Re: MS Security CD, wsh topic buried, non automated post (promise)

From: name (nospam_at_user.com)
Date: 04/21/04

  • Next message: name: "Re: WScript.Arguments: value (sometimes) includes surrounding single-quotes" 
    Date: Wed, 21 Apr 2004 02:54:44 -0400

    Final:

    W32/Tzet.worm was not caught.

    My Win2003Server user name and password was weak, but
    I did not automatically realize that a remote attacker could
    guess for a shared folder and thereby get in.

    As to wsh.

    http://www.trendmicro.com/download/dcs.asp

    offers a nice non-customer page for Business Antivirus Users.
    Their stuff is for server is seems. The CA/MS CD was not.

    If you need it, you most likely want to script your 'access'.

    While $? bucks a year is not out of this world, scripters usually
    want and deserve the Best. Not to mention the myriad of choices

    LogOn combinations to stay away from:

    http://vil.nai.com/vil/content/v_100519.htm

    Machine/License was in day 3 of second of four evaluation rounds.
    Was not to bad therefore.

    ===========
    I left the default OE news post format which is HTML on this machine (XP
    Home),
    because I can't possibly keep track of all do/undo and enable/disable.
    And I like HTML.
    Yes and I still run WIN95/98 for tasks that may finish with twice as many
    and more
    processes available per default through script and simple I/O tasks,
    then the NTKernel brethren make available.

    ===========

    "name" <nospam@user.com> wrote in message
    news:ujQUKWQJEHA.628@TK2MSFTNGP11.phx.gbl...
    > Addendum :
    >
    > It turned out to be a little bit intrusive for my taste.
    >
    > =====================================
    >
    > Even when I disabled run/runonce registry keys by
    > prefixing the value with "-", which works for most or all
    > windows stuff I know, the firewall still inserted stuff in about every
    > page via 127.0.0.1:xxxx.
    >
    > May be some 'persistent driver".
    >
    > Not to my likening.
    >
    > And not the best copyright behaviour either.
    >
    >
    > Also I had a second feeling with repeated warnings of
    > "You may not be able to uninstall this software" and so on.
    >
    > =====================================
    >
    > As for the impressive way popups were blocked :
    >
    > Without enabling my server, no 127.0.0.1 will go through.
    >
    > With their implementation however it will just do that.
    >
    > Wonder about the actual trade off.
    >
    > Secondly : The firewall extends on the windows
    > "zone imperative" abd idtroduces stuff that no technician will figure out.
    >
    > Saying that you network drives may cease working.
    >
    > Also : NO "add your ad banner string" feature, which lets CA determine
    > what is suitable or not.
    >
    >
    >
    > Yup, either way, life will go on.
    >
    >
    >
    >
    >
    >
    >
    >
    > "name" <nospam@user.com> wrote in message
    > news:uTqQgNrIEHA.3224@TK2MSFTNGP09.phx.gbl...
    > > url for (free) order (including shipping) from MS
    > > was at ...: I forgot [see post march 31]
    > >
    > > ==========================================
    > > "A formerly tested and rejected software turned multi functional"
    > > ==========================================
    > >
    > > content :
    > > 1. MS update CD bundled with
    > > 2. Third party trial Version CD"
    > >
    > > ====================================
    > >
    > > As to 1. Have not had time yet. Seems I kept current.
    > >
    > > As to 2.
    > >
    > > Prerequisite :
    > >
    > > Atguard comparable
    > > Anti-popup (script disabling)
    > > anti-virus
    > > anti-adbanner
    > > anti-cockie,headers,user-agent
    > > firewall
    > > basic all in one
    > >
    > > Brand:
    > > Own name, but CA, Computer Associates Association
    > >
    > > Duration :
    > > CD print says 1 year free.
    > >
    > > Good:
    > > Includes above mentioned.
    > > Restarts it's try icon(s), even when explorer crashes
    > > File System Context Menu Entry for anti-virus scanning
    > > Auto update for "signatures"
    > > Little hidden but obviously 'available" wsh commandLine/run stuff
    > >
    > > Bad :
    > > At each rebot shows selfAd popup/dialog
    > > At each reboot wants a "continue trial" click
    > > Nags thereby miserably
    > >
    > > Paranoia :
    > > User needs to set/allow the following...
    > > (which appear listed in default choose list)
    > > "Outlook Express"
    > > "Internet Explorer"
    > > "HTML Application Host"
    > > .......(or no page will load in browser after reboot)...
    > >
    > > Imperfect:
    > > Has multiple icons, one in startbar, two in tray
    > >
    > > Catches by default :
    > > NetBios
    > > UPD
    > >
    > > Does NOT catch by default :
    > > The myrate of DCOM garbage
    > >
    > > Missing :
    > > anti-browser resize
    > > anti browser/explorer moveTo
    > >
    > > Suprises :
    > > May catch a call to your same machine server on startup
    > > See Attachment
    > >
    > > File Attachment :
    > > perceived configuration depth to this point
    > >
    > > Summary :
    > > As long as that trial may last.
    > > You may want to run all your drives under it.
    > > You may need to discover that you are under
    > > one or the other 'educative' surprise attack/resolve.
    > >
    > > (readme.txt virus repositories, dr.watson dump files etc.)
    > >
    > > Current :
    > > Ms had posted several changes via "Update".
    > > Make sure you get them.
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    > >
    >

  • Next message: name: "Re: WScript.Arguments: value (sometimes) includes surrounding single-quotes"