Vista has a new Vulnebility!

According to Techworld.com,  Vista has a new Vulnerability that could let a hacker infect a Vista machine with a rootkit.  The talk from them is quite intriguing.   I will quote it to better let you know what the Vulnerability is:

The vulnerability could allow a hacker to install a rootkit, a small piece of malicious software that is very difficult to detect and remove from a computer, Unterleitner said.

[ad#ad2-left]Phion notified Microsoft about the problem on 22 October. Microsoft indicated to Phion that it would issue a patch with Vista’s next service pack. Microsoft released a beta version of Vista’s second service pack to testers last month. Vista’s Service Pack 2 is due for release by June 2009.
[via Techworld.com]

The way they could do this is through the Device IO Control which in turn could corrupt the Kernel of Windows Vista.  Now we all know that Microsoft will release a patch quicker than 6 months away.  According to this article, people are already looking for the exploit and want to know more about it.  I would be willing to bet they will have a patch out sooner than later.  Probably January or Febuary, which will be a big deal because no one will expect it.  I would also imagine hackers will start trying to figure out how they could install software as quick as possible before Microsoft pushes out the patch.   So what can you do to protect yourself, Get a firewall, a Antivirus and learn how to protect yourself to prevent yourself from getting a computer virus.

A good free VPN Client — OpenVPN & more

I’ve been doing some research on what might be good to use in case, I was away from my home network.  I was thinking how safe am I at Starbucks or other places that I might doing my web.  So I did a little looking around to see which one I liked and I came to the conclusions that only one I need right now is:

openvpn

The nice thing about this was the simple installation of the software and how easy it was to set it up. This service is in beta but seems to be really well done with regards to the end users. When you install this software and want to connect it uses the OpenVPN software with there configurations. OpenVPN, is a open sourced SSL VPN solution and is free to use. The way this this free is of Ad Supported banners. Now it is cheaper than paying monthly for a VPN service. The ones I’ve found so far are these few:

  • OpenVPN (FREE)(*advertisement)(Linux, and Windows)
  • Always VPN (Prepay) (5 GB to 80 GB limit) (Linux, Mac and Windows)*Out of Beta
  • Hotspot Shield (FREE) (*advertisement) (Windows) (3 gig Cap)
  • WiTopia (40$/ Year) (Mac, Linux, and Windows)

[ad]There is of course others out that but these are just a few that I saw that looks like the cheapest there is.  Others I’ve seen cost 40 to 50 dollars a month.   If you have any other ones that are free or cheap let me know.  I don’t think we need to pay a lot just to have security on an open network. I’m certain that they’re more out there but will keep looking for more later on. I did my initial research and will come back and find more.

*Update Feb 8, 2009*

As of recent a friend emailed me saying telling me to check the site out again and I did.  Not sure when they went out of Beta because I’ve not been using Always VPN lately due to my Broadband Cricket Prepay Internet.  I just checked and yes they are charging here’s the break down:

  • 5GB – USD 8.50
  • 10GB – USD 15.00
  • 20GB – USD 26.00
  • 40GB – USD 33.00
  • 80GB – USD 47.00

So I must ask why they didn’t just keep the 5 GB limit with the Advertising, I do not know but  I did want to let people know that it is no longer free and no longer in Beta.  I went from Always to OpenVPN which still works despite the fact they are using Always VPN back client.   It’s open source so it will probably change to something else sooner or later.   If you see it changes let me know, I will update more when I find out more!!

Avg detected Trojan Horse Generic 12.htc?

Just got a warning from AVG about, trojan horse generic 12.HTC, haven’t heard of it, anyone out there hear if this one? apparently it infects explore.exe, and after months of explore.exe crashing I’d say it’s a legit virus.

[Via Answer Bag]

Some tricks and tips to remove this little virus is quite simple. It is embedded in your system so how do you remove this threat? Easy follow these steps and you will have a better chance of getting rid of the virus:

  1. Find out all you can on the virus — Finding out the extent of where the virus lays is really a good idea.  Just because you found one place doesn’t mean it isn’t also hiding some other place.  Some good ways to figure out where it might be is to download Hijackthis and Then onces you download it and install.  Run it, and when you get the LOG file you will want to go to HijackThis Log Analysis Site 1 and HijackThis Log Analysis Site 2, and see what it says.
  2. See if you can remove the Hidden Virus — After you find out what the extent of virus may lay.  You will need to download these programs.  Run whichever ones you like to see if you can locate and delete the virus.  You may also consider using one of the several onine services to see what they might suggest or see if they can find this virus.
  3. Check your services and reboot sequence — After you think you’ve gotten rid of the virus, reboot and do a rescan.  Usually the Virus will respawn after you reboot, some of them have a command in the reboot sequence.   You may want to check your reboot sequence, by check with MSCONFIG.  Sometimes it is hidden but if you check through the MSCONFIG for any files that might not need to load.  Also check the services tab and see if there is any services that may not be needed.  The best bet is to google search each service or program that is in there and see if that might fix the problem.
  4. Might be time to re-install Windows — Although this is the hard for people, this can sometimes fix the most challenging virus.  You need not have to loose your important data.  The only thing to remember when you back up is when restore you data after you re-install windows.  Just remember one thing, if it is  an .EXE, .COM, .BAT, and .MSI extensions than that might risk you getting the virus all over again.  Although remember that you will need the other tools I talked about on #2 to keep from getting the virus again.

These are some tricks I use to get rid of a virus and now I’ve shared them with you and now it is up to you do the work.  If you have any tips or tricks to get rid of a virus leave a comment.

Alien Ware Extreme Gaming Notebook M17 17 Inch

Looks like they are out of stock on this Laptop but they do have Alienware M17x-2857DSB 17-Inch Laptop (Black) which looks to be an upgraded version of this one!!!

  • Windows Vista® Home Premium (32- and 64-bit)(default)
  • Windows Vista® Ultimate (32- and 64-bit)
  • Intel® Core™2 Duo Or Quad and Extreme Processors (12MB Cache, 1066MHz FSB)
    Intel® PM45 + ICH9M-E Chipset up to 4 GB
    ATI Mobility Radeon™ HD 3870 (Also Comes with CrossfireX Enabled)
  • Dual Harddrive In Raid 0 Config or you can have a single hard drive

    1. 5400 RPM – Up to 1TB (2 x 500GB)

    1. 7200 RPM – Up to 640GB (2 x 320GB)


So I saw this and had to tell people this is a sweet laptop for people who like to go and play games in a large group. You would be able to play for hours on end, all you would need is an power cord. I would love one of these to try out.  If you want to go check it out or buy it. Here’s the Alienware M17x-2857DSB 17-Inch Laptop (Black).

Find Other Alienware Products

Windows update is getting a revision!

[ad#ad2-right]According to Computer World, dated Oct 31, 2008 and I’ll quote:

“Over the next couple of months, we’ll be rolling out another infrastructure update to the Windows Update agent (client code),” said an unidentified Microsoft employee on the Windows Update team’s official blog. “This update makes it possible for users to install more than 80 updates at the same time.”

[via Computer World]

Now if your like me and have several computers who need to be updated at a given schedule, you sometimes worry about these updates that come along that might just break your system. I have been using a program call Offline Updater, which does what Autopatcher does really nicely. So why is Microsoft sending out this patch? Two reasons, one they want you to be able to update your operating System without hurting your system integrity.

Now lets talk about the integrity of having to reboot your system. You see, every time you reboot the system, it causes the system hardware some strain.  It is something like having starting up a car, sooner or later you will have the starter go out, because of to much start up.

[ad#ad2-left]Second reason for this is, basically the update software needs to be update yet again for any security flaws or features that might be exploitable.  I am sure there are some and Microsoft probably knows about that we do not.   So that is the second reason, which it is the most obvious reason yet to push out another revision of the Windows update.

What about stopping the update from effecting your system.  The only way that I know of is to prevent Windows from checking for updates.  Which is simple:

Windows XP Version:

[Category View and Classic View]

<Start> / Control Panel / Security / Click Windows Updates

For Windows Vista:

<Orb> / Control Panel/ Security Center/ Windows Update / click “change Settings”

With both ways, you will be able to control four ways to handle Windows updating and they are:

  • Automatic Will download all necessary updates and install them without your permission or knowledge.  Note some of the updates will automatically reboot your system.  Most commonly they are set to do this every day in the 12am to 4 am period of time.   So when you wake up you would see an log in screen.
  • [ad#ad2-right]

  • Download updates but let me choice which ones to install and when –  This is most commonly used by people who don’t want to bother having to check manually.  It will check and download, then it will let you know.

  • Check for updates but don’t Download them –  This is like the previous one but this will only tell you.  The rest of the decision is in your hands not the computer.  This is good for people who have limited system resources, like Hard drive space.  It still reminds you like the previous one but won’t download any updates.

  • Never check for updates –  This is used for people who don’t want to be bothered with updates and have a way to update manually.  This is commonly used by businesses who have several systems on and don’t want to risk an update causing trouble or weigh down the companies internet by downloading updates un-necessarily.   This option is not to be messed with because it leaves your system with quite a lot of vulnerabilities.  You do this one if you have a set schedule to update each and everyone system. (Extremely Dangerous to do)

With what I talked about, I am hoping you find this useful and to share your discoveries with other people who might want to be able to change how Windows updates are handled on other systems.  If you have comments or questions, please post them in the comment section and someone will be more than glad to help you out.