To clarify the link for CWShredder Update

  • Thread starter Thread starter LuckyStrike
  • Start date Start date
Hi Pa,
You're the second one I *know of * to blow LS's cover, and I think the other one was an MVP too (Aw heck, it was GST).
Either you MVP's have way too much time on your hands, or way too many resources available to you (no, not GDI etc.)
<g,d & r v v f>
Curt
PA Bear said:
May I just point out that to the average person coming into this group..
the fact that that post was...

a. majorly cross posted
b. and with the sig line of Lucky Strike
(e-mail address removed)

Of which both together to the reasonably paranoid person ... I wouldn't
click on those links either.

It looked like a distribution of a virus or bogus code even if it was
not. Unfortunately we have to be careful these days.
Click to expand...

For my (counter-)culturally deprived sister, I offer:

<paste>
Step right up, step right up, step right up,
Everyone's a winner, bargains galore
That's right, you too can be the proud owner
Of the quality goes in before the name goes on
One-tenth of a dollar, one-tenth of a dollar, we got service after sales
You need perfume? we got perfume, how 'bout an engagement ring?
Something for the little lady, something for the little lady,
Something for the little lady, hmm
Three for a dollar
We got a year-end clearance, we got a white sale
And a smoke-damaged furniture, you can drive it away today
Act now, act now, and receive as our gift, our gift to you
They come in all colors, one size fits all
No muss, no fuss, no spills, you're tired of kitchen drudgery
Everything must go, going out of business, going out of business
Going out of business sale
Fifty percent off original retail price, skip the middle man
Don't settle for less
How do we do it? how do we do it? volume, volume, turn up the volume
Now you've heard it advertised, don't hesitate
Don't be caught with your drawers down,
Don't be caught with your drawers down
You can step right up, step right up

That's right, it filets, it chops, it dices, slices,
Never stops, lasts a lifetime, mows your lawn
And it mows your lawn and it picks up the kids from school
It gets rid of unwanted facial hair, it gets rid of embarrassing age spots,
It delivers a pizza, and it lengthens, and it strengthens
And it finds that slipper that's been at large
under the chaise lounge for several weeks
And it plays a mean Rhythm Master,
It makes excuses for unwanted lipstick on your collar
And it's only a dollar, step right up, it's only a dollar, step right up

'Cause it forges your signature
If not completely satisfied, mail back unused portion of product
For complete refund of price of purchase
Step right up
Please allow thirty days for delivery, don't be fooled by cheap imitations
You can live in it, live in it, laugh in it, love in it
Swim in it, sleep in it,
Live in it, swim in it, laugh in it, love in it
[My favorite part:]
Removes embarrassing stains from contour sheets, that's right
And it entertains visiting relatives, it turns a sandwich into a banquet
Tired of being the life of the party?
Change your shorts, change your life, change your life
Change into a nine-year-old Hindu boy, get rid of your wife,
And it walks your dog, and it doubles on sax
Doubles on sax, you can jump back Jack, see you later alligator
See you later alligator
And it steals your car
It gets rid of your gambling debts, it quits smoking
It's a friend, and it's a companion,
And it's the only product you will ever need
Follow these easy assembly instructions it never needs ironing
Well it takes weights off hips, bust, thighs, chin, midriff,
Gives you dandruff, and it finds you a job, [hell,] it is a job
And it strips the phone company free take ten for five exchange,
And it gives you denture breath
And you know it's a friend, and it's a companion
And it gets rid of your traveler's checks
It's new, it's improved, it's old-fashioned
Well it takes care of business, never needs winding,
Never needs winding, never needs winding
Gets rid of blackheads, the heartbreak of psoriasis,
Christ, you don't know the meaning of heartbreak, buddy,
C'mon, c'mon, c'mon, c'mon
'Cause it's effective, it's defective, it creates household odors,
It disinfects, it sanitizes for your protection
It gives you an erection, it wins the election
Why put up with painful corns any longer?
It's a redeemable coupon, no obligation, no salesman will visit your home
We got a jackpot, jackpot, jackpot, prizes, prizes, prizes, all work guaranteed
How do we do it, how do we do it, how do we do it, how do we do it
We need your business, we're going out of business
We'll give you the business
Get on the business end of our going-out-of-business sale
Receive our free brochure, free brochure
Read the easy-to-follow assembly instructions, batteries not included
Send before midnight tomorrow, terms available,
Step right up, step right up, step right up
You got it buddy: the large print giveth, and the small print taketh away
Step right up, you can step right up, you can step right up
C'mon step right up
(Get away from me kid, you bother me...)
Step right up, step right up, step right up, c'mon, c'mon, c'mon, c'mon, c'mon
Step right up, you can step right up, c'mon and step right up,
C'mon and step right up
</paste>
http://tom-waits.spb.ru/lyrics/smallcha_e.php3#Step_Right_Up

Every CPA should know this song! <VBG>
 
You don't miss a thing either Curt. ;-)

I think Bear was trying to "introduce" me to Susan in a civilized manner. But you're right in that GST and I have discussed Tom Waits and my moniker and such, as has Bear and I on an occasion or two.

PS - Bear...you here? Did you notice that Mr. Waits refers to the "chaise lounge" and not "chaise longue"? I'm sure you did...very little (nothing?) eludes you. Again, as I've said previously, it is more consistent with his musical / lyrical "atmosphere". Brilliant lyricist in my view. An excerpt from another favorite:

I Can't Wait to Get Off Work (And See My Baby on Montgomery Avenue)

Tom do this Tom do that
Tom, don't do that
count the cash, clean the oven
dump the trash oh your lovin
is a rare and a copasetic gift
and I'm a moonlight watchmanic
it's hard to be romantic
(sweeping up over by the
cigarette machine
sweeping up over by the cigarette machine...)

http://www.lyricsdir.com/t/tom-waits/i-cant-wait-to-get-off-work.php
--

LuckyStrike
(e-mail address removed)
--------------------------------------------------------------------
Hi Pa,
You're the second one I *know of * to blow LS's cover, and I think the other one was an MVP too (Aw heck, it was GST).
Either you MVP's have way too much time on your hands, or way too many resources available to you (no, not GDI etc.)
<g,d & r v v f>
Curt
 
And you miss even less my friend.
Never seen those lyrics before, but bet Pa has.
Nice to see some jocularity in here after the last few days.
Curt
You don't miss a thing either Curt. ;-)

I think Bear was trying to "introduce" me to Susan in a civilized manner. But you're right in that GST and I have discussed Tom Waits and my moniker and such, as has Bear and I on an occasion or two.

PS - Bear...you here? Did you notice that Mr. Waits refers to the "chaise lounge" and not "chaise longue"? I'm sure you did...very little (nothing?) eludes you. Again, as I've said previously, it is more consistent with his musical / lyrical "atmosphere". Brilliant lyricist in my view. An excerpt from another favorite:

I Can't Wait to Get Off Work (And See My Baby on Montgomery Avenue)

Tom do this Tom do that
Tom, don't do that
count the cash, clean the oven
dump the trash oh your lovin
is a rare and a copasetic gift
and I'm a moonlight watchmanic
it's hard to be romantic
(sweeping up over by the
cigarette machine
sweeping up over by the cigarette machine...)

http://www.lyricsdir.com/t/tom-waits/i-cant-wait-to-get-off-work.php
--

LuckyStrike
(e-mail address removed)
--------------------------------------------------------------------
Hi Pa,
You're the second one I *know of * to blow LS's cover, and I think the other one was an MVP too (Aw heck, it was GST).
Either you MVP's have way too much time on your hands, or way too many resources available to you (no, not GDI etc.)
<g,d & r v v f>
Curt
 
Susan said:
Can I help it if I lead a paranoid sheltered life :-)
Click to expand...

Well, yeah, come to think of it, you can ;-)
(I'm not sure who else could help it that you lead a paranoid sheltered
life!)
 
Susan Bradley said:
May I just point out that to the average person coming into this group..
the fact that that post was...

a. majorly cross posted
Click to expand...

You did notice that they are all micosoft.public newsgroups?
You are aware that cross-posting is discouraged by many people
who have absolutely no idea why they are doing so.
If you have a valid reason, I would be interested in hearing it.
b. and with the sig line of Lucky Strike
(e-mail address removed)

Of which both together to the reasonably paranoid person ... I wouldn't
click on those links either.

It looked like a distribution of a virus or bogus code even if it was
not. Unfortunately we have to be careful these days.
Click to expand...

Then why not simply make a polite inquiry to the said newsgroups,
and solicit opinions as to the perceived integrity of the said poster.
As far as I am concerned, his integrity is impeccable.

You may wonder why I appear to be hostile. I assure you that I am not.
It just so happens that you are the second MVP who has seen fit
to take a cheap shot at a regular poster.

I let the first one slide, taking it for granted that the first "MVP"
would have the decency to apologize. AFAIK, he has not done so.

Now your unwarranted attack, under the guise of "being careful".

I am sorry, but that justification is totally unacceptable.
We don't deserve that sort of treatment, and we will not accept it.

Thank you for your understanding.
 
I wasn't attacking Lucky Strike...just pointing out that the fact that
he/she [and now I] am crossposting is activity that has been used in the
past to put viruses into newsgroups.

Yes, I see that they are all MS public newsgroups but so have been all
the other times in newsgroups when I've seen SWEN dumped into
newsgroups. As a person who uses a public email address out here still
to this day and gets SWEN'd to death myself, I've seen viruses dumped
into groups in exactly this fashion to only the ms.public newsservers.

I'm just pointing out that the two in combination are of concern. We're
down to a 30 day retention of postings on the newsgroups servers because
they couldn't filter out the viruses fast enough. As I stated, "to the
average person coming into this newsgroup".

Bottom line.. retype into your own browser web site addresses. Don't
click on links. It's not safe these days. Internet Explorer has major
issues and needs work. [and get on sp2 for XP as soon as it comes out]

I know Jim's site. But, may I point out that it's VERY easy to spoof
emails in here. Without looking at the header file of Lucky's email to
ensure it really and truly was him/her, just looking at the sig line is
NOT enough these days to ensure the integrity of the posting. Sad but true.

Lucky's posting from an OE with a IP address. See all those
anonymous@discussions postings? Those come in from a web interface.
There's a "CDO Interface" in the header file.

It's truly not an attack... it's just a "be careful" because indeed,
again to Lucky, don't take it personally but I don't click on links out
in the public.security newsgroup. Not these days.

BTW seeing that you post in the 98 group...can you do me a favor?

Can you make sure your community knows that there is indeed a security
patch for 04-007 [828028] that is a freely available patch that you just
need to call and get.

I personally think it's beyond belief that while Microsoft has "extended
the life for Win98" they have not provided any mechanism to inform the
98 community that there are still security patches needed for the platform.

Here is an email that I shot off to patchmanagment.org's listserve on
the subject.....

-----------------------------------------------------------------


98/ME is an affected platform but as you have pointed out you have no
documented place other than listserves to back up your information. The
bulletin quietly reminds us that other platforms MAY be vulnerable... we
just didn't realize it... "


The software listed above has been tested to determine if the versions
are affected. Other versions either no longer include security update
support or may not be affected. Please review the Microsoft Support
Lifecycle <http://go.microsoft.com/fwlink/?LinkId=21742>Web site to
determine the support lifecycle for your product and version.

.."

is what is stated on 04-007. On the "lifecycle page" it states
Customers can "request security fixes for Windows 98, Windows 98 Second
Edition, Windows Me, and the most current version of their components
until June 30, 2006 through normal assisted-support channels."

For the 98/ME platforms, we will not know via a direct method anymore.
The only way we will know is by either someone having a TAMS or premier
contact letting those of us who don't know that there are patches
available or through our communties like this. The first I heard of
this was through the Full Disclosure listserve. Then it was posted on
the diary page at www.incidents.org. Knowing that ME and 98 are close
relatives, I called and sure enough, found that there were needed
hotfixes for both OSs.

I've emailed some people at Microsoft that have publically given their
names out in the past [like, oh I don't know...but starting off with
(e-mail address removed);[email protected] ] and kindly reminded them
that it is their new slogan in security of SD3+C and the C stands for
communication. While it's excellent that they are working on better
tools for the future, [see XP sp2 and new reports from the RSA
conference] but I need "C" now.

Steve Ballmer says on the Trustworthy computing page "We know it's not
enough to just do the right things; we have to do them in the right way"
http://www.microsoft.com/mscorp/legal/buscond/

In my emails, I've asked that at a minimum that the information be
placed in the bulletin. {I'd prefer it via Windows update but I'll take
what I can get}

I have been told by a "Premier customer" [they got this info via a paid
contract and thus it's not NDA] that the reason they got why the info is
not in the bulletin nor on Windows Update is that on the 98/ME platform
it is not "wormable". But without these special contacts that I have,
how would I know this? I don't like it one bit that I as a "little
person" would not normally have this information without having the
benefit of some friends who do have the benefit of this. In my SMB
space, we have no support plans.

Unless this policy changes, it will be up to these listserves like this
and related community resources to keep ourselves aware and informed of
the security issues for these "extended life" platforms. We will have
to rely on each other to keep ourselves informed.

Just to keep you up at night consider this......... up to 24% of the
machines surfing Google last month no longer get notifications of
Security issues through the channels that they were accustomed to:

Operating Systems Used to Access Google - January 2004


http://www.google.com/press/zeitgeist.html

Pardon me while I go send another batch of "hissy fit" emails off to
people.
Susan Bradley

Jon said:
I followed up on this information and found this on Microsoft's "Product
Lifecycle Dates" web page..

http://support.microsoft.com/default.aspx?scid=fh;[ln];LifeWin

"Microsoft will not publicly release security hotfixes for Windows 98, Windows
98 Second Edition, or Windows Millennium Edition. However, customers may
request a security hotfix through On-Demand Security Hotfix support, which is
offered for these products through June 30, 2006. When a request is received,
Microsoft will investigate the issue and try to provide an appropriate
response to the customer."

It's no secret they prefer to not support Windows98. That's understandable.
Unfortunately, we still need to run Win98.

My question is, how would I even know when Windows98 is vulnerable and needs a
patch? US-CERT, Microsoft, and the security sites i checked don't mention
Windows98 with MSO4-007. I can monitor my network activity, but I really don't
have time to test each vulnerability.

A lot of otherwise knowledgeable people will argue that windows 95/98/ME don't
need patching because they are not listed as "affected software" on the
microsoft advisories. It's certainly easy to read it that way.

Is patching Windows98 a lost cause? Does anyone have a policy in place for
this? Are there any studies that quantify the impact of unsupported windows
systems on an otherwise patched environment?

Note to any Microsoft reps...how about recognizing this issue on the Security
Bulletin's "Affected Software" section with a statement like "Windows98
and 95 may still be vulnerable but are not supported". or something else as
painfully honest. I understand the business arguement but it is seems to be a
troublesome situation.

thanks everyone.
FYI, this is my first post. I'd like to thank everyone for an incredibly
useful list. I've learned more from this list than anywhere else to date.

-jon


Jon Pitts



Quoting "Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]"
<[email protected]>:

------------------------------------------------------------------------
http://isc.incidents.org/diary.html?date=2004-02-22

"Windows 98 ASN.1 Patch
Readers reported to our handlers team that Microsoft is distributing a
patch for the ASN.1 issue to Windows 98 users per request. If you are
running Windows 98, contact your Microsoft representative for the
location of the patch.

As reported earlier, the ASN.1 advisory MS04-007 only covers newer
versions of Windows. Windows 98 is however still vulnerable.

Workaround: you may want to consider renaming or removing msasn1.dll.
However, please test this fix carefully as it may break some software.

Careful! Do not trust any patches sent via e-mail. "

--------------------
I can confirm that if you call MS PSS, option 3 for hotfixes and ask for
hotfix for Windows 98 and Windows ME for KB 828028 you can easily get
them FOR FREE.

US (800) 936-4900 or UK (0870) 60 10 100 other numbers through
http://support.microsoft.com/common/international.aspx?gssnb=1

If you have Windows 98/Me machines, either call that number or contact
your support/TAM account representative.

Susan
Click to expand...



Hugh said:
Susan Bradley said:
May I just point out that to the average person coming into this group..
the fact that that post was...

a. majorly cross posted
Click to expand...


You did notice that they are all micosoft.public newsgroups?
You are aware that cross-posting is discouraged by many people
who have absolutely no idea why they are doing so.
If you have a valid reason, I would be interested in hearing it.

b. and with the sig line of Lucky Strike
(e-mail address removed)

Of which both together to the reasonably paranoid person ... I wouldn't
click on those links either.

It looked like a distribution of a virus or bogus code even if it was
not. Unfortunately we have to be careful these days.
Click to expand...


Then why not simply make a polite inquiry to the said newsgroups,
and solicit opinions as to the perceived integrity of the said poster.
As far as I am concerned, his integrity is impeccable.

You may wonder why I appear to be hostile. I assure you that I am not.
It just so happens that you are the second MVP who has seen fit
to take a cheap shot at a regular poster.

I let the first one slide, taking it for granted that the first "MVP"
would have the decency to apologize. AFAIK, he has not done so.

Now your unwarranted attack, under the guise of "being careful".

I am sorry, but that justification is totally unacceptable.
We don't deserve that sort of treatment, and we will not accept it.

Thank you for your understanding.
Click to expand...
 
I was told that the patch 828028 was not regression tested. It was not
fully tested to Microsoft's standards. I was wondering if it causes problems
in user's machines that have installed this patch? Any information on this?
Thanks in advance.

Susan Bradley said:
I wasn't attacking Lucky Strike...just pointing out that the fact that
he/she [and now I] am crossposting is activity that has been used in the
past to put viruses into newsgroups.

Yes, I see that they are all MS public newsgroups but so have been all
the other times in newsgroups when I've seen SWEN dumped into
newsgroups. As a person who uses a public email address out here still
to this day and gets SWEN'd to death myself, I've seen viruses dumped
into groups in exactly this fashion to only the ms.public newsservers.

I'm just pointing out that the two in combination are of concern. We're
down to a 30 day retention of postings on the newsgroups servers because
they couldn't filter out the viruses fast enough. As I stated, "to the
average person coming into this newsgroup".

Bottom line.. retype into your own browser web site addresses. Don't
click on links. It's not safe these days. Internet Explorer has major
issues and needs work. [and get on sp2 for XP as soon as it comes out]

I know Jim's site. But, may I point out that it's VERY easy to spoof
emails in here. Without looking at the header file of Lucky's email to
ensure it really and truly was him/her, just looking at the sig line is
NOT enough these days to ensure the integrity of the posting. Sad but true.

Lucky's posting from an OE with a IP address. See all those
anonymous@discussions postings? Those come in from a web interface.
There's a "CDO Interface" in the header file.

It's truly not an attack... it's just a "be careful" because indeed,
again to Lucky, don't take it personally but I don't click on links out
in the public.security newsgroup. Not these days.

BTW seeing that you post in the 98 group...can you do me a favor?

Can you make sure your community knows that there is indeed a security
patch for 04-007 [828028] that is a freely available patch that you just
need to call and get.

I personally think it's beyond belief that while Microsoft has "extended
the life for Win98" they have not provided any mechanism to inform the
98 community that there are still security patches needed for the platform.

Here is an email that I shot off to patchmanagment.org's listserve on
the subject.....

-----------------------------------------------------------------


98/ME is an affected platform but as you have pointed out you have no
documented place other than listserves to back up your information. The
bulletin quietly reminds us that other platforms MAY be vulnerable... we
just didn't realize it... "


The software listed above has been tested to determine if the versions
are affected. Other versions either no longer include security update
support or may not be affected. Please review the Microsoft Support
Lifecycle <http://go.microsoft.com/fwlink/?LinkId=21742>Web site to
determine the support lifecycle for your product and version.

."

is what is stated on 04-007. On the "lifecycle page" it states
Customers can "request security fixes for Windows 98, Windows 98 Second
Edition, Windows Me, and the most current version of their components
until June 30, 2006 through normal assisted-support channels."

For the 98/ME platforms, we will not know via a direct method anymore.
The only way we will know is by either someone having a TAMS or premier
contact letting those of us who don't know that there are patches
available or through our communties like this. The first I heard of
this was through the Full Disclosure listserve. Then it was posted on
the diary page at www.incidents.org. Knowing that ME and 98 are close
relatives, I called and sure enough, found that there were needed
hotfixes for both OSs.

I've emailed some people at Microsoft that have publically given their
names out in the past [like, oh I don't know...but starting off with
(e-mail address removed);[email protected] ] and kindly reminded them
that it is their new slogan in security of SD3+C and the C stands for
communication. While it's excellent that they are working on better
tools for the future, [see XP sp2 and new reports from the RSA
conference] but I need "C" now.

Steve Ballmer says on the Trustworthy computing page "We know it's not
enough to just do the right things; we have to do them in the right way"
http://www.microsoft.com/mscorp/legal/buscond/

In my emails, I've asked that at a minimum that the information be
placed in the bulletin. {I'd prefer it via Windows update but I'll take
what I can get}

I have been told by a "Premier customer" [they got this info via a paid
contract and thus it's not NDA] that the reason they got why the info is
not in the bulletin nor on Windows Update is that on the 98/ME platform
it is not "wormable". But without these special contacts that I have,
how would I know this? I don't like it one bit that I as a "little
person" would not normally have this information without having the
benefit of some friends who do have the benefit of this. In my SMB
space, we have no support plans.

Unless this policy changes, it will be up to these listserves like this
and related community resources to keep ourselves aware and informed of
the security issues for these "extended life" platforms. We will have
to rely on each other to keep ourselves informed.

Just to keep you up at night consider this......... up to 24% of the
machines surfing Google last month no longer get notifications of
Security issues through the channels that they were accustomed to:

Operating Systems Used to Access Google - January 2004


http://www.google.com/press/zeitgeist.html

Pardon me while I go send another batch of "hissy fit" emails off to
people.
Susan Bradley

Jon said:
I followed up on this information and found this on Microsoft's "Product
Lifecycle Dates" web page..

http://support.microsoft.com/default.aspx?scid=fh;[ln];LifeWin

"Microsoft will not publicly release security hotfixes for Windows 98, Windows
98 Second Edition, or Windows Millennium Edition. However, customers may
request a security hotfix through On-Demand Security Hotfix support, which is
offered for these products through June 30, 2006. When a request is received,
Microsoft will investigate the issue and try to provide an appropriate
response to the customer."

It's no secret they prefer to not support Windows98. That's understandable.
Unfortunately, we still need to run Win98.

My question is, how would I even know when Windows98 is vulnerable and needs a
patch? US-CERT, Microsoft, and the security sites i checked don't mention
Windows98 with MSO4-007. I can monitor my network activity, but I really don't
have time to test each vulnerability.

A lot of otherwise knowledgeable people will argue that windows 95/98/ME don't
need patching because they are not listed as "affected software" on the
microsoft advisories. It's certainly easy to read it that way.

Is patching Windows98 a lost cause? Does anyone have a policy in place for
this? Are there any studies that quantify the impact of unsupported windows
systems on an otherwise patched environment?

Note to any Microsoft reps...how about recognizing this issue on the Security
Bulletin's "Affected Software" section with a statement like "Windows98
and 95 may still be vulnerable but are not supported". or something else as
painfully honest. I understand the business arguement but it is seems to be a
troublesome situation.

thanks everyone.
FYI, this is my first post. I'd like to thank everyone for an incredibly
useful list. I've learned more from this list than anywhere else to date.

-jon


Jon Pitts



Quoting "Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]"
<[email protected]>:

------------------------------------------------------------------------
http://isc.incidents.org/diary.html?date=2004-02-22

"Windows 98 ASN.1 Patch
Readers reported to our handlers team that Microsoft is distributing a
patch for the ASN.1 issue to Windows 98 users per request. If you are
running Windows 98, contact your Microsoft representative for the
location of the patch.

As reported earlier, the ASN.1 advisory MS04-007 only covers newer
versions of Windows. Windows 98 is however still vulnerable.

Workaround: you may want to consider renaming or removing msasn1.dll.
However, please test this fix carefully as it may break some software.

Careful! Do not trust any patches sent via e-mail. "

--------------------
I can confirm that if you call MS PSS, option 3 for hotfixes and ask for
hotfix for Windows 98 and Windows ME for KB 828028 you can easily get
them FOR FREE.

US (800) 936-4900 or UK (0870) 60 10 100 other numbers through
http://support.microsoft.com/common/international.aspx?gssnb=1

If you have Windows 98/Me machines, either call that number or contact
your support/TAM account representative.

Susan
Click to expand...
Click to expand...
 
Not only are those two HOSTS file entries not working now but something
(Spybot? CWS.SmartKiller?) had removed them from my list!
 
What are HOST file entries used for?

PA Bear said:
Not only are those two HOSTS file entries not working now but something
(Spybot? CWS.SmartKiller?) had removed them from my list!
Click to expand...
 
Spybot got them. I just had the same report from Mike Burgess. See if you were
using my HOSTS file manager there would be a backup there and you could just
restore. That'll teach ya.

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

| Not only are those two HOSTS file entries not working now but something
| (Spybot? CWS.SmartKiller?) had removed them from my list!
| --
| ~PA Bear
|
| | > Also if you are using a HOSTS file you can add these two lines to get
| access to
| > the sites.
| > 216.40.225.12 www.merijn.org
| > 209.133.47.19 www.spywareinfo.com
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > | > | (e-mail address removed) wrote:
| > | > The link from George still has ver 1.49.1 on it. Has any newer
| > | > versions surfaced anywhere?
| > |
| > | Yes. I've got 1.50.
| > |
| > | Siljaline keeps us all up to date with postings in many locations,
| > | including:
| > | http://forum.mvps.org/viewforum.php?f=28
| > |
| > | On http://aumha.org/freeware.htm I keep download links for CWShredder,
| > | including an alternate one during the current DDoS crisis. Here is one
| that
| > | works and gives the latest:
| > | http://www.zerosrealm.com/downloads/CWShredder.zip
| > |
| > | --
| > | Jim Eshelman, MS-MVP Windows http://aumha.org/
| > | AumHa Forums: http://forum.aumha.org/
| > | Fighting Parasites: http://aumha.org/a/parasite.htm
| > | Computer Health: http://aumha.org/a/health.htm
| > | Troubleshooting: http://aumha.org/a/tshoot.htm
| > |
| > |
| >
|
 
Artwilder said:
I was told that the patch 828028 was not regression tested. It
was not fully tested to Microsoft's standards. I was wondering if it
causes problems in user's machines that have installed this patch?
Any information on this? Thanks in advance.
Click to expand...

Correct. It's in the "not fiully regression tested, call MS if you really
need it, don't race to apply it otherwise, besides you very likely don't
need it" state.

In fact, the file in question isn't even in Win98 Original at all - unless
you've installed NetMeeting. It *is* in Win98 SE.

--
Jim Eshelman, MS-MVP Windows http://aumha.org/
AumHa Forums: http://forum.aumha.org/
Fighting Parasites: http://aumha.org/a/parasite.htm
Computer Health: http://aumha.org/a/health.htm
Troubleshooting: http://aumha.org/a/tshoot.htm
 
It's not wormable... but 98's and ME are still vulnerable. But without
the info on the bulletin.. how do we know this? grrrrrrrrrr.......
 
Artwilder said:
What are HOST file entries used for?
Click to expand...
Saving time, albeit at the risk of becoming outdated.

F'rinstance, let's say you want to go to www.yahoo.com.
That is a host name. It is used because it is easy for us to remember.
The computer, however, needs an IP address, in this case 204.71.200.67
which it gets from a DNS server.

This IP address lookup takes time, and this delay can be avoided
by creating your own "address book", called a HOSTS file.

Create the HOSTS file entry
204.71.200.67 www.yahoo.com

Your computer will look in your HOSTS file first, before it goes out
onto the 'net in search of the correct associated IP address for Yahoo.

Now comes the cute trick. Your computer has its own IP address.
127.0.0.1 which it uses to referback to itself.

If you don't mind relatively "ugly" web page renderings, you can now
effectively disable a lot of those distracting banner ads by redirecting
the web address of that ad to 127.0.0.1.
 
For the record in SBS land I've thrown on "non regresssion tested
patches" and "regression tested patches" and some of those fully
regression tested ones have killed my boxes more than the non tested ones.
Your milage may vary....

I don't rely on "Microsoft standards". I do my own. I dogfood it myself.
 
If there's one qualification that is unspoken but which applies to most
MVPs, it's that they are possessed of a "well-rounded" education, <eg>.

Unfortunately, G.G. copyrighted "Bindar Dundat", or we'd have been able to
make it part of our official seal.

Hmmm..... George is an MVP, now... Hey, gang, I think a discussion of
eminent domain is in order! (Yeah, but then we'd have to put Rick "Nutcase"
Rogers into the docket, too!)
 
Hi Gary,
Yes, both Ad-Aware and SpyBot can remove entries from the
HOSTS file - "even when locked" ....AWW then resets the HOSTS
file to "hosts" and does NOT re-lock the file [ugh!] ......
____________________________________________________________
Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
http://www.mvps.org/winhelp2002/hosts.htm [updated 02-24-04]
Please post replies to this Newsgroup, email address is invalid
--
 
The HOSTS file manager will relock it :-)

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

| Hi Gary,
| Yes, both Ad-Aware and SpyBot can remove entries from the
| HOSTS file - "even when locked" ....AWW then resets the HOSTS
| file to "hosts" and does NOT re-lock the file [ugh!] ......
| ____________________________________________________________
| Mike Burgess [MVP Windows Shell\User] http://www.mvps.org/winhelp2002/
| Blocking Spyware, Adware, Parasites, Hijackers, Trojans, with a HOSTS file
| http://www.mvps.org/winhelp2002/hosts.htm [updated 02-24-04]
| Please post replies to this Newsgroup, email address is invalid
| --
|
| | > Would Spybot be able to do that if the HOSTS file is locked?
| >
| > --
| > Gary S. Terhune
| > MS MVP for Windows 9x
| >
| > George (Bindar Dundat) wrote:
| > > Spybot got them. I just had the same report from Mike Burgess. See
| > > if you were using my HOSTS file manager there would be a backup there
| > > and you could just restore. That'll teach ya.
| > >
| > >
| > > | > >> Not only are those two HOSTS file entries not working now but
| > >> something (Spybot? CWS.SmartKiller?) had removed them from my list!
| > >> --
| > >> ~PA Bear
| > >>
| > >> | > >>> Also if you are using a HOSTS file you can add these two lines to
| > >>> get access to the sites.
| > >>> 216.40.225.12 www.merijn.org
| > >>> 209.133.47.19 www.spywareinfo.com
| > >>> --
| > >>> George (Bindar Dundat ©) MS-MVP
| > >>>
| > >>> For Windows Troubleshooting Tips see;
| > >>> http://aumha.org/win4/a/tshoot.htm
| > >>>
| > >>> | > >>>> (e-mail address removed) wrote:
| > >>>>> The link from George still has ver 1.49.1 on it. Has any newer
| > >>>>> versions surfaced anywhere?
| > >>>>
| > >>>> Yes. I've got 1.50.
| > >>>>
| > >>>> Siljaline keeps us all up to date with postings in many locations,
| > >>>> including:
| > >>>> http://forum.mvps.org/viewforum.php?f=28
| > >>>>
| > >>>> On http://aumha.org/freeware.htm I keep download links for
| > >>>> CWShredder, including an alternate one during the current DDoS
| > >>>> crisis. Here is one that works and gives the latest:
| > >>>> http://www.zerosrealm.com/downloads/CWShredder.zip
| > >>>>
| > >>>> --
| > >>>> Jim Eshelman, MS-MVP Windows http://aumha.org/
| > >>>> AumHa Forums: http://forum.aumha.org/
| > >>>> Fighting Parasites: http://aumha.org/a/parasite.htm
| > >>>> Computer Health: http://aumha.org/a/health.htm
| > >>>> Troubleshooting: http://aumha.org/a/tshoot.htm
| >
|
|
 
No copyright violations *Please*.

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

| If there's one qualification that is unspoken but which applies to most
| MVPs, it's that they are possessed of a "well-rounded" education, <eg>.
|
| Unfortunately, G.G. copyrighted "Bindar Dundat", or we'd have been able to
| make it part of our official seal.
|
| Hmmm..... George is an MVP, now... Hey, gang, I think a discussion of
| eminent domain is in order! (Yeah, but then we'd have to put Rick "Nutcase"
| Rogers into the docket, too!)
|
| --
| Gary S. Terhune
| MS MVP for Windows 9x
|
| Curt Christianson wrote:
| > Hi Pa,
| > You're the second one I *know of * to blow LS's cover, and I think
| > the other one was an MVP too (Aw heck, it was GST).
| > Either you MVP's have way too much time on your hands, or way too
| > many resources available to you (no, not GDI etc.)
| > <g,d & r v v f>
| > Curt
|
 
Ewww...

Just have to pay more careful attention to the "Things I should tell these
to ignore" procedure, eh?

Actually, seems to me I tell both of those to ignore HOSTS in the first
place...AdAware, anyway. Not sure about SpyBot, since I seem to have
misplaced the Advanced Settings, <sigh>.
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

New CWShredder update available 13
Distro list to help you choose. 2
Why is it so hard to get an Adobe Distribution license (for .msi installers) 4
Cannot Link to http:// from https:// 1
ENTERING A LINK IN THE WINDOWS EXPLORER ADDRESS BAR OPENS IN FIREF 2
Linking From https page to http page 5
links appearing in the text on webpages 1
I can not view links in web pages 1

Back
Top