as our overall winner.

Source / full tests: http://www.pcworld.com/article/214618/battle_of_the_security_superpowers.html

Tested Security Suites

  • Symantec Norton Internet Security 2011
  • Kaspersky Internet Security 2011
  • BitDefender Internet Security 2011
  • PC Tools Internet Security 2011
  • G-Data Internet Security 2011
  • F-Secure Internet Security 2011
  • Trend Micro Titanium Internet Security 2011
  • Panda Internet Security 2011
  • Eset Smart Security 4.2
  • Avira AntiVir Premium Security Suite
  • Comodo Internet Security 2011 Complete
  • McAfee Internet Security 2011
  • Webroot Internet Security Essentials 2011
  • December 28, 2010 Posted by | Advisories, Anti-Spyware, Anti-Virus, Bundleware, Malware, Norton Internet Security, Phishing, Recommended External Security Related Links, Toolbarware | , , , , , , , , , , , , , , , , , | Leave a comment

    After applying the Norton Internet Security/Norton AntiVirus 18.5 patch, the Norton product may lock up or cause the system to become unstable

    Official Symantec/Norton statement regarding Norton Internet Security 2011 and Norton AntiVirus 2011 v18.5.0.125

    12-11-2010

    There have been several reports on the forums where after applying the Norton Internet Security/Norton AntiVirus 18.5 patch (is version 18.5.0.125), the Norton product may lock up or cause the system to become unstable.

    While this issue only seems to affect a small number of installations, we’re still taking this issue seriously and are quickly researching the cause of this problem.

    We will be halting the throttled LiveUpdate release of 18.5 for the time being while we investigate these issues.

    If you are experiencing this issue and would like to assist us in gathering information (debug logs and process dumps) for this issue, please post a response in THIS THREAD. The more logs and dumps we get, the more information we have that will help us make the proper corrections.

    If you are having these issues and need to revert your system back to 18.1 (is version 18.1.0.37), simply uninstall 18.5 using Control Panel (or Uninstall from the Norton Product Program Group), and reinstall 18.1 from the following locations:

  • Norton Internet Security 18.1 – http://www.norton.com/nis11
  • Norton AntiVirus 18.1 – http://www.norton.com/nav11
  • Norton Internet Security 18.1, Norton AntiVirus 18.1 and Norton Netbook Edition 18.1 in English, French, German and Dutch language (direct downloads from Symantec/Norton servers too) – https://smokeys.wordpress.com/2010/08/28/norton-internet-security-2011-and-norton-antivirus-2011-final-rtm-released/Some users are reporting troubles uninstalling. Try uninstalling from Safe Mode. If that fails, you can use the Norton Removal Tool.If you have 18.5, but are not experiencing any issues, it is advised that you remain on 18.5.
  • Update 12-29-2010

    Symantec Statement: “The issues that some users were experiencing where the Norton product would lock up after installing the 18.5 update was due to a definition that was applied after 18.5 was installed. Symantec have since corrected that definition and the issue will not occur.”

    Download Norton Internet Security 2011, Norton Antivirus 2011 and Norton Internet Security Netbook Edition 2011 v18.5.0.125 (patch 18.5, stable/official release) here: https://smokeys.wordpress.com/2010/12/29/norton-internet-security-2011-and-norton-antivirus-2011-v18-5-0-125-patch-18-5-released/

    December 12, 2010 Posted by | Advisories, Alerts, Anti-Virus, Downloads, Norton Internet Security, Recommended External Security Related Links, Vulnerabilities | , , , , , , , , , , , , , , , , , , | 1 Comment

    Norton Internet Security 2011 and Norton Antivirus 2011 (Final RTM) released

    UPDATE Dec. 29, 2010: v18.5.0.125 (patch 18.5) Norton Internet Security 2011, Norton Antivirus 2011 and  Norton Internet Security Netbook Edition 2011 released; release info, fixes/improvements and downloads here:https://smokeys.wordpress.com/2010/12/29/norton-internet-security-2011-and-norton-antivirus-2011-v18-5-0-125-patch-18-5-released/

    UPDATE May 9, 2011: Norton Internet Security 2011, Norton Antivirus 2011 and Norton Internet Security Netbook Edition 2011 v18.6.0.29 (patch 18.6) released – ENGLISH ONLY

    UPDATE May 12, 2011: Norton 360 v5.1.0.29 (patch 5.1) released – ENGLISH ONLY

    -o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-o-

    Aug. 28, 2010

    Symantec offered today via their download servers Norton Internet Security 2011 and Norton Antivirus 2011 v18.1.0.37 Final RTM. Like I wrote before regarding NIS 2009, same positive words are (even more!) valid for today’s released Norton 2011 AV products: “without any hesitation I highly recommend Norton Internet Security 2011 to all people looking for a top-notch, reliable, easy to use all-in-one security suite.” Of course I also highly recommend NAV 2011: like NIS, great product for an acceptable price.

    I installed NIS 2011 on top of my NIS 2010 , the upgrade was no problem, all previous 2010 settings remained unaltered after the upgrade. The upgrade was accomplished within 1 minute, reboot was required.

    Full version / Upgrade / Trial download links NIS/NAV 2011 Final RTM 18.1.0.37 versions

    – Norton Antivirus 2011 English version: http://buy-download.norton.com/downloads/CLT/NAV/US/2011/18.1/ESD/NAV-TW-30-18-1-0-37-EN.exe

    – Norton Internet Security 2011 English version: http://buy-download.norton.com/downloads/CLT/NIS/US/2011/18.1/ESD/NIS-TW-30-18-1-0-37-EN.exe

    – o – o – o – o – o – o – o – o -o –

    – Norton Antivirus 2011 French version: http://buy-download.norton.com/downloads/CLT/NAV/FR/2011/18.1/ESD/NAV-TW-30-18-1-0-37-FR.exe

    – Norton Internet Security 2011 French version: http://buy-download.norton.com/downloads/CLT/NIS/FR/2011/18.1/ESD/NIS-TW-30-18-1-0-37-FR.exe

    – o – o – o – o – o – o – o – o -o –

    – Norton Antivirus 2011 German version: http://buy-download.norton.com/downloads/CLT/NAV/GE/2011/18.1/ESD/NAV-TW-30-18-1-0-37-GE.exe

    – Norton Internet Security 2011 German version: http://buy-download.norton.com/downloads/CLT/NIS/GE/2011/18.1/ESD/NIS-TW-30-18-1-0-37-GE.exe

    – o – o – o – o – o – o – o – o -o –

    – Norton Antivirus 2011 Dutch version: http://buy-download.norton.com/downloads/CLT/NAV/NL/2011/18.1/ESD/NAV-TW-30-18-1-0-37-NL.exe

    – Norton Internet Security 2011 Dutch version: http://buy-download.norton.com/downloads/CLT/NIS/NL/2011/18.1/ESD/NIS-TW-30-18-1-0-37-NL.exe

    – o – o – o – o – o – o – o – o -o –

    Full version / Upgrade / Trial download links Norton Internet Security Netbook Edition 2011 Final RTM 18.1.0.37, English and German versions

    – Norton Internet Security Netbook Edition 2011 English version: http://buy-download.norton.com/downloads/CLT/NISNE/US/2011/18.1/ESD/NIS-NETBOOK-ESD-18-1-0-37-EN.exe

    – Norton Internet Security Netbook Edition 2011 German version: http://buy-download.norton.com/downloads/CLT/NISNE/GE/2011/18.1/ESD/NIS-NETBOOK-ESD-18-1-0-37-GE.exe

    – o – o – o – o – o – o – o – o -o –

    Reviews, tests and awards NIS 2011 and NAV 2011

    – PCMag review Norton AntiVirus 2011: http://www.pcmag.com/article2/0,2817,2368764,00.asp
    – PCMag review Norton Internet Security 2011: http://www.pcmag.com/article2/0,2817,2368876,00.asp
    – CNet review Norton AntiVirus 2011: http://download.cnet.com/Norton-AntiVirus-2011/3000-2239_4-10592477.html
    – CNet review Norton Internet Security 2011: http://download.cnet.com/Norton-Internet-Security-2011/3000-18510_4-10592551.html
    – AV-Comparatives Award Best Anti-Virus Product of 2009: Symantec/Norton
    – PCWorld/AV-Test.org review Norton Internet Security 2011: http://www.pcworld.com/article/id,214625/article.html
    – Chip Online review Norton Internet Security 2011 (German language): http://www.chip.de/downloads/Norton-Internet-Security-2011_16463672.html

    August 28, 2010 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, Malware, Norton Internet Security, Phishing, Recommended External Security Related Links, Toolbarware, Vulnerabilities | , , , , , , , , , , , , , , , , , , , , , , , , , | 1 Comment

    AQMRB – Alliance of Qualified Malware Removal Boards™

    I am really pleased to announce that a new Security Alliance is born: AQMRB – Alliance of Qualified Malware Removal Boards™.

    Aim of the Alliance is, to provide the user searching for malware remove help with the best available and fully qualified services to remove malicious content from his PC, this all free of charge. Only boards that satisfy an extensive list with demanded qualifications/demands can apply for AQMRB membership, all applications will be thoroughly reviewed and evaluated, this with the aim that only fully qualified boards can join the Alliance.

    About AQMRB

    AQMRB is an Alliance of fully qualified Malware Removal Boards.

    AQMRB main aim is to serve customers searching and asking for malware removal help in the best possible way.

    AQMRB guarantee free professional malware removal help to non-commercial users.

    AQMRB boards offer malware removal help solely provided by staff that are trained and graduated at acknowledged malware removal schools/universities.

    AQMRB is a non-profit, volunteer network of independent Malware Removal Boards, and is not affiliated with any organisation.

    General Info

    More info about the Alliance can be found here: AQMRB
    Boards that have the intention to join the Alliance are invited to look at the home page of AQMRB for demanded qualifications.

    On behalf of AQMRB,

    Smokey, Founder

    July 18, 2010 Posted by | Anti-Spyware, Anti-Virus, Bundleware, Malware, News, Phishing, Recommended External Security Related Links, Toolbarware | , , , , , , , , | Leave a comment

    Severe BitDefender 2010 update problem: set of bad definitions released

    Read for you on SANS, posted today, 18:29:31 UTC:

    We have started to receive reports this morning concerning a popular consumer antivirus product has caused some grief today. BitDefender 2010 appears to have released a set of bad definitions. Unfortunately, these bad virus definitions appear to detect core DLL files and even parts of BitDefender, itself, as infected by “Trojan.FakeAlert.5”. There is quite a thread discussing this issue on the BitDefender Forums.

    If you or your organization uses BitDefender, I would heavily recommend that you disable auto-update of the definitions until corrected ones are released soon. Also, I would recommend preparing to do a lot of hands-on clean up to reverse those files which were quarantined by accident.

    Sound not good at all…

    Post updated – Official BitDefender statement:

    Due to a recent update it is possible that BitDefender detects several Windows and BitDefender files as infected with Trojan.FakeAlert.5

    In order to solve this issue you will have to perform these steps:

    – open the BitDefender interface in Expert Mode
    – go to the Antivirus tab and disable the Realtime Protection permanently.
    – go to the Quarantine tab and restore all items that are detected as Trojan.FakeAlert.5.
    – reboot your PC
    – open BitDefender in Expert Mode
    – go to the Update tab and run an update.
    – wait for the update to finish and enable the Realtime Protection that was disabled earlier.

    If, however, your Windows can no longer boot properly you will need to perform one of the 2 actions below:

    1. Use Last Known Good Configuration
    – reboot your PC and press F8 repeatedly until you reach a text menu
    – choose the last option on the bottom of the page named Last Known Good Configuration

    2. Use System Restore

    Source: BitDefender

    March 20, 2010 Posted by | Advisories, Alerts, Anti-Virus, Downloads, Malware, Recommended External Security Related Links | , , , , , , , , , , | Leave a comment

    FREE Commercial- and Good Deal Software on Smokey’s Security Forums

    Smokey’s Security Forums have started a new project: Freebies and Good Deal Software. The board have therefore now a new section, divided into 2 sub-forums:

    Freebies and Good Deals, regarding Security software
    Freebies and Good Deals, regarding Common Software

    Leader of this new section is Chubb, he will do all the necessary to keep the 2 forums up-to-date. His opinion regarding this kind of software:

    Security solution is an important part of our life. Freebies or discounts can encourage people to try different products and choose their own security solution. Some inexperienced users simply surf unsafely and are facing high risk. Freebies can sometimes help them learn more on using security products. It also helps to combat software piracy.

    We advise to visit these 2 forums every day, to check on the existence of new Freebies and/or Good Deals.

    Happy computing and safe surfing, 🙂

    Smokey

    February 7, 2010 Posted by | Advisories, Alerts, Anti-Spyware, Anti-Virus, Downloads, News, Recommended External Security Related Links | , , , , , , , , | Leave a comment