Microsoft Security Update Minor Revisions Issued: February 16, 2018

Security Updates / Bulletins / Advisories No Comments »

Summary

The following CVEs have been revised in the February 2018 Security
Updates.

* CVE-2018-0842

Revision Information:

CVE-2018-0842

– Title: CVE-2018-0842 | Windows Kernel Elevation of Privilege
Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance
– Reasons for Revision: Corrected the CVE title and description
to address the vulnerability as elevation of privilege. In the
Affected Products table, corrected the Impact to Elevation of
Privilege. This is an informational change only.
– Originally posted: February 13, 2018
– Updated: February 13, 2018
– CVE Severity Rating: Important
– Version: 1.1

– Reasons for Revision: In the Affected Products table, added
the Supersedence entries for Monthly Rollup 4074594 for
affected versions of Windows 8.1 and Windows Server 2012 R2.
This is an informational change only.
– Originally posted: February 13, 2018
– Updated: February 14, 2018
– CVE Severity Rating: Important
– Version: 1.2

* CVE-2018-0825

– Title: CVE-2018-0825 | StructuredQuery Remote Code Execution
Vulnerability
– <a class=”moz-txt-link-freetext” href=”https://portal.msrc.microsoft.com/en-us/security-guidance”>https://portal.msrc.microsoft.com/en-us/security-guidance</a>
– Reasons for Revision: In the Affected Products table, added
the Supersedence entries for Monthly Rollup 4074594 for
affected versions of Windows 8.1 and Windows Server 2012 R2.
This is an informational change only.
– Originally posted: February 13, 2018
– Updated: February 14, 2018
– CVE Severity Rating: Critical
– Version: 1.1

* ADV180005 * CVE-2018-0832
* CVE-2018-0742 * CVE-2018-0833
* CVE-2018-0757 * CVE-2018-0844
* CVE-2018-0820 * CVE-2018-0846
* CVE-2018-0829 * CVE-2018-0847
* CVE-2018-0830

https://portal.msrc.microsoft.com/en-us/security-guidance
– Reasons for Revision: In the Affected Products table, added
the Supersedence entries for Monthly Rollup 4074594 for
affected versions of Windows 8.1 and Windows Server 2012 R2.
This is an informational change only.
– Originally posted: February 13, 2018
– Updated: February 14, 2018
– CVE Severity Rating: Important
– Version: 1.1

Microsoft Security Update Releases Issued: February 16, 2018

Security Updates / Bulletins / Advisories No Comments »

Summary

The following CVEs have undergone a major revision increment:

* CVE-2018-0810

Revision Information:

https://portal.msrc.microsoft.com/en-us/security-guidance/
advisory/CVE-2018-0810
– Version: 2.0
– Reason for Revision: Revised the Affected Products table to
include Windows Server 2008 R2 for x64-based Systems Service
Pack 1 and Windows Server 2008 R2 for Itanium-based Systems
Service Pack 1 because they are affected by CVE-2018-0810.
Microsoft recommends that customers running Windows Sever
2008 R2 should install Monthly Rollup 4074598 or Security
Update 4074587 to be protected from this vulnerability.
– Originally posted: February 13, 2018
– Updated: Febraury 14, 2018
– Aggregate CVE Severity Rating: Important

* CVE-2018-0831

Revision Information:

 https://portal.msrc.microsoft.com/en-us/security-guidance/
advisory/CVE-2018-0831
– Version: 3.0
– Reason for Revision: Revised the Affected Products table to
include Windows 10 Version 1709 for x64-based Systems because it
is affected by CVE-2018-0831. Microsoft recommends that customers
running Windows 10 Version 1709 should install update 4074588 to
be protected from this vulnerability.
– Originally posted: February 13, 2018
– Updated: Febraury 14, 2018
– Aggregate CVE Severity Rating: Important

Removal instructions for PerfectRegistry

Fake Registry Cleaner No Comments »

What is PerfectRegistry?

The Malwarebytes research team has determined that PerfectRegistry is a fake registry cleaner. These so-called “registry cleaners” use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.

https://forums.malwarebytes.com/topic/222371-removal-instructions-for-perfectregistry/

Microsoft Security Advisory Notification Issued: February 13, 2018

Security Updates / Bulletins / Advisories No Comments »

Security Advisories Released or Updated on February 13

* Microsoft Security Advisory ADV180002

– Title: Guidance to mitigate speculative execution side-channel
vulnerabilities
https://portal.msrc.microsoft.com/en-US/security-guidance/
advisory/ADV180002
– Reason for Revision: Microsoft has released security updates to
provide additional protections for the 32-bit (x86) versions of
Windows 10 as follows: 4074596 for Windows 10, 4074591 for Windows
10 Version 1511, 4074590 for Windows 10 Version 1607, and 4074592
for Windows 10 Version 1703. Microsoft recommends that customers
running 32-bit systems install the applicable update as soon as
possible. Microsoft continues to work to provide 32-bit (x86)
protections for other supported Windows versions but does not
have a release schedule at this time. These update will be
included in subsequent updates, and do not apply to x64
(64-bit) systems. Added a section under Advisory Details to
announce that Microsoft has released mitigations for Windows
Holographic to Microsoft HoloLens customers that are provided
automatically as part of the February 2018 Windows Security
Update to Windows 10 Version 1607 for HoloLens. HoloLens
customers do not need to take any additional action to update
their device firmware. Added FAQ#12 and FAQ#13 to provide
further information for installing the February 2018
security updates.

– Originally posted: January 3, 2018
– Updated: February 13, 2018
– Version: 12.0

Microsoft Security Bulletin(s) for February 2018

Security Updates / Bulletins / Advisories No Comments »

February 2018 Security Updates

Release Date: February 13, 2018

The February security release consists of security updates for the following software:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • ChakraCore
  • Adobe Flash

Please note the following information regarding the security updates:

    • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
    • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
    • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
    • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
    • After May 9, 2017, customers running Windows 10 version 1507 will no longer receive security and quality updates, with the exception of the Windows 10 2015 LTSB and the Windows 10 IoT Enterprise 2015 LTSB editions. Microsoft recommends that customers with devices running other editions of Windows 10 version 1507 that are no longer supported update these devices to the latest version of Windows 10. For more information see Microsoft Knowledge Base Article 4015562.

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/487e3b17-7cdf-e711-a959-000d3a33c573

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact: For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.

Removal instructions for Global System Mechanic

Fake System Optimizer No Comments »

 

What is Global System Mechanic?

The Malwarebytes research team has determined that Global System Mechanic is a “system optimizer”. These so-called “system optimizers” use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.

https://forums.malwarebytes.com/topic/222071-removal-instructions-for-global-system-mechanic/

Hello #WindowsInsiders: If you’re scanning for updates and not being offered anything, this is currently expected

News, Windows 10 Insiders No Comments »

SpywareBlaster Database Update – February 9, 2018

Uncategorized No Comments »

SpywareBlaster Database Update – February 9, 2018

13 Internet Explorer
0 Restricted Sites
0 Firefox

17805 items in database

http://www.brightfort.com/downloads.html

AdwCleaner 7.0.8.0 Released February 8, 2018

News, Updates No Comments »

v7.0.8.0 [08/02/2018]

Changes

  • Update MyWebSearch generics
  • Update Multiplug generics
  • Update WebCompanion generics
  • Update WinYahoo generics
  • Update DealPly generics
  • Update folders generics
  • Update Italian translation
  • Backport v7.1 internal naming
  • Database 2018.02.08.1

https://toolslib.net/downloads/viewdownload/1-adwcleaner/history/

Removal instructions for Taskhostw Miner

Miner No Comments »

What is Taskhostw Miner?

The Malwarebytes research team has determined that Taskhostw Miner is a Monero miner. These miners earn money for the threat actor by using your system resources.
This one uses so many resources you will notice a very slow system plus it opens an ad-rotator in your default browser.

https://forums.malwarebytes.com/topic/221879-removal-instructions-for-taskhostw-miner/


© 2018 DP's Bits & Bytes.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in