Techno Babble
It's all about technology! If technology is your thing use this forum to discuss anything tech related.
32,351 topics in this forum
-
Re: windows update blocked...
by Guest Brit33- 2 replies
- 125 views
"Alias" wrote: <span style="color:blue"> > Gordon J. Rattray wrote: > <span style="color:green"> > > Hi there, > > > > My main machine has a problem with the "wuauclt.exe" service process > > grabbing 99% of the processor when Windows goes for the updates. Only way to > > get the machine to run properly is to disable the Windows Update service. > > > > I did the Kapersky check, the MS Live Safety Site check, SpyBot, Pest > > Patrol, and Ad Aware and nothing came up in the way of malware. > > > > > > But it still hangs when going to Windows update... "wuauclt.exe" grabs …
-
Virus Removal
by Guest clarky clarke- 3 replies
- 130 views
Hi My service provider is BT and they use Norton Anti Virus ,when I run a full scan I am warned of a high risk virus called Downldr that they can't remove .When I use Windows Explorer to locate the file it reports no files found.How do I remove this virus? -- Thanks To anyone who replies to my post
-
- 0 replies
- 129 views
Penang wrote... <span style="color:blue"> > I have Norton Anti Virus installed in my PC, however, I just found out > that it is utterly useless. > > My PC has been infected with banbot, but NAV can't even find it, let > alone remove it ! > > It isn't that Symantec doesn't know about banbot, they have 2 webpage > devoted to it -- > > www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=2 > > and > > www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=3 > > and yet > > Can anyone please tell me if there's any utility that can he…
-
Re: Need my Temporary Interent Files
by Guest PA Bear [MS MVP]- 9 replies
- 105 views
[Forwarded to Vista Security newsgroup via crosspost] Alexandra wrote:<span style="color:blue"> > I have just gotten a new PC with Vista and my Temporary Interent File > folder > is hidden. I have checked and uncheck all the appropriate places even > changed the registry vale for SuperHidden files. Still can not access it. > When I open the settings in the Internet Opetions panel and View Files it > is > blank. The Properties box for the Temporary Internet Files attributes is > set with the Hidden checked and greyed out so there is no way to change > it. > With Dell, I have changed owners, changed permissions, checked…
-
NTRights & SQL Service Account Security
by Guest BigSam- 1 reply
- 78 views
I trying to configure SQL to run with a user account - not administrator account. I'm running SQL 2k5 with a domain account. I think I've followed all of the security configuration changes for the account, but when trying to restart SQL on one server it fails. (It starts on 2 other servers.) I went back to review the changes I applied with NTRights & ran ShowPriv for some of the Windows Privledges. Something must have gotten screwed up on this server, because I get errors when running showpriv. Follows is part of the output from ShowPriv: The LookupAccountSid() API returned error 0x00000534 Since I think NTRights was run on an non-existant account, ho…
-
- 0 replies
- 100 views
In Vista, where is the LocalService\Application Data\Microsoft\Protect directory located? It looks like the entire LocalService profile was moved to C:\Windows\ServiceProfiles, but I don't see a folder for Application Data. Thanks!
-
Questioning the 'helper' - is this true?
by Guest ~BD~- 7 replies
- 72 views
Read the following carefully and notice the double AA ISAASS.EXE is a Windows file ISASS.EXE is Malware and should definitely be cleaned. Just wondering! Dave
-
Print/Export Directory Permissions
by Guest FF- 1 reply
- 71 views
Anyone know of a way or a utility that will give a print out of user/group permissions on a folder? The accounting department wants to know who has access to a folder and all of it's subfolders. We're talking 100's... Thanks!
-
MS dumps Vista. 1 2
by Guest news.microsoft.com- 37 replies
- 368 views
MS dumps Vista. No surprise there. http://www.nytimes.com/2008/10/29/technolo...ess&oref=slogin
-
- 0 replies
- 71 views
Hi all, I have a question of how to disable the option of inherit from parent the permission entries that apply to child objects in Folder properties->Security tab->Advanced button->Permissions tab. In my environment, on that folder the NTFS permissions are set to full control to particular users so that they can manage other users access on the folder, while the share permissions for that folder are set to everyone full control. when theses security settings are applied, users connected to that share are able to change the option of Inherit from parent the permission entries that apply to child objects. But when I modify the share permission…
-
Tryingto trace an unauthorized login
by Guest mrecomm101- 3 replies
- 89 views
I'm getting an Event ID of 529 The USER is listed as NT AUTHORITY/SYSTEM Logon Failure: Reason: Unknown user name or bad password User Name: anna Domain: Logon Type: 3 Logon Process: Advapi Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0 Workstation Name: JM-APPSERVER Caller User Name: JM-APPSERVER$ Caller Domain: JACKSMAGIC Caller Logon ID: (0x0,0x3E7) Caller Process ID: 5128 Transited Services: - Source Network Address: - Source Port: - I'm trying to see where this logon is coming from. I have nothing on the firewall logs to indicate a remote access and the building was locked and alarmed. Any thoughts or suggestions?
-
Frustrating time trying to sign in here
by Guest Snowbound- 8 replies
- 91 views
I must of spent 30 minutes trying to sign in at http://windowshelp.microsoft.com/communiti...39-c13a2235ae50 I would sign in to my hotmail yet the system would throw no errors yet there would be no ability to post messages. I just happened to stumble over http://www.microsoft.com/communities/newsg...n&cr=US&lc=1033 which allowed me to sign in. I tried several computers all with the same result.
-
Fresh Vista64 install problem with junction points
by Guest Snowbound- 5 replies
- 96 views
Have a laptop with Vista64 and have problems installing OpenOffice. The program errors on on installing a file to \programdata\microsoft\windows\templates indicating that I do not have rights to that location. Checked in windows explorer and that location is showing up as a junction point rather than a real directory. I know that \ProgramData\Templates is a junction point which points to \\ProgramData\Microsoft\Windows\Templates but I can not gain access to that directory since in Windows explorer it too has a shortcut/junction point symbol and when I click on it I get an Access Denied error!
-
ANN: Out-of-band Security Update to be released 23 Oct-08
by Guest PA Bear [MS MVP]- 17 replies
- 155 views
Microsoft Security Bulletin Advance Notification for October 2008 http://www.microsoft.com/technet/security/...n/ms08-oct.mspx <QP> This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on Thursday, 23 October 2008. Critical Security Bulletin (1) ============================================================ Windows Bulletin - Affected Software: - Microsoft Windows 2000 Service Pack 4 - Windows XP Service Pack 2 and Windows XP Service Pack 3 - Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Windows Server 2003 Service Pack 1 and Windows Server 200…
-
IE Protected Mode Question(s)
by Guest JamesJ- 2 replies
- 118 views
Seems when I run IE 7 Protected Mode is off according to the status bar. But, since installing new Anti-Virus and Firewall software I get a warning when opening IE, from I believe is IE, that Protected Mode is off. I wasn't getting this message before. Does Protected Mode need to be on? Why wasn't I getting a warning before? Thanks, James
-
SMTP Trojan uses SVCHOST on W2K Pro
by Guest GavTel in BC.CA- 2 replies
- 100 views
Have SMTP Trojan embedded that uses svchost PID 560 or 432 opens ports UDP 3001, TCP 3002,3,4 and attaches either to RpcSs or Services and evades all Rootkit finders and Virus scanners. Shows up in Process Explorer and Open ports scanner. Have ripped registry apart looking for clues. Starts by downloading on port 443 from 195.190.13.198 writes to readable area in HKLM\\Software\\77 that has key a5 and contains code. destroy it and it is replaced. Also writes to software hive and software.bak.tmp . Malicious Tools scans clean, as do all Spyware scanners. McAfee no help either. Sysinternals shows it all happen using registered Microsoft components. This thin…
-
Yahoo! Messenger Security Issue?
by Guest Alex- 0 replies
- 92 views
Hi, I have MS Windows Vista Home Premium Service Pack 1. As IM programs I am using Windows Live Messenger and Yahoo! Messenger 8.1. I want to know if I am logged-in in Yahoo! Messenger 8.1 and someone is sending me a .exe application ( what contains malicious code, as a virus or rootkit or someting like that ) and I choose to denied the transfer ( to not accept it ), my computer is vulnerable to a infection??? [even i choose to denied it ] What if in the Yahoo! Messenger window i see the application icon and its name and the Save As or Decline links??? ( if I do no accept ). Thank You! [ please! i want a very professional reply, what to make me to tru…
-
List of trusted authorities - invalid?
by Guest Vadim Rapp- 3 replies
- 82 views
Hello, in the event log of several machines, I noticed entries about failed attempt to download the lsit of trusted authorities from http://www.download.windowsupdate.com/msdo...authrootstl.cab . The problem was in proxy server - I opened the port and it was then downloaded. But while I was trying it, I actually downloaded the cab, unpacked it, and looked at the file - certificate trust list "authroot"; when opened, it said that "this certificate trust list is not valid. The certifiate that signed the list is not valid". Viewing the signature shows: "The certificate is not valid for the requested usage". Should I worry? thanks, Vadim Rapp
-
Forgotten Password Wizard won't recognize my CD drive
by Guest David Mayerovitch- 3 replies
- 71 views
I'm running Vista Home Premium. I want to create a password reset disk using a CD. My CD/DVD/RW drive is E:. Windows Explorer also shows four other available drives: F:, G:, H: and I:. (I don't know why they are there, as there are no physical drives associated with them.) When I run the Forgotten Password Wizard, which is supposed to allow me to create a password reset disk on a CD or a USB key, I am presented with a dropdown list for choosing the drive on which I wish to create the disk. However, the options in the list are only F:, G:, H: and I:. When I select one of them, I am prompted to insert a password reset disk in the drive. Since there are no…
-
Microsoft Security Advisory (958963): Exploit Code Published Affecting the Server Service
by Guest PA Bear [MS MVP]- 1 reply
- 95 views
[Crossposted to Security, Security Home Users, and Windows Update newsgroups; Followup To set for Security newsgroup] Microsoft Security Advisory (958963): Exploit Code Published Affecting the Server Service <QP> Microsoft is aware that detailed exploit code demonstrating code execution has been published on the Internet for the vulnerability that is addressed by security update MS08-067. This exploit code demonstrates code execution on Windows 2000, Windows XP, and Windows Server 2003. Microsoft is aware of limited, targeted active attacks that use this exploit code. At this time, there are no self-replicating attacks associated with this vulnera…