Re: NT AUTHORITY SYSTEM
From: Willie (willieinkazoo_at_hotmail.com)
Date: 06/16/04
- Next message: *Vanguard*: "Re: Finding wowexec.exe"
- Previous message: scootersite_at_NOSPAMhotmail.com: "Rundll32.exe & defrag errors..................."
- In reply to: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Next in thread: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Reply: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 16 Jun 2004 06:27:58 -0400
And ".vbs" (According to Symantec)
Willie
"Mark Jacobs" <markj atty critical dotty co dotty uk> wrote in message
news:uaMGLV4UEHA.760@TK2MSFTNGP12.phx.gbl...
> *WRONG*. Everyone gets infected for one very simple reason - they allow
> ActiveX controls to run without prompting from IE (and hence OE etc.). If
you
> configure your machine to *NOT RUN ACTIVEX CONTROLS AT ALL EVER* and
*DISABLE
> INSTALL ON DEMAND* then the worst that can happen is you'll get some
cookies
> that relay your browsing info to some corporate nomark. You can disable
these
> things under IE properties (or Tools Options). The one drawback is that
the
> Windowsupdate.com needs ActiveX enabled. I spoke to a Microsoft
representative
> about this seeming Catch 22 situation, and all he could advise was to
enable
> it briefly for the manual update, and then disable afterwards. As a
result, I
> guess I'll update about once a year. As you can see, ActiveX can view,
update,
> and delete your files on your C: drive without prompting you!
>
> Another word of caution. *DO NOT LAUNCH EMAIL ATTACHMENTS THAT COME FROM
> SOMEONE YOU HAVE NEVER HEARD OF, OR WEREN'T EXPECTING*. If you enable all
> extensions visible (Desktop Files setting) and you see any of these
> extensions, then delete the email :-
>
> .exe
> .scr
> .com
> .bat
> .pif
> .dll
>
> Also some .zip files contain files that look innocuous, but have loads of
> spaces in their names to hide the malicious extension type off the edge of
the
> display column in Winzip. So be careful double clicking files in an
emailed
> zip file - make sure you have not ignored the ellipsis (...) that appears
when
> a file name is longer than the display column. Example file name is :-
>
> document1.doc
> .pif
>
> The biggest rip-off in the world is the "forever behind the current crop
of
> viruses" antivirus programs. Usually, you get a virus, and then patch the
> antivirus program to the latest version, and then fix your virus, in that
> order. A firewall product like ZoneAlarm is absolutely essential if you
have a
> broadband connection. I get, on average, about 3 unauthorised snoops from
> spoofed ip addresses every minute!!! It has been like this for 2 years
now!!!
>
> --
> Mark Jacobs
> DK Computing
> http://www.dkcomputing.co.uk
> markj atty critical dotty co dotty uk
>
> "NoNoBadDog!" <mysocks_bjsledge_AT_pixi.com> wrote in message
> news:%23T0v$23UEHA.1356@TK2MSFTNGP09.phx.gbl...
> | Congratulations!
> |
> |
> |
> | Your system is infected with the much publicized Sasser worm. You
allowed
> |
> | yourself to become infected because of ALL of the following;
> |
> |
> |
> | 1. You have not updated your version of Windows.
> |
> |
> |
> | 2. You are not using an UP TO DATE antivirus program.
> |
> |
> |
> | 3. You connected to the internet without a firewall on your computer.
> |
> |
> |
> | Until you correct ALL of the above situations, you will remain
vulnerable to
> |
> | infection not only by SASSER, but also by the thousands of other worms,
> |
> | viruses, trojans, keyloggers, spyware, malware, etc.
> |
> |
> |
> | Because you do not practice even the most basic level of computer
security,
> |
> | you are not only a threat to yourself but to the entire internet
community.
> |
> | When your machine is infected, it looks for other machines, owned by
persons
> |
> | like yourself who have poor computer security practices, to infect.
> |
> |
> |
> | When the shutdown message appears, go START > Run and type in
"shutdown -a"
> |
> | (without the quotes), and hit the enter key. Go to the Microsoft update
> |
> | website and download and install all critical patches. After rebooting,
go
> |
> | to the website of the company that makes your antivirus program and
download
> |
> | all the updates that are available. If your antivirus has expired, you
must
> |
> | purchase a new one.
> |
> |
> |
> | Third, go to www.zonealarm.com and download the FREE firewall.
> |
> |
> |
> | Keep your version of Windows updated. Always install any critical
patches
> |
> | that are posted to the Microsoft update website.
> |
> |
> |
> | Keep you antivirus program up to date. New virus detection signatures
are
> |
> | released nearly on a daily basis, so this is something you should do
every
> |
> | day. Not once a month, or "when I have time", or "when I remember".
> |
> |
> |
> | Once you have done these things, you will find your internet experience
to
> |
> | be much safer and happier.
> |
> |
> |
> | Bobby
> |
> | "RICHINA" <RICHINA@discussions.microsoft.com> wrote in message
> | news:3A3B5EC4-584D-49D3-A748-52A1749BB2B6@microsoft.com...
> | > ABOUT EVERY FOUR MINUTES I GET THE MESSAGE THE NT AUTHORITY SYSTEMM
HAS
> | INITIATED THE SHUTDOWN. STATUS CODE 1073741819.
> | > WHEN ON THE INTERNET I GET REMOTE PROCEDURE CALL SERVICE WAS
INTERRUPTED
> | PREMATURELY AND SHUTS DOWN.
> | > ANY HELP GREATLY APPRECIATED
> | > I AM USING TRYING TO UPGRADE TO WINDOWS XP PRO
> | > RICHARD
> |
> |
>
>
- Next message: *Vanguard*: "Re: Finding wowexec.exe"
- Previous message: scootersite_at_NOSPAMhotmail.com: "Rundll32.exe & defrag errors..................."
- In reply to: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Next in thread: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Reply: Mark Jacobs: "Re: NT AUTHORITY SYSTEM"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
