12 minutes to PC infection

If your Windows computer is not properly protected, chances are it will take
all of 12 minutes before it becomes infected, a major security company
says.

Article here:

http://www.globetechnology.com/servlet/story/RTGAM.20050704.gtvirusjul4/BNStory/Technology/


--
Get Microsoft PowerToys for Windows XP here:
http://www.microsoft.com/windowsxp/downloads/powertoys/xppowertoys.mspx
"A must-have for your Toy Operating System"

Hi

A system can be infected a lot quicker than that if someone is unlucky.

--

Will Denny
MS-MVP Windows Shell/User
Please reply to the News Groups


"NoStop" <nostop@stopspam.com> wrote in message
news:F7rye.1866795$Xk.665565@pd7tw3no...
> If your Windows computer is not properly protected, chances are it will
> take
> all of 12 minutes before it becomes infected, a major security company
> says.
>
> Article here:
>
> http://www.globetechnology.com/servlet/story/RTGAM.20050704.gtvirusjul4/BNStory/Technology/
>
>
> --
> Get Microsoft PowerToys for Windows XP here:
> http://www.microsoft.com/windowsxp/downloads/powertoys/xppowertoys.mspx
> "A must-have for your Toy Operating System"
>

"Will Denny" <willdenny@mvps.org> wrote in message
news:u4WF8mTgFHA.3256@TK2MSFTNGP12.phx.gbl...
> Hi
>
> A system can be infected a lot quicker than that if someone is unlucky.
>

I accidentally forgot to remove the network cable once when doing a
re-install, and it took about *20* seconds to get infected!

Same here, it takes seconds.

--

"Gordon" <gordon@gbpcomputing.co.uk.invalid> wrote in message
news:3iv36rFnc22oU1@individual.net...
> "Will Denny" <willdenny@mvps.org> wrote in message
> news:u4WF8mTgFHA.3256@TK2MSFTNGP12.phx.gbl...
>> Hi
>>
>> A system can be infected a lot quicker than that if someone is unlucky.
>>
>
> I accidentally forgot to remove the network cable once when doing a
> re-install, and it took about *20* seconds to get infected!
>
>

And generally happens before setup even completes the installation.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP
http://mvp.support.microsoft.com/
Associate Expert - WindowsXP Expert Zone
www.microsoft.com/windowsxp/expertzone
Windows help - www.rickrogers.org

"Newport" <xxxxxx@txxxxx.xx> wrote in message
news:42ca5c75$0$25034$8fcfb975@news.wanadoo.fr...
> Same here, it takes seconds.
>
> --
>
> "Gordon" <gordon@gbpcomputing.co.uk.invalid> wrote in message
> news:3iv36rFnc22oU1@individual.net...
>> "Will Denny" <willdenny@mvps.org> wrote in message
>> news:u4WF8mTgFHA.3256@TK2MSFTNGP12.phx.gbl...
>>> Hi
>>>
>>> A system can be infected a lot quicker than that if someone is unlucky.
>>>
>>
>> I accidentally forgot to remove the network cable once when doing a
>> re-install, and it took about *20* seconds to get infected!
>>
>>
>
>

That's the one Rick - unfortunately.

--

Will Denny
MS-MVP Windows Shell/User
Please reply to the News Groups


"Rick "Nutcase" Rogers" <rick@mvps.org> wrote in message
news:uSWeZ5UgFHA.1444@TK2MSFTNGP10.phx.gbl...
> And generally happens before setup even completes the installation.
>
> --
> Best of Luck,
>
> Rick Rogers, aka "Nutcase" - Microsoft MVP
> http://mvp.support.microsoft.com/
> Associate Expert - WindowsXP Expert Zone
> www.microsoft.com/windowsxp/expertzone
> Windows help - www.rickrogers.org
>
> "Newport" <xxxxxx@txxxxx.xx> wrote in message
> news:42ca5c75$0$25034$8fcfb975@news.wanadoo.fr...
>> Same here, it takes seconds.
>>
>> --
>>
>> "Gordon" <gordon@gbpcomputing.co.uk.invalid> wrote in message
>> news:3iv36rFnc22oU1@individual.net...
>>> "Will Denny" <willdenny@mvps.org> wrote in message
>>> news:u4WF8mTgFHA.3256@TK2MSFTNGP12.phx.gbl...
>>>> Hi
>>>>
>>>> A system can be infected a lot quicker than that if someone is unlucky.
>>>>
>>>
>>> I accidentally forgot to remove the network cable once when doing a
>>> re-install, and it took about *20* seconds to get infected!
>>>
>>>
>>
>>
>
>

In article <F7rye.1866795$Xk.665565@pd7tw3no>, nostop@stopspam.com
says...
> If your Windows computer is not properly protected, chances are it will take
> all of 12 minutes before it becomes infected, a major security company
> says.
>
> Article here:
>
> http://www.globetechnology.com/servlet/story/RTGAM.20050704.gtvirusjul4/BNStory/Technology/

Which is why all DSL/Cable modems should be NAT enabled by default and
only setup with a Public IP when requested by the non-clueless users.

If ISP's or NAT router vendors were to put on a media blitz about the
security benefits of NAT routers (purchased or included in the ISP's
devices), the net would be a lot nicer/faster place.

--
--
spam999free@rrohio.com
remove 999 in order to email me

Unfortunately I experienced just this. I had built a new computer for a
customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
connection to the new computer. I started to get the latest Windows Updates.
What a mess I ended up with!

Just for fun, I ran Spybot on the computer. It found over 80 critical
problems along with many not so critical.

I unplugged the DSL and started over (-:

Lessen learned - the hard way.

--
Regards,

Richard Urban

If you knew as much as you thought you know,
You would realize that you don't know what you thought you knew!


"Rick "Nutcase" Rogers" <rick@mvps.org> wrote in message
news:uSWeZ5UgFHA.1444@TK2MSFTNGP10.phx.gbl...
> And generally happens before setup even completes the installation.
>
> --
> Best of Luck,
>
> Rick Rogers, aka "Nutcase" - Microsoft MVP
> http://mvp.support.microsoft.com/
> Associate Expert - WindowsXP Expert Zone
> www.microsoft.com/windowsxp/expertzone
> Windows help - www.rickrogers.org
>
> "Newport" <xxxxxx@txxxxx.xx> wrote in message
> news:42ca5c75$0$25034$8fcfb975@news.wanadoo.fr...
>> Same here, it takes seconds.
>>
>> --
>>
>> "Gordon" <gordon@gbpcomputing.co.uk.invalid> wrote in message
>> news:3iv36rFnc22oU1@individual.net...
>>> "Will Denny" <willdenny@mvps.org> wrote in message
>>> news:u4WF8mTgFHA.3256@TK2MSFTNGP12.phx.gbl...
>>>> Hi
>>>>
>>>> A system can be infected a lot quicker than that if someone is unlucky.
>>>>
>>>
>>> I accidentally forgot to remove the network cable once when doing a
>>> re-install, and it took about *20* seconds to get infected!
>>>
>>>
>>
>>
>
>

In article <ePmIxDbgFHA.2896@TK2MSFTNGP09.phx.gbl>,
richardurbanREMOVETHIS@hotmail.com says...
> Unfortunately I experienced just this. I had built a new computer for a
> customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
> connection to the new computer. I started to get the latest Windows Updates.
> What a mess I ended up with!
>
> Just for fun, I ran Spybot on the computer. It found over 80 critical
> problems along with many not so critical.
>
> I unplugged the DSL and started over (-:
>
> Lessen learned - the hard way.

Any person/tech doing a build should already know enough to get at least
a simple NAT router to protect their network while doing anything. Even
with a single PC, the NAT router appliance will save your and your
clients asses more than you can imagine.

--
--
spam999free@rrohio.com
remove 999 in order to email me

MY computers are connected through a 4 port Linksys router. There are 2
ported leads on my workbench. I didn't use them! I did say, in my absent
mindedness.

I totally bypasses the router and plugged in directly to a phone jack - a
brain fart if you will!

How many will admit they screwed up this way, or worse? Come on now! Lets
hear "your" story. We all have one.

--
Regards,

Richard Urban

If you knew as much as you thought you know,
You would realize that you don't know what you thought you knew!


"Leythos" <void@nowhere.lan> wrote in message
news:MPG.1d34d9331a470e3c98997e@news-server.columbus.rr.com...
> In article <ePmIxDbgFHA.2896@TK2MSFTNGP09.phx.gbl>,
> richardurbanREMOVETHIS@hotmail.com says...
>> Unfortunately I experienced just this. I had built a new computer for a
>> customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
>> connection to the new computer. I started to get the latest Windows
>> Updates.
>> What a mess I ended up with!
>>
>> Just for fun, I ran Spybot on the computer. It found over 80 critical
>> problems along with many not so critical.
>>
>> I unplugged the DSL and started over (-:
>>
>> Lessen learned - the hard way.
>
> Any person/tech doing a build should already know enough to get at least
> a simple NAT router to protect their network while doing anything. Even
> with a single PC, the NAT router appliance will save your and your
> clients asses more than you can imagine.
>
> --
> --
> spam999free@rrohio.com
> remove 999 in order to email me

In article <#KNiZZbgFHA.3448@TK2MSFTNGP12.phx.gbl>,
richardurbanREMOVETHIS@hotmail.com says...
> MY computers are connected through a 4 port Linksys router. There are 2
> ported leads on my workbench. I didn't use them! I did say, in my absent
> mindedness.
>
> I totally bypasses the router and plugged in directly to a phone jack - a
> brain fart if you will!
>
> How many will admit they screwed up this way, or worse? Come on now! Lets
> hear "your" story. We all have one.

Here's a good one for you, old story, but one I find funny now.

When I setup my first windows 2000 server I named it stormy.com since I
figured I was in for a lot of trouble being it was my first. Everything
was running well, but I kept noticing a lot of DNS hits in my routers
logs. Well, days went by and it appeared that some external IP was
slamming me at about 600 hits per hour, all on DNS.... I called the
owner of the IP, without checking to see what name was attached to the
IP, and was talking to the technician about what his network was doing
to mine.... After a few minutes he mentioned that their domain name was
stormy.com and that his/my DNS servers were trying to replicate with
each other.... Talk about being embarrassed, I killed the server and
never did that again.

--
--
spam999free@rrohio.com
remove 999 in order to email me

"Richard Urban" <richardurbanREMOVETHIS@hotmail.com> writes:
>Unfortunately I experienced just this. I had built a new computer for a
>customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
>connection to the new computer. I started to get the latest Windows Updates.
>What a mess I ended up with!

>Just for fun, I ran Spybot on the computer. It found over 80 critical
>problems along with many not so critical.

>I unplugged the DSL and started over (-:

>Lessen learned - the hard way.

Can you explain just a bit more?
You installed the OS,
you went to www.microsoft.com,
you began to do Windows Updates downloads
that was it,
this picked up 80 viruses and scumware
and you didn't do a single thing more than that?

I'm a little surprised but confirming that you made
a single visit on the web and ONLY to www.microsoft.com
was enough to trash the machine will at least make me
understand and believe it.

thanks

In article <VLqdnUyLJp9yqlbfRVn-oQ@scnresearch.com>,
dont@agora.rdrop.com says...
> "Richard Urban" <richardurbanREMOVETHIS@hotmail.com> writes:
> >Unfortunately I experienced just this. I had built a new computer for a
> >customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
> >connection to the new computer. I started to get the latest Windows Updates.
> >What a mess I ended up with!
>
> >Just for fun, I ran Spybot on the computer. It found over 80 critical
> >problems along with many not so critical.
>
> >I unplugged the DSL and started over (-:
>
> >Lessen learned - the hard way.
>
> Can you explain just a bit more?
> You installed the OS,
> you went to www.microsoft.com,
> you began to do Windows Updates downloads
> that was it,
> this picked up 80 viruses and scumware
> and you didn't do a single thing more than that?
>
> I'm a little surprised but confirming that you made
> a single visit on the web and ONLY to www.microsoft.com
> was enough to trash the machine will at least make me
> understand and believe it.

His unpatched machine was connected directly to the Internet - that's
all it takes. Even if he had not done anything, just sat at the logon
prompt, it would have been compromised.

--
--
spam999free@rrohio.com
remove 999 in order to email me

Re-emphasis. I did nothing but go to Windows Updates to download the
necessary critical updates.

It was entirely my fault, as I had secure connections available. I just did
not, for reasons I still can not determine, use them. As I said, a *brain
fart*.

--
Regards,

Richard Urban

If you knew as much as you thought you know,
You would realize that you don't know what you thought you knew!


"Don Taylor" <dont@agora.rdrop.com> wrote in message
news:VLqdnUyLJp9yqlbfRVn-oQ@scnresearch.com...
> "Richard Urban" <richardurbanREMOVETHIS@hotmail.com> writes:
>>Unfortunately I experienced just this. I had built a new computer for a
>>customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
>>connection to the new computer. I started to get the latest Windows
>>Updates.
>>What a mess I ended up with!
>
>>Just for fun, I ran Spybot on the computer. It found over 80 critical
>>problems along with many not so critical.
>
>>I unplugged the DSL and started over (-:
>
>>Lessen learned - the hard way.
>
> Can you explain just a bit more?
> You installed the OS,
> you went to www.microsoft.com,
> you began to do Windows Updates downloads
> that was it,
> this picked up 80 viruses and scumware
> and you didn't do a single thing more than that?
>
> I'm a little surprised but confirming that you made
> a single visit on the web and ONLY to www.microsoft.com
> was enough to trash the machine will at least make me
> understand and believe it.
>
> thanks

Hi Don,

He exposed an unprotected, unfirewalled system to the internet. It had
nothing to do with what sites Richard was connecting to, it had everything
to do with what was trying to connect with the system. There exists much
active malware on the 'net, and it will attack any attached machine that is
unprotected. The 'net has grown much since it became mainstream, and not all
of it good.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP
http://mvp.support.microsoft.com/
Associate Expert - WindowsXP Expert Zone
www.microsoft.com/windowsxp/expertzone
Windows help - www.rickrogers.org

"Don Taylor" <dont@agora.rdrop.com> wrote in message
news:VLqdnUyLJp9yqlbfRVn-oQ@scnresearch.com...
> "Richard Urban" <richardurbanREMOVETHIS@hotmail.com> writes:
>>Unfortunately I experienced just this. I had built a new computer for a
>>customer and loaded the O/S. In my absent mindedness, I plugged in my DSL
>>connection to the new computer. I started to get the latest Windows
>>Updates.
>>What a mess I ended up with!
>
>>Just for fun, I ran Spybot on the computer. It found over 80 critical
>>problems along with many not so critical.
>
>>I unplugged the DSL and started over (-:
>
>>Lessen learned - the hard way.
>
> Can you explain just a bit more?
> You installed the OS,
> you went to www.microsoft.com,
> you began to do Windows Updates downloads
> that was it,
> this picked up 80 viruses and scumware
> and you didn't do a single thing more than that?
>
> I'm a little surprised but confirming that you made
> a single visit on the web and ONLY to www.microsoft.com
> was enough to trash the machine will at least make me
> understand and believe it.
>
> thanks

"Leythos" <void@nowhere.lan> wrote in message
news:MPG.1d34debe8eb36cc6989982@news-server.columbus.rr.com...
> Here's a good one for you, old story, but one I find funny now.
>
> When I setup my first windows 2000 server I named it stormy.com since I
> figured I was in for a lot of trouble being it was my first. Everything
> was running well, but I kept noticing a lot of DNS hits in my routers
> logs. Well, days went by and it appeared that some external IP was
> slamming me at about 600 hits per hour, all on DNS.... I called the
> owner of the IP, without checking to see what name was attached to the
> IP, and was talking to the technician about what his network was doing
> to mine.... After a few minutes he mentioned that their domain name was
> stormy.com and that his/my DNS servers were trying to replicate with
> each other.... Talk about being embarrassed, I killed the server and
> never did that again.

LOL!