auto shutdown

[klontz]

installed windows xp last night at home. now get message
system shut down by nt authority system. remote procedure
call service and then counts down 60 seconds and reboots.
did not install as nt used fat32.

 

[Will Denny]

Hi

Your system has been infected by the Blaster Worm. Have a look at the following links:

www.kellys-korner-xp.com/xp_qr.htm#rpc

Courtesy of MVP Kelly Theriot.

"Virus Alert About the Blaster Worm and Its Variants"
http://support.microsoft.com/?id=826955

"What You Should Know About the Blaster Worm and Its Variants"
http://www.microsoft.com/security/incident/blast.asp

 

[Carey Frisch [MVP]]

Apparently, your computer is infected with the W32.Blaster.Worm or one of its variants.
This happened because you have not been using an internet connection firewall and have
neglected to install the critical updates available at the Windows Update website.

What You Should Know About the Blaster Worm and Its Variants
http://www.microsoft.com/security/incident/blast.asp

Are you looking for info about the cause of "Remote Procedure Call (RPC)",
initiated by NT Authority\System error message that shuts down Windows
(you might also see svchost.exe error occasionally)?
http://www.faqs.org/rfcs/rfc1831.html


--
Carey Frisch
Microsoft MVP
Windows XP - Shell/User

Be Smart! Protect your PC!
http://www.microsoft.com/security/protect/

------------------------------------------------------------------------------------


| installed windows xp last night at home. now get message
| system shut down by nt authority system. remote procedure
| call service and then counts down 60 seconds and reboots.
| did not install as nt used fat32.

 

[Scott M.]

DO NOT follow the instructions at the kellys-korner site. In fact, NEVER
NEVER NEVER click any link (unless it is from a completely trusted source)
that will start an executable program. Kelly is very fond of linking to
..vbs (Visual Basic Script) files all over the site. These files will modify
your system!!

I am continuously "shocked and awed" by the supposed MVP's out there who
advocate this site!! You can all the information you need on how to solve
the problem at:

http://www.microsoft.com/security/incident/blast.asp

 

[Carey Frisch [MVP]]

Well, you're wrong. Kelly Theriot's website helps millions of folks.
Her scripts fix problems and she would not offer them if they caused
harm in any fashion.

--
Carey Frisch
Microsoft MVP
Windows XP - Shell/User

Be Smart! Protect your PC!
http://www.microsoft.com/security/protect/

----------------------------------------------------------------------------------------------


| DO NOT follow the instructions at the kellys-korner site. In fact, NEVER
| NEVER NEVER click any link (unless it is from a completely trusted source)
| that will start an executable program. Kelly is very fond of linking to
| .vbs (Visual Basic Script) files all over the site. These files will modify
| your system!!
|
| I am continuously "shocked and awed" by the supposed MVP's out there who
| advocate this site!! You can all the information you need on how to solve
| the problem at:
|
| http://www.microsoft.com/security/incident/blast.asp

 

[Scott M.]

Carey, please READ my post and try to understand what I'm saying. I don't
want to get into an argument here, but did I say anywhere that Kelly's site
was not helpfull? Did I say the scripts don't work?

No. What I said was that a user should NEVER click a link to an executable
unless they completely trust the source. And I'll append to that statement
that the user should also KNOW what the executable is going to do to thier
system.

This NG is freqented by a LARGE number of newbies, who post frantic messages
for help. Instructing someone like this to go and execute someone's .vbs
file is just BAD ADVICE. Sure, this .vbs file may fix a problem, but you've
now introduced a terrible habit to the user. Think about it. If users
understood what they were clicking on in the first place, many of the
viruses we talk about would never get spread in the first place. And on the
other hand, clicking the .vbs link could also CAUSE me to get a virus and/or
do harm to my system. I have no idea who Kelly is, why should I implicitly
trust her?

The second reason why Kelly's "solutions" should not be followed is that
there are plenty of other places to go that don't ask you to run an
executable or are more trustworthy than Kelly.

As an MVP, you should know that many users will trust what you say.
Advising people to click .vbs files they find on some MVP's web site is not
a good computing habit. Advising someone to understand computer threats and
how they can become vulnerable to them (i.e. clicking a link to an unknow
executable) is the BEST way for that user to avoid them in the future.

Set aside your admiration for Kelly for a second and think how a newbie
thinks.

Happy New Year!!

 

[Will Denny]

Hi

I would never post a link to a file that I hadn't tried out on my PCs here first. The .VBS files that Kelly has on her web site are *not* the same as the files that 'script kiddies' produce.

I have been using Kelly's .VBS files since I is was a 'newbie' without any harm coming to any of my PCs. Kelly's .REG files fix problems, without which, many people would have to manually edit the Registry - causing even more problems.

 

[Scott M.]

And still, you miss my point. The point is not whether Kelly's scripts work
or not. The point IS that executing a script file from some random person's
web site is ill-advised at best.

I have said this in several posts, but Kelly has registry hacks for so many
items that could be addressed by simply changing a setting in the right
dialog box in Windows. Why do surgery when an asprin will do the job?
Along the same lines, why take the chance and execute someone else's script
when you can easily go to any of the major corporations that deal with
viruses and find a known and trusted fix for the problem?

How does a newbie know that Kelly's scripts do what they say or even who
Kelly is? This same kind of blind ignorance (umm "trust"), is what causes
so many to get viruses in the first place.


Hi

I would never post a link to a file that I hadn't tried out on my PCs here
first. The .VBS files that Kelly has on her web site are *not* the same as
the files that 'script kiddies' produce.

I have been using Kelly's .VBS files since I is was a 'newbie' without any
harm coming to any of my PCs. Kelly's .REG files fix problems, without
which, many people would have to manually edit the Registry - causing even
more problems.

 

[Epona]

DO NOT follow the instructions at the kellys-korner site. In fact,
NEVER NEVER NEVER click any link (unless it is from a completely
trusted source

That's what Kelly's Korner *IS* you ****wit! I think you owe her a huge
apology. She *IS* trusted, respected and extremely well liked around here -
infinitely more than can be said for you! She is a woman of the utmost
integrity and I know that she won't accept a file until it has been
thoroughly tested. I also know that the MVPs who submit files to her site
are also of the utmost integrity - I haven't crossed swords, as it were,
with many of them, but people like Doug, Kent, Ron, Jim and Harry are known
for their honesty and dedication to their work. I'd trust any of them with
my system any day.

) that will start an executable program. Kelly is very

fond of linking to .vbs (Visual Basic Script) files all over the
site. These files will modify your system!!

As will the MS download you quoted, you moron! Of course it'll modify your
system - they both remove the remnants of the worm! It would be a poor 'fix'
that didn't!

I am continuously "shocked and awed" by the supposed MVP's out there
who advocate this site!!

We all are - in awe of Kelly for putting together and maintaining this site
whilst juggling being a mother of eight. She is a remarkable person, one I'm
very privileged to call 'friend'.



You can all the information you need on how

to solve the problem at:

http://www.microsoft.com/security/incident/blast.asp

Which does exactly what Kelly's fix does! Kelly didn't even write that
..vbs - it was compiled by Doug Knox (IIRC).

I don't know what percentage of the files on her site she wrote herself -
but many were written, or compiled, by other MVPs, including: -

Doug Knox
Jim Eshelman
Kent England
Ron Martell
Tom Porterfield
Harry Ohm
Mark Ferguson
Terri Stratton
Mark Salloway
Sandi Hardmeier

to name but a few...so you insult Kelly; you're also insulting every MVP who
has ever submitted files/fixes/tips/tweaks etc, to her site.

This community wouldn't run without the tireless support of Kelly and her
ilk. I have seen her posting at what would be, for her, 2, 3, 4 in the
morning, maybe because one of her children is having trouble sleeping and
she can't get back to sleep herself after settling him/her.

I hope that, one day, you need assistance and you don't receive it.

I shan't hold my breath for an apology - you're obviously a troll, and I've
never seen a troll apologise before - can't see why you should be any
different.

This is a very disrespectful post. Not that you'll have (m)any supporters -
all of us who know Kelly will instantly rush to her defence.

 

[Epona]

And still, you miss my point. The point is not whether Kelly's
scripts work or not. The point IS that executing a script file from
some random person's web site is ill-advised at best.

I have said this in several posts, but Kelly has registry hacks for
so many items that could be addressed by simply changing a setting in
the right dialog box in Windows. Why do surgery when an asprin will
do the job? Along the same lines, why take the chance and execute
someone else's script when you can easily go to any of the major
corporations that deal with viruses and find a known and trusted fix
for the problem?

How does a newbie know that Kelly's scripts do what they say or even
who Kelly is? This same kind of blind ignorance (umm "trust"), is
what causes so many to get viruses in the first place.

No - not running an AVP over what you download before executing it is what
causes the infection, moron. Kelly - and everyone else who's earned the
title 'MVP' - has done so because of their tireless work and dedication to
the MS communities.

If Kelly's downloads (many of which aren't even hers - they were written by
many other MVPs) destroyed people's systems, as you appear to be claiming,
then she wouldn't have been 're-elected' for the past, what is it now, three
years I believe.

 

[Scott M.]

No - not running an AVP over what you download before executing it is what

causes the infection, moron. Kelly - and everyone else who's earned the
title 'MVP' - has done so because of their tireless work and dedication to
the MS communities.

Hey, thanks for the kinds words! You are STILL missing the point (have you
even read any of my posts?!). According to your theory (of running the
AVS), no one would ever get a virus, and we all know that this is not the
case. Not to mention that a .vbs file may not be a virus, but it could
damage a system none the less.

Listen, MVP doesn't stand for "trust me without asking questions and just do
what I say". Anyone (MVP or not) who wants to help users (as I am trying to
do) should not take the approach of "just trust me".

If Kelly's downloads (many of which aren't even hers - they were written by
many other MVPs) destroyed people's systems, as you appear to be claiming,
then she wouldn't have been 're-elected' for the past, what is it now, three
years I believe.

Well, now you've proven that you haven't read this thread because I have
said in several posts that I never claimed that Kelly's .vbs files would
harm a system. I said that the act of executing something without knowing
who you are getting it from and knowing for sure that's it is trustworthy is
reckless and should NEVER be done.

If you want to go worship Kelly, be my guest. If you read my posts and try
to understand what I'm saying, you'll realize that I'm not attacking Kelly
or anyone in particular. I am advising against a dangerous practice.

Oh and by the way, Happy New Year to you too!

 

[Guest]

I'm having the same problem.

Installed it yesterday on my dad's system in California. Upgraded from ME. Same problem you're having.

Have you got a fix on what the problem is yet? I had thought maybe there was a legacy application on the system that was causing it, but now am thinking that's unlikely.

AJ

 

[Scott M.]

If you are having the same problem, the without a doubt, you have the
blaster worm.

Here's everything you need to correct it:

http://www.microsoft.com/security/incident/blast.asp

I'm having the same problem.

Installed it yesterday on my dad's system in California. Upgraded from

ME. Same problem you're having.

Have you got a fix on what the problem is yet? I had thought maybe

there was a legacy application on the system that was causing it, but now am
thinking that's unlikely.