How to Prepare for Microsoft Certifications Earning a Microsoft Certification could be the beginning or continuation of an enduring career that will include the strengthening of their technical skills, collaboration with other professionals ...

Readmore

Prometric offers vouchers of up to 25% off ... Hello people, I just received an email from Prometric informing a discount of up to 25% on Microsoft Certifications. The promotion is valid until December 31, 2009 or even last for the ...

Readmore

50% discount on Microsoft Certifications to ... Hello guys, Prometric is providing for students a 50% discount on Microsoft certifications. The promotion is valid until June 30, 2010. For more details visit the ...

Readmore

Book - Administration and Maintenance Environment ... Hello people, For those who are preparing for the exam 70-290 book Administration and Maintenance Environment Microsoft Windows Server 2003 is a great material. I recommend.

Readmore

Prometric offers vouchers of up to 25% off ... Hello people, I just received an email from Prometric informing a discount of up to 25% on Microsoft Certifications. The promotion is valid until December 31, 2009 or even last for the ...

Readmore

twitter

Twitter Facebook

Using AutoRuns

Posted by Luciano Lima | Comments: (3)

Category: Malware , Security , Sysinternals

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , ,

Goal

This article aims to demonstrate how to use AutoRuns to identify and remove any malware that may be running on your computer quickly and easily.

Applies to

  • Client: Windows XP and higher.
  • Server: Windows Server 2003 and higher.

Introduction

The AutoRuns is a powerful graphical tool that does not require installation, which lets you identify and remove any malware that may be running on your computer. With AutoRuns you can view all the programs that are running on your system boot and logon including the locations and entries to: Logon, Explorer, Internet Explorer, Services, Drivers, Scheduled Tasks, Codecs, AppInit, Boot Run, Image Hijacks , known DLLs, Winlogon, Winsock Providers, LSA Providers, Printer Monitor, Network Providers and Sidebar Gadgets.

Continue Reading

Why Microsoft Launches All Months Security Patches and Updates?

Posted by Luciano Lima | Comments: (2)

Category: Security Bulletin , Safety

Tags: , , , , , , ,

Hello people,

As you know most users of Microsoft systems, every second Tuesday of each month Microsoft releases security patches, critical updates, etc.. But does everyone understand because Microsoft releases monthly security patches?

Unfortunately many companies take days and / or even months to apply patches that fix the vulnerability found s. Generally, the vulnerabilities allow an attacker to execute remote code and get control of the system with administrative permissions.

Continue Reading

Security Research Group in September promises to transform the 'Month of Bugs'

Posted by Luciano Lima | Comments: (0)

Category: Adobe , Apple , Internet Explorer , Microsoft , Mozilla , Security

Tags: , , , , , , , , , , , , , , , , , , , ,

Throughout the month, researchers Abysssec promise to disclose vulnerability in s software companies like Microsoft, Adobe, Mozilla and Apple.

A little-known group of security researchers promises to start from this Wednesday (1/9) a full month for the dissemination of bugs, which are responsible for vulnerabilities in software companies like Adobe, Microsoft, Mozilla, Apple and others .

But the researcher who originated the "festivals bugs" four years ago is not so optimistic about the impact that such action may have.

The "Month of Bugs Abysssec Undisclosed" (MOAUB) disclose flaws in Excel and Microsoft Internet Explorer, the control panel in web hosting cPanel web, Linux, and various other software, said in August the Abysssec Security Research in your blog.

Continue Reading

Google fixes ten vulnerabilities in Chrome

Posted by Luciano Lima | Comments: (0)

Category: Internet Explorer , Malware , Security

Tags: , , , , , , , , ,

Among the failures, two could be exploited by malicious files, including images and files in SVG format MIME type.

Google corrected last Thursday (19/8) ten vulnerability in Chrome browser s. According to the company's safety assessments, seven failures were considered high-level and midlevel.

As usual, the company did not disclose details about the threats and blocked public access to its database for tracking bugs.

According to the search giant that is a practice to prevent hackers from attempting to abuse the information before the majority of Internet users upgrade their packages.

Recent findings failures, two could be exploited by malicious files, including images and files in SVG format MIME type. In addition, others could be used to spoof the contents of the address bar or reveal passwords.

So far, the researchers were not disclosed who reported bugs, but was not released were achieved the ultimate reward of $ 3,133.

Currently, Google Chrome is the third most popular browser in the world. However a study by research firm Net Applications indicated that he lost ground in the market, it faces formidable competitors such as Firefox and Internet Explorer. This was the first time in almost two years since this happened.

Luciano Lima
[Enterprise Security MVP] - [MCSA Security] - [Security MCSE]

www.ticlassificados.com (New)
www.guiamcitp.com.br
www.twitter.com / guiamcitp
www.guiamcse.com.br
www.twitter.com / guiamcse
www.guiamcse.com.br / forum (new)
www.guiacissp.com.br
www.twitter.com / guiacissp
www.guiacissp.com.br / forum (new)
www.twitter.com / lucianolima_mvp
lucianomvp.spaces.live.com

Correction Patch Vulnerability in Internet Explorer - MS10-002 - Critical

Posted by Luciano Lima | Comments: (0)

Category: Security

Tags: , , , ,

Hello people,

Microsoft has just made ​​available a patch to fix the vulnerability in Internet Explorer, as I mentioned in previous post.

For more details see the website below:

http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx

Vulnerability in Internet Explorer - Microsoft Security Advisory (979352)

Posted by Luciano Lima | Comments: (0)

Category: Security

Tags: , , , , , ,

Hello people,

14/01/2010 Microsoft blogged The Microsoft Security Response Center (MSRC) the post Released Security Advisory 979352 regarding vulnerability discovered in Internet Explorer, which allows remote code execution. The patch to fix this vulnerability is being developed by Microsoft and according to the MSRC blog post published in Advance Notification for Out-of-Band Release Bulletin is now available to fix the patch.

So far the vulnerability has been exploited only in Internet Explorer 6, but Microsoft recommends that all customers upgrade to Internet Explorer version 8.

When Microsoft made available a patch will be publishing here on the Blog.

A hug.

Hackers hack tool and update care specialists

Posted by Luciano Lima | Comments: (0)

Category: Internet Explorer , Security

Tags: , , , , , , , , ,

Code released by Metasploit project is more reliable and can be used for attacks that exploit the Internet Explorer flaw.

Hackers working on the project open source Metasploit updated a software created to blitzkrieg the Internet Explorer, making it more reliable, although more likely to be used by criminals.

Security experts have been concerned with the failure since it was released the list of emails Bugtraq, on Friday (20/11). But the original code as an example in the list was not reliable, and has not been used in attacks in the real world.

"The Metasploit version that was released last night will be more reliable for certain attacks that the previous software," said Ben Greenbaum, senior research manager at Symantec, in an interview on Wednesday (25/11).

On Wednesday morning, Symantec had not detected the use of the tool on the Internet attacks, but experts say this type of code is for a very popular hacking technique called drive-by attack.

Code infiltration
Internet users become victims when they visit web sites that contain malicious code. It is then when their machines are infected by the vulnerability of the browser.

Criminals also infiltrate this type of code hacked websites, with the intention of spreading their attacks.

On Monday (23/11), Microsoft published a security advisory on the flaw, offering some workarounds for the problem. It affects versions 6 and 7 of IE.

The browser IE8 is not affected by the bug, which has to do with the way that IE retrieves certain objects Cascading Style Sheet (CSS) used to create a standardized layout on web pages.

IE users can update their more cautious navagedores or disable JavaScript, if you want to prevent attacks.

Microsoft confirms existence of the first vulnerability in Windows 7

Posted by Luciano Lima | Comments: (0)

Category: Security , Windows 7

Tags: , , , , , , , , , , , , , , , ,

Microsoft confirmed on Friday (13/11) the existence of a vulnerability in Windows 7 , but said that most users can protect themselves from attacks by blocking two ports on the firewall.

In a security bulletin , Microsoft said that a flaw in Server Message Block (SMB), a protocol made ​​by the company, can be used by hackers to attack machines running Windows 7 and Windows Server 2008 R2.

The vulnerability was disclosed by Canadian researcher Laurent Gaffie on Wednesday (11/11). According to Gaffie, exploiting the flaw could reach the point where the system only method of recovery is a manual shutdown of the computer .

Initially, Microsoft said it would investigate the case, but on Friday confirmed the problem. "Microsoft is aware of a code that can be exploited to undermine the functioning of the system," said the representative of the company's security group Dave Forstrom. "The company is not afraid of attacks exploiting the vulnerability at this time."

Forstrom, as Graffie, said the error can be exploited to disable a computer, but the vulnerability does not allow the installation of malicious code on Windows 7.

Both SMBv1 SMBv2 as containing the error. "Windows Vista, Server 2008, XP, Server 2003 and 2000 are not affected," says Forstrom.

Attacks may be directed to any browser, not just Internet Explorer, Microsoft warned. After taking the user to access malicious websites, attackers could crash the victim's computer problem with SMB packets.

Microsoft should release a fix the problem, but did not include in the package is scheduled for December 8 or throws an isolated correction. The company suggests that users block TCP ports 139 and 445 at the firewall. However, this may disable browsers as well as cause other critical issues.

Microsoft fixes 15 flaws, including malicious critical bug

Posted by Luciano Lima | Comments: (0)

Category: Security

Tags: , , , , , , , , , , , , , , , ,

Microsoft released today (10/11) a bundle of patches for 15 vulnerabilities s Windows systems and Windows Server and applications of Excel and Word, including one that will probably be exploited quickly by hackers.

None affect the new operating system Windows 7 .

The 15 flaws fixed by six security updates released today represent less than half the record for the package last month that Microsoft patched 34 bugs in 13 separate bulletins.

Of the 15 holes today, three were classified as "critical" by Microsoft. The remaining 12 were considered "important", which is the level immediately prior to the system of four levels of classification adopted by the company.

Bug Priority
Experts agree that users should focus first the MS09-065. This update, which is a critical, affects all versions of Windows still entitled to support, with the exception of Windows 7 and Windows Server 2008 R2.

"The vulnerability of the core of Windows is by far the most important," said Andrew Storms, director of security operations at nCircle Network Security.

"This gap can use Internet Explorer as an attack vector, and this is one case where the user will not be notified or prompted. This scenario is quite a drive-by attack. "

Richie Lai, who is director of vulnerability research at security company Qualys, agreed. "Anyone running Internet Explorer (IE) is at risk here, even though the flaw is not in the browser, but in kernel mode driver Win32k."

In a three
Storms and Lai refers to a bug marked critical in MS09-065, which is actually a trio of vulnerabilities .

According to Microsoft, the Windows kernel improperly interprets sources like Embeded OpenType (EOT), which are a compact form of fonts designed for web pages. EOT fonts can also be used in Word and PowerPoint.

Thus, the hackers also could launch malicious attacks by attaching documents to Word and PowerPoint to e-mail, which would mistakenly opened by users.

As an alternative to applying the fix, users can easily block the most likely attacks by disabling IE's support for embedded fonts. "It's a low-impact," explains Lai. "The worst that can happen is that some sites might look ugly."

But His advice would still leave PCs open to attack via malicious Word documents and PowerPoint, an issue that Microsoft also made in the security bulletin.

Error-free
As Windows 7 and Windows Server 2008 R2 are not the target of MS09-065, Storms and Lai assumed that Microsoft caught the bug before it wrapped up the final code, or RTM (Release To Manufacturing) system operating, and only now taken steps to plug the gaps in Windows 2000, XP and Vista and Server 2003 and 2008.

"It's likely that Windows 7 Release Candidate (RC) is vulnerable," said Storms, noting that Microsoft's policy of not providing security updates for previous versions of an operating system after the final version is released.

"That's why you do not see Microsoft patching Windows 7 RC or Beta," said Storms. "Anyone who has run the RC should take heed and upgrade to the RTM."

But while Storms speculated that Microsoft knew the EOT font flaw was a security issue and waited until now to patch older Windows Lai defends the thesis that until recently Microsoft had no idea that the problem also reached earlier than Windows 7.

"I think they fixed this bug as part of the code sanitization during the development cycle (Windows 7). Only recently it became public, and then they fixed the other Windows. "

Public recognition
Microsoft recognizes that information about the EOT vulnerability became public before the patch released today.

"Our initial report was provided through responsible disclosure, the vulnerability was later disclosed publicly by an independent entity," says the notice that accompanied the report.

Storms thinks hackers will exploit the vulnerability of EOT quickly.

"It's something that deserves to be followed in the weeks to come, not only because of its novelty, but also because it can be exploited through IE, which is an easy path, as well as through Word and PowerPoint documents," he said.

Microsoft also issued critical updates for Vista and Server 2008 and Windows Server 2000.

In the latter, the problem is a bug in the implementation of the License Logging Server, a tool originally designed to help manage client-access licenses server (CAL).

Storms recommends that users of these systems urgently implement the fix, even if the machines are probably well protected.

"Windows 2000 Server has the logging server enabled by default, but such systems are likely behind multiple firewalls, and the people that run Windows 2000 know that it is an older version and will act accordingly."

Windows and Mac
Excel and Word also received updates today. Eight vulnerabilities were addressed in MS09-067 for Excel and Word in the MS09-068. Both updates also affect Issues Office 2004 and Office 2008 for Mac

"These are the type of file format vulnerabilities we've seen many times in the past," said Storms, then remembering that the bugs ruin the older binary formats and not the new XML-based formats that debuted in Office 2007 Windows and Office 2008 for Mac

The security updates this month can be downloaded and installed via Microsoft Update and Windows Update, as well as through Windows Server Update Services.

Recovers critical Microsoft patches for Internet Explorer

Posted by Luciano Lima | Comments: (0)

Category: Internet Explorer , Security

Tags: , , , , , , , , , , , , ,

New MS09-054 update fixes four critical flaws in fixes for IE, which were settled in October, but problems generated web pages.

Microsoft announced on Monday (2/11), a new patch for Internet Explorer browser that was part of the monthly package of security updates of the company, Patch Tuesday, October .

This is the third time that Microsoft is required to repair one of the patches that made ​​up the largest update package already announced by the company, involving 13 to 34 alerts vulnerability s.

The new update MS09-054 fixes four patches for critical flaws in IE, including problems displaying web pages - pages shuffled or typos - which were caused by the first update.

The problems caused by the October update can affect any version of Internet Explorer that Microsoft still supported, including IE 5.01, IE6, IE7 and IE8, on all versions of Windows operating system, including the new Windows 7 .

According to Microsoft's security blog , the second correction has already been distributed automatically by the Windows Update, Microsoft Update and Automatic Updates.

The report from Computerworld U.S. confirmed the auto-update patch for users of new systems Windows XP , Vista and Windows 7, on Monday.

The update for MS09-054 update is available for download from the Microsoft website and can be derived by systems Windows Update or WSUS.

pixel Microsoft refaz correções críticas para Internet Explorer
Previous