Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)

From: "David H. Lipman" <DLipman~nospam~@Verizon.Net>
Date: Tue, 13 Dec 2005 19:08:06 -0500

From: "dude" <deepdark@xxxxxxxxx>

>> Actually SP2 could have little to do with it. Yes there are vulnerabilities that are
>> mitigated and there is the FireWal, etc...
|
| Can't you read? I said it already twice in capital letters - NO
| SECURITY VULNERABILITY FIXES WERE ALLOWED.
|
| It's like saying you have to buy a 5 star security car, wear a
| seatbelt, but you're not allowed to ever wipe the windshield.
|
| To defend this stance is just plain crazy. An idiot administrator
| should have installed SP2 and enabled Automatic Updates and increased
| security. This alone could have prevented infiltration of spyware. End
| of story.

No. The user should have had limited rights to the PC hard disk and Registry so software
could not be installed.

You are missing the point. I am defending no one. Both your friend and the admin are
guilty. The adware/spyware you indicated are not installed via an OS vulnerability. They
are installed by users how have too many rights and privileges on the "company asset" and
don't practice Safe Hex.

Your friend has what's called contributory negligence.

Even with SP2 installed and all patches were up-to-date the same thing can/will happen !

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

.

Follow-Ups:
- Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: dude

References:
- HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: dude
- Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: Winux P
- Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: dude
- Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: David H. Lipman
- Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
  - From: dude

Prev by Date: Re: background is not working
Next by Date: Re: Too Many User Accounts
Previous by thread: Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
Next by thread: Re: HOWTO: How to remove VX2 spyware (the latest and worst versions)
Index(es):
- Date
- Thread

Relevant Pages

Re: Question - SP2
... > SP2 is heavily oriented toward security, and not installing it ... > increases your vulnerability during the period you wait. ... INSTALL SP2 ASAP ...
(microsoft.public.windowsxp.general)
SecurityFocus Microsoft Newsletter #165
... Tenable Security ... distribute, manage, and communicate vulnerability and intrusion detection ... Microsoft Internet Explorer MHTML Forced File Execution Vuln... ...
(Focus-Microsoft)
SecurityFocus Microsoft Newsletter #174
... This issue sponsored by: Tenable Network Security ... the worlds only 100% passive vulnerability ... MICROSOFT VULNERABILITY SUMMARY ... Novell Netware Enterprise Web Server Multiple Vulnerabilitie... ...
(Focus-Microsoft)
[NT] Cumulative Security Update for Internet Explorer (MS04-038)
... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... CSS Heap Memory Corruption Vulnerability, ... Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ...
(Securiteam)
SecurityFocus Microsoft Newsletter #171
... Better Management for Network Security ... GoodTech Telnet Server Remote Denial Of Service Vulnerabilit... ... ASPApp PortalAPP Remote User Database Access Vulnerability ...
(Focus-Microsoft)