Firefox Trojan Steals Passwords

A new Trojan horse program identified by anti-malware company BitDefender as Trojan.PWS.ChromeInject.B works as a Firefox plug-in.

Two files, one Javascript and one Windows executable, conspire to steal user logon credentials whenever you log on to one of 103 domains, largely belonging to banks (see the BitDefender link for the complete list). The sites are largely out of the US.

BitDefender identifies ChromeInject as "...the first malware that targets Firefox." It's the first we've heard of as well. The writeup has no information on how the file is being distributed or if it's mislabeled as something else, but they give it a spreading factor of "very low".

Take this as a warning, in case you thought otherwise, that Firefox is vulnerable to all the usual forms of attack. Use common sense when surfing even in Firefox, and especially when installing plug-ins.

Read more...

Unable to Browse the Network

If you do not have a logon password, Windows95 might have problems when you try and browse the network.
Try the following steps to solve the problem.

1. Start REGEDIT
2. Go to Hkey_Local_Machine \ Software \ Microsoft \ Windows \ Current_version \ Network \ Real mode net
3. Delete the line that says AUTOLOGON=0
4. Save the changes and reboot the system

Download reg file

Read more...

Disable Password Caching

As in Windows for Workgroups, when logging on to an NT Domain, it is preferable to disable password caching.
This allows for the single NT Domain login and eliminates the secondary Windows logon screen.
It also eliminates the possibility of the respective passwords to get out of sync.

To disable password caching on the workstation, a one-line addition to the registry needs to be made.
To make the change, create a ASCII text file called DISABLE.REG with the following lines:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Network]
"DisablePwdCaching"=dword:00000001

Open up a DOS box and type REGEDIT DISABLE.REG

You can also download the DISABLE.REG file.

If you need to re-enable password caching, download ENABLE.REG and repeat the process just with the different file name

Read more...

Not Saving your Dial-Up Password

If and when dial-up networking won't remember your passwords anymore , you can have a corrupted password list file.

Either restore your PWL files from a backup or :
Do a file find on *.PWL and rename them to another extension (*.bak)
This will force dial-up to create a new password file

Notes : There are a few other possibilities:

1. You need to install Client for Microsoft Networks as part of your network setup.

2. You may have an entry in the registry that is causing problems:

1. Start Regedit
2. Go to HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft Windows \ CurrentVersion \ Network \ Real Mode Net \
3. Either delete the key autologon or change the value from 0 to 01

3. If deleting the PWL file did solve the problem, you can also download the Password List Update (278 K) program from Microsoft to prevent it from happening again..

Read more...

Resetting Forgotten Dial-Up Server Password

If you forget the password you set for you Dial-Up Server
simply delete (or rename) the RNA.PWL file in the WINDOWS directory

Read more...

Forcing Alpha-Numeric Passwords

In order to force passwords that just use alpha-numeric characters

1. Start Regedit
2. Go to HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Network
3. Create a DWORD entry called AlphanumPwds
4. Give it a value of 1

Read more...