Feedgy - Information security - Implementing security policies for data loss prevention - Secunia PSI detected PowerPoint viewer 2007 as an insecure program on a fully patched Microsoft Windows system.. Free 3 user mcafee virus scan plus 2010 trial license for one year.. Preventing browser hijacks.. Free anti-malware tool from Microsoft..

Information security - Implementing security policies for data loss prevention
Released:	6/8/2009 12:04:23 PM
RSS Link:	http://feeds2.feedburner.com/blogspot/GyAT
Last View:	5/23/2012 12:18:18 PM
Last Refresh:	1/26/2010 1:55:16 AM
Page Views:	265
Comments:	Read user comments (0)
Report violation	Report a violation or adult content
Save It:	Share
Description: Secunia PSI detected PowerPoint viewer 2007 as an insecure program on a fully patched Microsoft Windows system.. Free 3 user mcafee virus scan plus 2010 trial license for one year.. Preventing browser hijacks.. Free anti-malware tool from Microsoft.. Contents: Secunia PSI detected PowerPoint viewer 2007 as an insecure program on a fully patched Microsoft Windows system Secunia PSI detected C:Program FilesMicrosoft OfficeOffice12PPTVIEW.EXE was insecure on a fully patched Windows operating system. I have Office 2007 Enterprise SP2 fully patched on my system. I was not able to get the update from Windows update site either. I downloaded and tried installing "Security Update for PowerPoint Viewer 2007 (KB970059)" but it said "There are no products affected by this package installed on this system". So I visited Secunia forums and searched for solution. In one of the threads there was a solution mentioned which worked for me. First rename the present version of PPTVIEW.EXE to PPTVIEW.EXE_OLD in "C:Program FilesMicrosoft OfficeOffice12" then download 7-zip from http://www.filehippo.com/download_7-zip and install it. Now download Security Update for PowerPoint Viewer 2007 (KB970059) . Right click on the downloaded file on the desktop -> scroll down to 7Zip and select Extract to as shown in the image Then find PPTVIEW.EXE_0001in the extracted files and rename it to PPTVIEW.EXE. Copy and paste it in the following location C:Program FilesMicrosoft OfficeOffice12 Now rescan entire system with Secunia PSI it should show powerpoint viewer 2007 in the patched programs list. Visit http://secunia.com/community/forum/thread/show/2624/insecure_but_can_t_get_the_update for more information on this patch. Free 3 user mcafee virus scan plus 2010 trial license for one year Mcafee is offering a free 12 month trial of its product 3 user Mcafee Virus scan plus 2010 This promotional offer has been started by vmware. To get Mcafee trial visit this link http://us.mcafee.com/en-us/affiliates/vmware/landingpages/16288.asp?cid=48523 Click on the Download trial button Create an account by filling in details and click I agree Click on Download button and again click on Download button your mcafee product installation will start automatically in internet explorer if it is firefox you have to double click on dmsetup.exe file which will start installation of Mcafee. Preventing browser hijacks Browser hijacking is one of the methods of taking control of internet browser by installing unknown addons without any approval. This technique can be used to install malicious software that monitors your browsing habits or to send some sensitive personal information to hackers or to redirect your search to a malicious website which in turn will lead to installation of malware onto the computer. Home page change, URL redirection, hyperlink redirection, Changes in the hosts file, lots of pop ups which may include obscene pop ups are symptoms of a browser hijack.You may not be able to browse security related websites and it may also lead to DNS Hijack. Browser hijacking software may install itself as a legitimate program and take complete control of your system. Prevention tips: To prevent browser hijacking you need to be little cautious while installing freeware or shareware programs as these programs are bundled with unwanted toolbars and addons. Enable automatic update and keep your computer up to date. Install Antivirus or Antispyware programs like Ad-aware or Spybot if you have windows defender make sure it is up to date. Most of the browsers now come with internal phishing filters which will enable you to identify a fake website from legitimate ones, so make sure phishing filter is enabled in your browser. Use a good anti-virus which has features like on demand scan, real time protection, real time scanner, anti phishing, web browser protection.Make sure your antivirus is up to date. Make sure Internet explorer is running in protected mode. if your browser is already hijacked you can use these tools to reset the registry entries: Autoruns Hijack this For more information on these tools please visit http://infosecurityhub.blogspot.com/2009/08/utilities-for-tracking-malware-hiding.html Also you can refer to this link for more tools: http://aumha.org/a/parasite.htm Free anti-malware tool from Microsoft Microsoft security Essentials is a free anti-malware from Microsoft. It provides real time protection for your PC against malware, spyware, viruses and other malicious software free. It has features like Scheduled scan Quick, full and custom scan Automatic updates without user interaction Real-time protection File exclusions Microsoft SpyNet It has four tabs: Home tab which contains scan options like Quick Scan, Full scan and Custom scan. Quick scan scans critical areas of system like registry, start up etc. Full Scan scans the entire system and Custom scan is for scanning specific areas of system. Update tab allows you to run a manual update of malware signatures. History tab contains Quarantined items, detected items and items that are allowed to run. Settings tab contains various settings of security essentials including Microsoft spynet membership settings. Microsoft spynet is the online community that helps you choose how to respond to potential threats in case you don't know what to do. It is also responsible for preventing threats from spreading around. System requirements: Genuine Windows XP, with a CPU clock speed of 500 MHz or higher, and 1 GB RAM or higher. Windows Vista and Windows 7 with a CPU clock speed of 1.0 GHz or higher, and 1 GB RAM or higher. VGA display with a resolution of 800 × 600 or higher. 140 MB of available hard disk space. An Internet connection is required for installation and to download the latest virus and spyware definitions for Microsoft Security Essentials. Internet browser( IE or Firefox) Download Microsoft security Essentials: Utilities for tracking Malware hiding in windows autostart entries When Malware infects a computer it automatically creates some autostart entries in windows autostart locations like HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon etc. As Malware executes sometimes it will disable registry editor and task manager and msconfig so these utilities will help you to recover your system from malware. Autoruns This utility from sysinternals shows the programs that are configured to run automatically at windows startup. These locations include startup folder, Run, RunOnce, and other Registry keys. You can configure Autoruns to show other locations, including Explorer shell extensions, toolbars, browser helper objects, Winlogon notifications, auto-start services, and much more. It displays logon entries, Explorer add-ons, Internet Explorer add-ons including Browser Helper Objects (BHOs), Appinit DLLs, image hijacks, boot execute images, Winlogon notification DLLs, Windows Services and Winsock Layered Service Providers. http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx RunAlyzer RunAlyzer is a utility from safer-networking.org. It is a combination of a standard configuration manager and an advanced tool to locate and remove places where hijackers, spyware and other malware hide. Home

Privacy Policy