TIA
David
Its a genuine site
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:u3oqOG3I...@TK2MSFTNGP03.phx.gbl...
--
Kerry Brown
Microsoft MVP - Shell/User
www.vistahelp.ca/phpBB2
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:u3oqOG3I...@TK2MSFTNGP03.phx.gbl...
At least Bonio's are a recommended and visible product (and loved by my dog!
<g>)
David
____________________________________
"DL" <address@invalid> wrote in message
news:%23C4eAO3...@TK2MSFTNGP06.phx.gbl...
I think you already know the danger of '.bat' files to us mere mortals.
My real, 'in-the-flesh', ex 'script kiddie' hacker turned PC consultant has
told
me so face-to-face. I'd rather trust him than you, I'm afraid.
David
__________________________________________________
"Kerry Brown" <kerry@kdbNOSPAMsys-tems.c*a*m> wrote in message
news:ucWLjI4...@TK2MSFTNGP04.phx.gbl...
I read at the bottom of that web page a note which says "Microsoft is in no
way affiliated with, nor offers endorsement of, this site". I didn't read
that far before (earlier this year) and don't quite understand why Microsoft
does *not* endorse a web site set up by those who purport to be MVP's, who
are (I thought) rather special (and trusted) individuals.
Perhaps someone else will explain why that should be.
David
_____________________________________________________________
"Tom Willett" <tomp...@mvps.invalid> wrote in message
news:ejEDyL5I...@TK2MSFTNGP03.phx.gbl...
Liability.
Just because you trust someone doesn't mean you want to endorse and take
full responsibility for that individuals actions.
It's not like MVPs have any actual ties/responsibilities to Microsoft. We
do what we do because we want to. Microsoft decided to recognize this with
an award - most of us would continue to do what we do whether or not the
title MVP was there. After all - in order to get recognized - you had to do
the same thing for a while.
--
Shenan Stanley
MS-MVP
--
How To Ask Questions The Smart Way
http://www.catb.org/~esr/faqs/smart-questions.html
Now that you are here, is it your considered view that the web site I
mentioned is safe to use?
David
_____________________________________________
"Shenan Stanley" <newsh...@gmail.com> wrote in message
news:eBHuIP7I...@TK2MSFTNGP02.phx.gbl...
Yes, it's safe as in won't give you malware. For the most part the
information various MVPs post there is well tested. I can't vouch for every
single thing that's there because there's too much for me to read and keep
track of all of it. Fixes are always correct but may not be appropriate or
work in every situation because of the "other program or hardware"
complication. Advice is always knowledgeable but not everyone will always
agree with any particular piece. We are individuals and don't necessarily
agree with each other about everything. As with any advice, consider the
individual giving it and their reputation.
Note that many MVPs have their sites hosted elsewhere for various reasons.
--
Frank Saunders, MS-MVP OE/WM
http://www.fjsmjs.com
Answer in newsgroup. Don't send mail.
<snipped Rest>
BoaterDave wrote:
> Now that you are here, is it your considered view that the web site
> I mentioned is safe to use?
Yes.
It is mostly links to a bunch of other sites - but at least those running
these sites have been helping people on these newsgroups for some time and
you see much of their advice repeated in some form or another every day
here. I trust the site itself and most of the advice on it - and the only
reason I say most is because I always check out any advice before taking it
in multiple places - no matter who it is from. I just like to understand
things as much as possible, it's not even a trust issue in that way.
I've spent hundreds of hours 'experimenting'over the last 12 months,
culminating with a discussion with a young man (mid 20's) who is employed in
a local computer shop. He is a self-confessed ex 'script kiddie' hacker who
has now reformed and spends most of his time helping others by repairing
PC's and ridding them of 'nasties'. He is real and not just a 'virtual'
entity. I believe what he tells me. Perhaps that is because he is getting
married soon and has introduced me to his fiance. :)
One thing he mentioned recently was '.bat' files. He was absolutely adamant
that, with only two exceptions, other such files indicate that a PC has been
compromised, often without the knowledge of the user. I have tried to
convince others of this, but none believe me. :(
I was concerned about the web site because of the utilisation of '.bat'
files
if one follows the use of a HOSTS file, here:
http://mvps.org/winhelp2002/hosts.htm
Anyway, thanks for the 'thumbs-up'! :)
David
_____________________________________________________
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:%23y75Mi8...@TK2MSFTNGP02.phx.gbl...
gls858
--
Kerry Brown
Microsoft MVP - Shell/User
www.vistahelp.ca/phpBB2
"gls858" <gls...@yahoo.com> wrote in message
news:%23I3gzxE...@TK2MSFTNGP04.phx.gbl...
Perhaps it was Divine intervention - I then saw the post from Kerry Brown.
Or, as he's known elsewhere, TechB.
What you couldn't know, gls858, is that my younger son, Nick, who would have
been 36 tomorrow, tragically collapsed and died almost 8 years ago. No cause
for his death was found. He was a computer guru, with a first class degree
in Physics, and worked for ICL. He could *always* answer my queries ........
and I miss him.
I appreciate *your* help. Thank you.
My basic understanding now is that, as a 'bat' file is not a 'virus' per se,
it would (probably) not be picked up by an anti-virus programme. However, I
suspect that if such a file was surepticiously placed on one's PC, it could
issue commands to make one's PC do just about anything, including being able
to make adjustments to, in my case, NIS 2006.
If I'm right about this (and I recognise that I may have got it wrong yet
again!) unless one specifically seeks out a suspicious 'bat' file, one's PC
could apparently be working normally whilst, at the same time, be acting as
a 'zombie' for unscrupulous persons unknown. (Perhaps that is what my
'script kiddie' meant - he's no academic, that's for sure!)
Referring to the post from KB, I'd just mention that he 'advises' on the N/g
to which I was lured (by email) following posts I made here with MS back in
February. I was highly suspicious then, and still feel that there may be
those with malicious intent residing there (perhaps using the PC's of other
newsgroup members as zombies too - just my theory!). I'm aware that some
'members' there scan these MS newsgroups - perhaps looking for other
vulnerable 'clients' - I could determine no other reason.
I didn't know what a 'Troll' was this time last year. All I've been trying
to do is identify just how the 'bad guys' wreak havoc on the 'Net, not
simply 'clean' my own machine.
FWIW (and I didn't know what that meant either, then! <g>)
David
______________________________________________________
"gls858" <gls...@yahoo.com> wrote in message
news:%23I3gzxE...@TK2MSFTNGP04.phx.gbl...
> It's not the fact that's it's a .bat file that makes it good or bad
I suspected that from what others had posted. Especially the part about
needing professional help :-)
gls858
Hmmmm...
I cannot say I agree that the mere presence of *.bat or *.cmd files (similar
in most aspects) denotes that the PC has been compromised. I still use
batch scripts and VBSscripts every day - literally.
A batch script alone cannot tell you if a machine has been compromised. The
contents of said batch script can, but just its prescence tells you little
to nothing. After all - just because my car is in the driveway doesn't mean
I am home. Neither do the lights on in the house.
In other words - a batch script is not 'just because it is there' scenarios.
=)
Yes - batch scripts can be used for bad things. So can a lot of other
files. Doesn't mean they are.
> "BoaterDave" <Boate...@nospam.invalid> wrote in message
> news:%23y75Mi8...@TK2MSFTNGP02.phx.gbl...
>> Thank you, Shenan. I understand.
>>
>> Now that you are here, is it your considered view that the web site I
>> mentioned is safe to use?
>
>
> Yes, it's safe as in won't give you malware. For the most part the
> information various MVPs post there is well tested. I can't vouch
> for every single thing that's there because there's too much for me
> to read and keep track of all of it. Fixes are always correct but
> may not be appropriate or work in every situation because of the
> "other program or hardware" complication. Advice is always
> knowledgeable but not everyone will always agree with any particular
> piece. We are individuals and don't necessarily agree with each
> other about everything. As with any advice, consider the individual
> giving it and their reputation.
To BoaterDave: I just wanted to echo Frank's very good advice above. MVPs
can almost always be trusted, but that doesn't mean that any one of us will
automatically agree with everything some other MVP says. We are individuals,
and although we may agree on lots of things, we are also likely to disagree
on others.
--
Ken Blake - Microsoft MVP Windows: Shell/User
Please reply to the newsgroup
> My thanks to both Frank and Shenan. I appreciate your comments.
>
> I've spent hundreds of hours 'experimenting'over the last 12 months,
> culminating with a discussion with a young man (mid 20's) who is
> employed in a local computer shop. He is a self-confessed ex 'script
> kiddie' hacker who has now reformed and spends most of his time
> helping others by repairing PC's and ridding them of 'nasties'. He is
> real and not just a 'virtual' entity. I believe what he tells me.
> Perhaps that is because he is getting married soon and has introduced
> me to his fiance. :)
> One thing he mentioned recently was '.bat' files. He was absolutely
> adamant that, with only two exceptions, other such files indicate
> that a PC has been compromised, often without the knowledge of the
> user. I have tried to convince others of this, but none believe me. :(
I certainly don't believe you. The statement is complete nonsense. Your
young man has no idea what he's talking about. A bat file is simply a text
file containing one or more commands. Although it's possible that such
commands *could* be mailicious, there's nothing about their being in a bat
file that makes them so, and most bat files by far are completely
innoucuous. I have many bat files on this computer--some written by me, some
by others--and none of them are malicious.
I remember old batch files that would reboot your computer and format
your c:\ drive or worse fdisk the whole drive. To knock on wood, I have
not run across many viruses nowadays that do this. IMHO, I worry about
spyware 10x more than viruses.
I feel as if I have digressed, so I will stop now. :-) I hope that helps
--
Michael D. Alligood
MCSA, MCDST, MCP, A+,
Network+, i-Net+, CIW Assoc.,
CIW Certified Instructor
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:OPX5MnFJ...@TK2MSFTNGP02.phx.gbl:
Thank you for responding. Your comments were rather supportive of my theory.
I haven't (or so I thought!) intimated that *.bat files are spreading 'in
the wild', rather that I feel that they may be being utilised by (probably)
a small number of 'bad guys' who are hiding within a specific newsgroup, the
purpose of which is supposed to help others with their PC problems (*still*
no concrete proof, which is highly frustrating!). There are, though,
hundreds of users of the 'host' server, so many users may be compromised.
When I discussed the threat I received with our Police (once I had recovered
funds fraudulently taken from my bank account by PayPal last year) I
discovered just how massive Cybercrime has become. Discussion with their
Hi-Tech crime unit then led me to investigate further, and I discovered
findings by Sunbelt Software which, in turn, made me realise that no-one
really knows just *how* such crime is growing. So, perhaps in memory of my
son, I've done my best to identify how it *may* be being done (at least in
part).
I feel that I can take the matter little further on my own.
Thanks again.
David
PS You will find many posts I've made before if you 'Google' for BoaterDave,
but find out just who *I* am if you 'Google' for BoaterDaveTJ :)
____________________________________________________
"Michael D. Alligood" <mdall...@bellsouth.net> wrote in message
news:uvPeWwFJ...@TK2MSFTNGP06.phx.gbl...
.............. but they *could* be? Please see my response to Michael.
David
_________________________________________________
"Shenan Stanley" <newsh...@gmail.com> wrote in message
news:%23WqE$rFJHH...@TK2MSFTNGP03.phx.gbl...
.............. so if they *could* be, would they be identified by an
anti-virus scan?
I think not. You may know different - I'm still willing to learn! :)
Please see my response to Michael. Thank you.
David
_________________________________________________
"Ken Blake, MVP" <kbl...@this.is.an.invalid.domain> wrote in message
news:OkaabvFJ...@TK2MSFTNGP03.phx.gbl...
Although it's possible that such
> commands *could* be mailicious, there's nothing about their being in a bat
> file that makes them so, and most bat files by far are completely
> innoucuous.
Ken Blake - Microsoft MVP Windows: Shell/User
*.jpgs can have viruses.
*.doc files can contain macro viruses.
You can be infested with a LOT of malware just by visiting the wrong web
page.
I never said they could not be bad - matter of fact - I said they could be
bad. What I was disagreeing with was the assertion your young friend made
that you stated, "... One thing he mentioned recently was '.bat' files. He
was absolutely adamant that, with only two exceptions, other such files
indicate that a PC has been compromised, often without the knowledge of the
user. I have tried to convince others of this, but none believe me ..." <-
it's simply not true as stated. It does *not* indicate an infested/infected
machine at all - and in the majority of cases is 100% benign.
Perhaps you didn't read my response to Michael where I said:-
"My basic understanding now is that, as a 'bat' file is not a 'virus' per
se,
it would (probably) not be picked up by an anti-virus programme. However, I
suspect that if such a file was surepticiously placed on one's PC, it could
issue commands to make one's PC do just about anything, including being able
to make adjustments to, in my case, NIS 2006.
If I'm right about this (and I recognise that I may have got it wrong yet
again!) unless one specifically seeks out a suspicious 'bat' file, one's PC
could apparently be working normally whilst, at the same time, be acting as
a 'zombie' for unscrupulous persons unknown. (Perhaps that is what my
'script kiddie' meant - he's no academic, that's for sure!)"
I DO understand what you have explained to me. Thank you again. :)
HTH
David
____________________________________________
"Shenan Stanley" <newsh...@gmail.com> wrote in message
news:eupCOXJ...@TK2MSFTNGP04.phx.gbl...
So along with detecting viruses by using "virus signatures", AV programs
also look for "certain instructions or commands within a program that
are not found in typical application programs." Possibly detecting your
*.bat files. While there is no golden AV program that detect all
suspicious programs, files and scripts -- and I do not want to continue
this thread with the "Best AV program" on the market, it should perform
heuristic scans to help locate these suspicious files/programs.
I hope this clears things up.
--
Michael D. Alligood
MCSA, MCDST, MCP, A+,
Network+, i-Net+, CIW Assoc.,
CIW Certified Instructor
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:OB4bh8IJ...@TK2MSFTNGP04.phx.gbl:
> Thank you for your view, Ken.
>
> .............. so if they *could* be, would they be identified by an
> anti-virus scan?
>
> I think not. You may know different - I'm still willing to learn! :)
Others here have called you a troll. I don't know anything of your past
postings, so I am willing to give you the benefit of the doubt, unless or
until you convince me that you are trolling. You are close to convincing me
of that, but I thought I would invest one more message before being sure.
So here's the story:
It's likely that many kinds of malicious statements in a bat file would not
be caught by a an anti-virus program. There are many kinds of malicious
software, and the kind you might find in a bat file would not be a virus,
and might not be caught. Anti-virus software does not catch everything, and
if you rely solely on anti-virus osftware for protection for security, you
are kidding yourself.
Let's say, for the sake of argument, that I want to create a file that would
delete the contents of an important folder like c:\program files. I could
write a batch file to do this, I could create an exe file to do this, I
could create a file that masqueraded as a jpg file (or any other type) to do
this. Regardless of how I did it, a virus checker might not catch it.
The point is that all of the various ways I might write something to perform
this malicious act are equivalent. There's nothing special about the bat
file, and that particular kind of file is no more risky than any other type
of file.
Over and above the points made above, you said "One thing he mentioned
recently was '.bat' files. He was absolutely adamant that, with only two
exceptions, other such files indicate that a PC has been compromised, often
without the knowledge of the user. I have tried to convince others of this,
but none believe me. :("
Your young man's statement is *completely* false. There is risk in bat
files, as there is risk with any kind of files. With bat files, as with all
other files, you need to know what they are and where they came form before
you can trust them. The risk is not greater with bat files and the statement
that "with only two exceptions, other such files indicate that a PC has been
compromised" is complete and utter nonsense. If you are putting your trust
in someone who says that, you are very clearly trusting the wrong person. He
has no idea what he is talking about.
Feel free to disbelieve everything I, and everyone else here, has told you,
and trust your young man instead. It's entirely your choice.
--
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:e3MQlX5I...@TK2MSFTNGP03.phx.gbl...
That particular site is one I will vouch for. The BAT files there are not
harmful and can be quite useful. They are also quite well known. If I were
to use them I would change the names, however, but to something I was sure I
could remember. The reason is that they are so well known that malware
might look for them and try to change them to do something nasty.
A BAT file can't run by itself. You might as well say that EXE and DLL
files are suspicious. They could be placed on the computer by something
else and do something nasty when run. There is no way that they are
inherently dangerous and certainly are not as dangerous as SCR files, which
may be screen savers but also may be script files.
Your 'script kiddie' is an ignorant fear monger. I have seen many good and
useful BAT files and only one or two malicious ones. The main reason I
don't use BAT files anymore is that it's too easy to forget exactly what
such a file does and thus forget how to do it manually. Since my main
business is helping people I want to be able to tell my customers over the
phone how to do things that I would have written a BAT file for if it was
for my own use only.
You also seem to be expressing a common prejudice that only young people can
"know" computers. That's ridiculous. Yes, a lot of older people are
computer illiterate, but so are an awful lot of young people. The young
people can be more dangerous in their advice just because they subscribe to
this prejudice and think they know a lot simply because they're young and
have learned a few tricks.
Thank you for taking the time and trouble to help me.
Whilst I know that there are differing views, I'm now using NIS 2006 and
hope this will help protect my PC!
As I have personally not deliberately added any'bat' files to my PC, I have
deleted all but Autoexec.bat :)
David
______________________________________
"Michael D. Alligood" <mdall...@bellsouth.net> wrote in message
news:eoI3Q8JJ...@TK2MSFTNGP04.phx.gbl...
I will relay the comments which you and others have made and see what his
response is!
Cheers,
David
_______________________________________
"Ken Blake, MVP" <kbl...@this.is.an.invalid.domain> wrote in message
news:OZmwtfKJ...@TK2MSFTNGP06.phx.gbl...
--
Michael D. Alligood
MCSA, MCDST, MCP, A+,
Network+, i-Net+, CIW Assoc.,
CIW Certified Instructor
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:O$XMMguJH...@TK2MSFTNGP04.phx.gbl:
--
Michael D. Alligood
MCSA, MCDST, MCP, A+,
Network+, i-Net+, CIW Assoc.,
CIW Certified Instructor
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:O$XMMguJH...@TK2MSFTNGP04.phx.gbl:
In general terms, my PC has responded well to using NIS 2006.
I have just 384Mb RAM (low by today's standards!) And an AMD 1300Mz
processor.
Not too fussed, as I'll upgrade to a new PC with Vista once it's released
here in the UK next year.
I've used Windows Live OneCare too and feel it will be very useful to many.
David
_______________________________________
"Michael D. Alligood" <mdall...@bellsouth.net> wrote in message
news:Oi%23qwt8J...@TK2MSFTNGP06.phx.gbl...
--
Michael D. Alligood
MCSA, MCDST, MCP, A+,
Network+, i-Net+, CIW Assoc.,
CIW Certified Instructor
"BoaterDave" <Boate...@nospam.invalid> wrote in message
news:#J4kTpcK...@TK2MSFTNGP03.phx.gbl: