[Future Useless Eater]

The update, which Microsoft tagged as “Critical,” isn't a patch per se, but rather an change to Windows that disables the ADODB.Stream object

FYI, the Internet Storm Center tested this latest Microsoft/IE 'fix' and found it inadequate to stop hackers...

"...even after 'ADODB.Stream' is disabled, it is still possible to launch programs on the users system without user interaction."

A related suggestion was distributed by security experts this week that could ALSO be of interest. They reiterate an MS security note (Microsoft Knowledge Base Article 833633) concerning the "Local Machine zone"...

For those of you that don't mind tinkering under the hood" of your computer such as to tighten ALL the security settings in every zone with: Control Panel --> Internet Options --> Security
MS announced a FIFTH security zone NOT shown in that tool with suggestions of tightening things THERE as well...
The control panel tool shows only these four zones:

• Trusted sites
• Local intranet
• Internet
• Restricted sites

The 5th (even higher level) zone is known as "Local Machine zone", and the MS article suggested it may be helpful for the security conscious, in some cases to even strengthen some security settings there.

"a malicious user may try to take advantage of the power of the Local Machine zone to elevate their permissions and to run arbitrary code on your computer."

Those zone settings can only be tweaked using the registry editor (regedit), and the changes do the following for the Local Machine zone:

• Disables ActiveX Controls and plug-ins
• Disables Active scripting
• Disables data sources across domains
• Disables Java

If any of you say "you no longer use IE", be aware that a Windows computer STILL HAS SEVERAL OTHER programs that venture out on the internet and can be at risk (Windows Media Player) for example. Shutting off these vulnerabilities helps security in those OTHER programs as well.

With the latest sophistication of trojans, worms, and virus, I recommend tightening EVERY security zone (there is practically no such thing as a 'trusted site' anymore, and even the 'Local intranet' zone is commonly corrupted).
Then install a non-MS browser and emailer if you haven't already.

[Just mythoughts]

Thanks.

This never ends.

[backhoe]

Appreciate the info. I'm still cleaning garbage out of my machine.

[SeeRushToldU_So]

I am using FireFox. I switched a couple of weeks ago at the suggestoin of some Freepers.

So far I like it.

[lainde]

BTTT

[mass55th]

Thanks, but I don't use Microsoft products. I'm a sworn Apple user and Safari is my browser.

[firewalk]

I installed Mozilla Firefox (as you suggested)
& have been using it ever since
I like it very much

thanks for the ping

[Blood of Tyrants]

I abandoned IE last week after the second time I had to spend 3 hours searching out and removing spyware.

[Grampa Dave]

Thanks for the ping.

My new SBC/Yahoo DSL downloaded the updates/patches in seconds. Then my computer installed them in about a minute.

I shut down and restarted my computer to come back to Free Republic. All was done in less than 3 minutes.

[RedBloodedAmerican]

Thanks.

It should be pointed out the root of this is not so much IE browsers as much as (per the article) previously infected servers, if I read that right.

I will stick with IE. If a server is compromised by a hacker, then they can target any browser where there's an opportunity to exploit a problem.

The fact that IE is targeted in this one does not by default mean Mozilla or any other is immune to exploits.

[RedBloodedAmerican]

The MS critical update worked for my PC. Had to restart the service (or reboot) though.

[Eagle9]

Thanks for interpreting all of that. By that I mean, I am not anywhere even close to being an expert on this subject. I just just barely enough to read and follow instructions from people like yourself. I had read that about the LMZ last night and all I got out of it was a headache. So, I decided not to even mention it and wait for someone who knew what they doing to interpret it.

Now, I just need to go back and read your instructions again ... no, I can do that later. I'm just gonna shutdown the computer, enjoy the day, and come back tonight or tomorrow. Again, thank you.

_________________________________________________________________

To everyone else: I posted this article for informative purposes only, and am not a technical expert. If you have technical questions, I can only suggest that you ask any those FReepers on this thread that are giving advice.

[windchime]

Bump!

[skr]

Thanks for the ping. Needed the info!

[Lauren BaRecall]

Wow, thanks for the ping! This is more for me to read as I experiment with my recently installed Norton System Works. It seems like I'm zipping along at a snail's pace (LOL!), but I'm learning a whole heck of a lot!

A real pain in the neck, but an excellent learning opportunity. :o)