step – Paul's Tech Talk

The Important Windows patches Released Today

PaulDecember 9, 2008

As many of you know we talked about the Non-critical patches that Microsoft will release today. IF you want to read those please go and check it out. I’ll be talking about the REALLY important ones that Microsoft has kept tight until now. These are the more important ones but I will list the ones that I previous talked about to better help people recognize the non-important ones:

[ad#ad2-right]

KB955839

KB957388

KB890830

KB905866

These are just the tip of the iceberg. although this list are not A lot. I’d wanted to let people know about what people coin “Exploit Wednesday“. I really don’t know if this is a Myth or actually does exist but I’d figure we discuss the problems associated with installing the critical updates and try to tell you which ones should be installed As soon as possible. Though people have in the past used a Virtual Machine to see if there is any problem, that should be your first step if you don’t want to have any problems with these updates. I don’t suggest testing it more than a couple days. Here are some good Virtual Machine software to try out yourself:

Hyper-V (Microsoft Product)

VMware Virtual Machine

Virtual PC 2007 (Microsoft product)

Virtual Box – Sun Microsystems (FREE)

Kaffe Virtual Machine (Haven’t Tried this one)

Here is the list of updates that are critical that Microsoft released today. Each one of these are quite important and should be considered installed when you get a chance.

[ad#ad2-left]Microsoft Security Bulletin MS08-073 – Critical
Cumulative Security Update for Internet Explorer (KB958215)

This security update resolves four privately reported vulnerabilities. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS08-071 – Critical
Vulnerabilities in GDI Could Allow Remote Code Execution (KB956802)

This security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

[ad#ad2-right]Microsoft Security Bulletin MS08-075 – Critical
Vulnerabilities in Windows Search Could Allow Remote Code Execution (KB959349)

This security update resolves two privately reported vulnerabilities in Windows Search. These vulnerabilities could allow remote code execution if a user opens and saves a specially crafted saved-search file within Windows Explorer or if a user clicks a specially crafted search URL. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

KB952069
(not quite sure what this one is, when I go do a Google search this is what pops up. It was in German but Google translated it for me)

In the Windows Media Runtime to the default in Windows XP SP3 contains Windows Media Player (WMP) 9 were discovered vulnerabilities that could allow an attacker to compromise your Windows-based system and gain control over it. See Security Bulletin MS08-076 ( englisch bzw. deutsch ) See Security Bulletin MS08-076 (English or German)

These are just ones that I found and wanted to let you know, the others have been explained on the other article. So check them all out and I suggest installing them quickly as possible.

sinowal.trojan Problems.

PaulDecember 4, 2008

Trojan-PSW:W32/Sinowal.CP drops and loads a password stealing component on the infected system and tries to steal account information from it. It also tries to steal information that is required to access certain online banks’ and online payment systems’ websites.

[via F-secure]

[ad#ad2-right]It seems to be a very hard virus to remove but there are ways to get rid of this virus. Some tips and tricks to get rid are:

Check out my Anti-Virus Page

Computing.net

The Geek Police

How to Detect Sinowal

This are the beginning steps to get rid of a Virus but it will be a really hard virus because it wants to stay in your system. You should also Restart in Safe mode and Try to remove that virus that one. You will also want to disable your system restore due to the fact that it will be in there and might come back if you restore your system. Just some simple tips to help keep you safe on the net.

Windows 7 will sport Direct X 10 Compliance!

PaulDecember 3, 20081 Reply

The new feature is called WARP10, for “Windows Advanced Rasterization Platform,” and it’s essentially a DX10-compliant, software-only rasterizer that was written by Microsoft; it runs directly on the CPU. In a situation where a DX10 app needs to run but can’t find DX10-compliant hardware, it will run on WARP10, albeit very, very slowly. Ultimately, you can think of WARP10 as a “software DX10 GPU” that will exist as a fallback in Windows.

[via Arstechnica]

[ad#ad2-left-1]This will make Windows 7 work more smoothly with Windows XP and Vista games. This looks to be like having more compatibility with the older games. When Vista came out they were complaining about not being able to play games on Vista. Vista has been really updated with being able to play games. People are starting to play games on a Vista machine. This is also a step for Windows 7 to be one that Microsoft, being that they are trying to get the next O/s to look like an Angel probably. What I expect is Microsoft will advertise about Windows 7 will be gamer friendly. This is a move on Microsoft to get gamers on board with this release and to try to get people to forget about Vista.

[ad#ad2-right]Having said that here’s some things that will be most likely be Advertised with Windows 7 when it comes out. Microsoft will want it to be game friendly, User Account Control to be less obtrusive, and program compatibility. These the main points to get people to start buying Microsoft’s products. Microsoft should be worried because of Apples comments about how you should use an Anti-virus for Macintosh’s. This is definitely worrying Microsoft. It means Microsoft has an competitor that Hackers are trying to exploit. I would be willing to guess that Microsoft is worried people are switching to Apple products. These are just guesses but I am quite certain Microsoft is really worried. What do you think, do you think it will happen?

You have an undelivered UPS/FEDEX Package. (Virus)

PaulNovember 12, 2008

From what I’ve seen so far. There seems to be a new rash of email going around with the heading that makes it look and feel like either UPS or Fedex. Saying that you have an undelivered package from them and to either print the order confirmation or to click a link. I will say this once, if you get this delete it. Fedex and UPS will never hide the link and tell you have an package waiting in the email. They will leave a note your door. You must ask yourself how Fedex/UPS found out your email address to tell you have a package waiting? They don’t and they won’t, just a fact.

[ad#ad2-right]UPS/FedEx Delivery Failure : Snopes

TROJ_DLOADR.GG and TSPY_ZBOT.NM Trojan, which will Monitor and try to steal your data. The other one is a ZBot and will try to steal you data also. If you need help removing this virus, I’d suggest checking out my other virus article Avg detected Trojan Horse Generic 12.htc?. There are a lot of ways to remove this virus but the first step is never click on any links in your emails. I also wrote about Some Important programs to prevent yourself from having viruses and Malware!! This will help prevent and fix the common virus problems you might have.

Circuit City to layoff employees and might close several stores!

PaulNovember 7, 2008

[ad#ad2-left]

Some sources are say this:
The newspaper cited one of the affected workers, who indicated that between 500 and 800 employees would be let go. The layoffs reportedly began yesterday with the departure of several “upper management” executives, the source said.

[via Twice]

Now I know people hate when I blog about this because it is so depressing but I do like to let people know about this stuff so you can know what to expect in the coming future. This is all due to the economy and the recession that is on our doorsteps. If you would like to find out what other companies are laying off that I know about just click this [LINK] and it will show you all the other blog posts that I talked about that have or are laying people off. I keep telling people to keep there resume’s ready for just this type of outcome.