how-to block ads
|
|
Share Topic
 |
 |
|
|
|
 jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA
2 edits | reply to quazimoto
Is if FIXED yet?? I keep hearing different reports from different people, so I can't tell if this is fixed yet or not.
So, let's try a questionnaire! 
Is it fixed yet or still broken?
• It's fixed. •It's still broken.
What's your Operating System?
•Win XP Professional •Win XP Home •Win ME •Win 98 Second Edition •Win 98 First Edition •Win 95 (any edition)
Which version of NIS/NPF 2002 are you using?
•NPF 2002 •NIS 2002 •NIS 2002 Family Edition •NIS 2002 Professional (aka 4.5)
Ideally, what I'd like to see at this point is the full listing of the File Information section of Albert's NIS Settings utility for your configuration (excepting the *.rel files, of course, which are going to be different for everyone). (You can download this from »www.capimonitor.nl/Atguard%20&%2···ings.php . ) Some of you are, understandably, going to be reluctant to do that. So, could I maybe just get the information for the files in NIS Settings dated after 1 May 2004?
Addendum: Aha!!  Who's got these ? Is your data the same or different? (This is from NIS 2002 on a Win XP box and does not show in NIS Settings.
Sndmon.exe
location C:\Program Files\Symantec\LiveUpdate
size 81.1kb
created 17th may 04
modified 13 may 04
version 5.3.1.5
sndsrvc.exe
location C:\Program Files\Common Files\Symantec Shared
size 189kb
created 13th may 04
modified 13th may 04
version 5.3.1.54
Addendum 2 New files identified at ComputerCops Symantec General forum. These are for a NAV 2002 installation (exclusively, no NIS), fully updated as of today on Win ME (French version). No problems identified yet.
quote:
***Symantec Event Library***
Full Filename : SYMEVENT.SYS in C:\Program Files\Symantec
Version : 11.3.0.17
File DateCreated : Tuesday 18 May 2004, 13:49:38
FileDate LastModified : Saturday 16 August 2003, 00:22:12
File Size : size : 80,2 Ko (82 136 octets)
File Size : size(on disk) : 96,0 Ko (98 304 octets)
***Symantec Event Library***
Full Filename : SYMEVNT.386 in C:\Program Files\Symantec
Version : 11.3.0.22
File DateCreated : Tuesday 18 May 2004, 12:05:05
FileDate LastModified : Saturday 16 August 2003, 00:22:12
File Size : size : 121 Ko (124 167 octets)
File Size : size(on disk) : 128 Ko (131 072 octets)
***Symantec Event Library***
Full Filename : SYMEVNT.386 in C:\Program Files\Symantec
Version : 11.3.0.22
File DateCreated : Tuesday 18 May 2004, 12:05:05
FileDate LastModified : Saturday 16 August 2003, 00:22:12
File Size : size : 81,2 Ko (83 208 octets)
File Size : size(on disk) : 96,0 Ko (98 304 octets)
Important thing here is that none of the above files were updated as a consequence of reinstalling NAV 2002 (exclusively) and then running LiveUpdate to completion on a Win ME system. Anybody got different experience?
--
Regards,
Joseph V. Morris | |
| said by jvmorris:
Sndmon.exe
location C:\Program Files\Symantec\LiveUpdate
size 81.1kb
created 17th may 04
modified 13 may 04
version 5.3.1.5
My son's box running NAV 2002 has this: it was from the May 12 Symantec Redirector update. It also added this Reg entry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
"Symantec NetDriver Monitor" = "C:\Program Files\Symantec\LiveUpdate\SNDMON.EXE"
--
"But now abide faith, hope, love, these three; but the greatest of these is love." (1 Cor. 13:13) | |
| reply to jvmorris
said by jvmorris:
sndsrvc.exe
location C:\Program Files\Common Files\Symantec Shared
size 189kb
created 13th may 04
modified 13th may 04
version 5.3.1.54
Ditto that too, on son's NAV 2002, Win98SE -- except it shows version 5.3.1.53 rather than 5.3.1.54 -- and there is also this:
SNDInst.exe
location: C:\Program Files\Common Files\Symantec Shared
size: 30kb
version 5.3.1.53
All three files: SndMon.exe, SndSrvc.exe, and SndInst.exe -- are digitally signed by Symantec with a signature date of April 29, 2004.
--
"But now abide faith, hope, love, these three; but the greatest of these is love." (1 Cor. 13:13) | | |
|
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | Randy,
courtesy of Lurkers Anonymous
quote:
I have that Sndinst.exe file too.
Only my version is 5.3.1.54
it's 29.2kb and created and modified on 13th May 04.
But it's digital signature date is 14th May.
And while I'm on digital signatures, well my syndmon.exe is dated 11th May and my sndsrvc.exe is dated 14th May as well
I notice that Randy has version 5.3.1.53 for his sndsrvc.exe file, and mine is 5.3.1.54
It sounds like I might have slightly later versions than Randy, but this is on NIS with no NAV installed.
This is off a Win XP box with a new update of NIS 2002 (and apparently no NAV install, as I read it).
--
Regards, Joseph V. Morris | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | reply to jvmorris
Functional NIS 2002 on WinXP (no NAV install)Okay, here's a listing of an apparently successful reinstall of NIS 2002 on a Win XP box -- but without installing NAV (another AV is in use).
Please Note: This only includes the files that Albert's NIS Settings documents; as previously noted, there are executables in other directories that NIS Settings does not necessarily include.
I'm going to try to eliminate the *.rel files (event log files) and also highlight the newer executables -- but I may not catch all.
-------FILE INFORMATION----------------------------------------
ACDISP.DLL, Norton Internet Security 4.0.3.104, 206504 bytes
2002-02-18 13:03:52, SHA1: E52C0832070EE4B5486445277EEB8755EECDD3AD
ALESCAN.EXE, Norton Internet Security 4.0.3.104, 67240 bytes
2002-02-18 13:02:58, SHA1: 63A50AEE434E5D51DD44D42AAFFD48C7BA408E9F
ATRACK.EXE, Norton Internet Security 4.0.3.104, 263848 bytes
2002-02-18 13:03:02, SHA1: 9B197BFE7B5AF57AD7BCE48A4F4A44B22C8E5425
BRUNOALE.DLL, Norton Internet Security 4.0.0.82, 91264 bytes
2001-08-30 01:34:16, SHA1: EB45AA5C8F02770160022F0D4C1C7C11DF0B2D86
FWUI.DLL, Norton Internet Security 4.0.3.104, 251560 bytes
2002-02-18 13:04:04, SHA1: 2278F9AA4E6CE3B30DD0E070F8BD593244144064
HNETCORE.DLL, Norton Internet Security 4.0.3.104, 81920 bytes
2002-02-18 12:33:42, SHA1: 258506E206165C915A265B35897551B078CE3BC1
HNETWIZ.EXE, Norton Internet Security 4.0.3.104, 73728 bytes
2002-02-18 12:33:46, SHA1: CDB41D86325DBF4D4B61E44C1EFFC1629097A0FD
IAMADBLK.REL, . . . .
IAMALERT.REL, . . . .
IAMAPP.EXE, Norton Internet Security 4.0.3.104, 378536 bytes
2002-02-18 13:03:08, SHA1: E416A7A33E43A5C05672AD76BE38D5BB95ED2FBA
IAMEVENT.DLL, Norton Internet Security 4.0.3.105, 67240 bytes
2002-03-01 11:20:10, SHA1: 5011AB31F7B8F2CD93E2F49F204704D229626874
IAMFW.REL, . . . .
IAMLOG.DLL, Norton Internet Security 4.0.3.104, 169704 bytes
2002-02-18 13:04:14, SHA1: B74A726BB0D909FCC991B1104EA322215A42B32B
IAMPRIV.REL, . . . .
IAMPW.DLL, Norton Internet Security 4.0.3.104, 63144 bytes
2002-02-18 13:04:20, SHA1: C86ACA94790D486BBB8DDB45CA6E14FD28E70406
IAMRSTCT.REL, . . . .
IAMSTATS.EXE, Norton Internet Security 4.0.3.104, 210600 bytes
2002-02-18 13:03:14, SHA1: 5DD3ACF58BABECB8CD3688E100BF00A5BC792E36
IAMSYS.REL, . . . .
IAMTCP.REL, . . . .
IAMTDI.REL, . . . .
IAMWEBH.REL, . . . .
INTROWIZ.EXE, Norton Internet Security 4.0.3.104, 362152 bytes
2002-02-18 13:03:20, SHA1: 31E3E125D6E2E74102FE4304559C9AD06487BCFE
INTRWRAP.DLL, Norton Internet Security 4.0.3.104, 95912 bytes
2002-02-18 13:04:26, SHA1: 0921D736BA9A7925B17F01BB0DB044D25FF63BB9
LUSPT.EXE, Norton Internet Security 4.0.3.104, 40960 bytes
2002-02-18 12:22:14, SHA1: EC88E715631F61F46270D373302DAB57A2BE48CB
N32USERL.DLL, Norton Internet Security 4.0.0.82, 29824 bytes
2001-08-30 01:32:04, SHA1: A059CC9034D2D6DDB1968444E41B64CFEED1DF99
NAVAPI.VXD, 6846 bytes
2001-08-30 00:54:38, SHA1: 794E8BDA209A15F60F13F89FE9C5A5C2C1705E4B
NAVAPI16.DLL, NAVAPI 4.1.0.6, 284272 bytes
2001-08-30 00:54:38, SHA1: 7332779D2CD0DB13D9D9F5E6CAFFCC3E3EF05B3D
NAVAPI32.DLL, NAVAPI 4.1.0.6, 208896 bytes
2001-08-30 00:54:40, SHA1: 6C196DB2526F62D2F14034A22394F5174C10F31E
NISABOUT.DLL, Norton Internet Security 4.0.3.104, 91816 bytes
2002-02-18 13:04:30, SHA1: B8295DE4EE701949BA1B9F29E1D59ABA89237B3C
NISALERT.DLL, Norton Internet Security 4.0.3.104, 386792 bytes
2002-02-18 13:04:36, SHA1: 19D866FB164A6E1959D75A5517602FA7F77DA1C4
NISCMNHT.DLL, Norton Internet Security 4.0.3.104, 239272 bytes
2002-02-18 13:04:42, SHA1: D690DFB4627A16C92100CDE199421E507B3B7128
NISFETA.DLL, Norton Internet Security 4.0.3.104, 30376 bytes
2002-02-18 13:04:48, SHA1: 358B8CA657F9CE02F4D659BE2BEA24C2E86E7B84
NISFETP.DLL, Norton Internet Security 4.0.3.104, 30376 bytes
2002-02-18 13:04:56, SHA1: E1F7A95F75C22DC19D53A531732B336D376FA2E2
NISFIRST.EXE, Norton Internet Security 4.0.3.104, 104104 bytes
2002-02-18 13:03:24, SHA1: 8FCBE42E3588C0D1B993FD40648D4EA022E957A7
NISFIRSTDLL.DLL, Norton Internet Security 4.0.3.104, 100008 bytes
2002-02-18 13:05:02, SHA1: 538EF7502E7D030EDAC507A02A0CA66D38FBD34F
NISLUCBK.DLL, Norton Internet Security 4.0.3.104, 91816 bytes
2002-02-18 13:05:06, SHA1: 63C6C416E5A7855C09AE5822DE318446007FD6FC
NISPLUG.DLL, Norton Internet Security 4.0.3.104, 1148648 bytes
2002-02-18 13:05:18, SHA1: CCDD388E9F2BA0848F9DCE91785F0782C823D048
NISSERV.EXE, Norton Internet Security 4.0.3.104, 63144 bytes
2002-02-18 13:03:30, SHA1: D530F5B533EE819A5EE82CF1046CB304DC9D44C4
NISUM.EXE, Norton Internet Security 4.0.3.104, 87720 bytes
2002-02-18 13:03:36, SHA1: E83B23A6DC5C183AD59BBED6F14A803C83745017
NISUMPS.DLL, 30376 bytes
2002-02-18 13:05:22, SHA1: 88F6F3247E72F3BD7897395DFE5A86DBE1C5F373
PCWIZ.DLL, Norton Internet Security 4.0.3.104, 108200 bytes
2002-02-18 13:05:28, SHA1: C8F0E726986AF31452968A00373A4154E86F6C04
PCWIZ.EXE, Norton Internet Security 4.0.3.104, 49152 bytes
2002-02-18 12:33:50, SHA1: 56708EA7431150513D7F826F9AFFB9AC046FBA6A
PPROFILE.DLL, Norton Internet Security 4.0.0.82, 54400 bytes
2001-08-30 01:42:02, SHA1: D02DC2B186C8DC9783870CA4AB2175155D9A73B5
PROXYHTTP.DLL, Norton Internet Security 4.0.3.104, 145064 bytes
2002-02-18 13:05:40, SHA1: 5FCB479EACD4116ED49A0C7AEFF6B6A82704E5A4
PROXYIM.DLL, Norton Internet Security 4.0.3.104, 59048 bytes
2002-02-18 13:05:44, SHA1: 061A7CDAA6FB91D1D99D2084A65B59728D2A863A
REGFILTER.EXE, 22184 bytes
2002-02-18 13:03:40, SHA1: 314455942C263082FACD3ED9F5906C6F5D3A082F
REGORXML.DLL, Norton Internet Security 4.0.3.104, 108200 bytes
2002-02-18 13:05:50, SHA1: A0B1B3CD8B9C176EDDFFA619A50028B6B1B26BE5
RLEVEL.DLL, Norton Internet Security 4.0.3.104, 140968 bytes
2002-02-18 13:05:56, SHA1: 2A87841907F407F27AC7E733F6D25AA715EF0BF7
STREAMFILTER.DLL, Norton Internet Security 4.0.3.104, 128680 bytes
2002-02-18 13:06:02, SHA1: E9499BC52ED6C1DD8010AABE75CED5DDD1367B7C
SYMDATASVC.DLL, Norton Internet Security 4.0.3.104, 63144 bytes
2002-02-18 13:06:06, SHA1: B6FA7C39FA4E72046B7D59330E60D1EC9307B860
SYMICONV.DLL, Norton Internet Security 4.0.3.104, 607912 bytes
2002-02-18 13:07:02, SHA1: 6F4B846006FDB06A6031CCFDCCB445AC4E12D7BA
SYMPROXY.DLL, Norton Internet Security 4.0.3.104, 104104 bytes
2002-02-18 13:06:12, SHA1: 5003CAB20F5707BFD929C688A80F430B3C140F22
SYMPROXYALERT.DLL, Norton Internet Security 4.0.3.104, 71336 bytes
2002-02-18 13:06:18, SHA1: 0BA248AE572E232BD8659AAEF510250D40C31246
SYMPROXYSVC.EXE, Norton Internet Security 4.0.3.104, 54952 bytes
2002-02-18 13:02:46, SHA1: 54964A03DC8A420501B764CAF0F211BC3EC025AE
SYMURL.DLL, Norton Internet Security 4.0.3.105, 124584 bytes
2002-03-01 11:20:10, SHA1: 86FD41963EB464B5CAA0C3488F645775BE301C1C
SYMWBWND.DLL, Norton Internet Security 4.0.3.104, 145064 bytes
2002-02-18 13:06:28, SHA1: FF981BFF79D53C64965251C7CEBE6FB867ECE039
TDIT_MSG.DLL, Norton Internet Security 4.0.3.104, 59048 bytes
2002-02-18 13:06:34, SHA1: 3E0DAF982D5D9F3283AEE430E314C08E0951A340
TLEVEL.DLL, Norton Internet Security 4.0.3.104, 75432 bytes
2002-02-18 13:06:40, SHA1: 352400EF632E7F58101C8C27FAD89431CE0B143C
UMCBK.DLL, Norton Internet Security 4.0.3.104, 42664 bytes
2002-02-18 13:06:46, SHA1: 4C3DF2F4091CD3C119575A558006A9F836C5D5BF
URLUPDAT.EXE, Norton Internet Security 4.0.0.82, 78976 bytes
2001-08-30 01:33:24, SHA1: 5F4E1A66492CE96789C84187F5E15AAE80281B21
WRAPUM.DLL, Norton Internet Security 4.0.6.111, 144528 bytes
2004-03-30 10:32:32, SHA1: 604991BE7C847E10BCB9CEF2FE0FE32362C1A3D5
--
Regards, Joseph V. Morris | |
1 edit | reply to jvmorris
Re: Is if FIXED yet?? said by jvmorris:
quote:
I have that Sndinst.exe file too.
Only my version is 5.3.1.54
it's 29.2kb and created and modified on 13th May 04.
But it's digital signature date is 14th May.
And while I'm on digital signatures, well my syndmon.exe is dated 11th May and my sndsrvc.exe is dated 14th May as well
I notice that Randy has version 5.3.1.53 for his sndsrvc.exe file, and mine is 5.3.1.54
It sounds like I might have slightly later versions than Randy, but this is on NIS with no NAV installed.
This is off a Win XP box with a new update of NIS 2002 (and apparently no NAV install, as I read it).
This is exactly the same information that I show on my pc for these files.
NPF is still freaking out, and is currently disabled
[edit] I have Symantec AntiVirus Corp Ed client on my pc, I do not know if the fileset is the same as NAV.
hope this info helps
thanks | |
| reply to jvmorris
My answers to the questionnaire:
Is it fixed yet or still broken?
It's still broken.
What's your Operating System?
Win ME
Which version of NIS/NPF 2002 are you using?
NIS 2002
Ideally, what I'd like to see at this point is the full listing of the File Information section of Albert's NIS Settings utility for your configuration (excepting the *.rel files, of course, which are going to be different for everyone). (You can download this from »www.capimonitor.nl/Atguard%20&%20NIS/_.. . ) Some of you are, understandably, going to be reluctant to do that. So, could I maybe just get the information for the files in NIS Settings dated after 1 May 2004?
Hi, sorry, I'm leery of downloading anything beta given my computer has been so fussy of late (and it's my livelihood -- I work from home). BUT I looked in my Program Files and don't find any .exe files for May...but I reinstalled since the problems started and last LiveUpdate I did not install Symantec Redirector OR SymEvent -- as I'm sure these items were crashing me (as I'd get a SymEvent error before the BSOD; and now that I don't have those components I seem to be running OK).
Also I do not have any of the files you listed under Addendum -- not sure exactly what I downloaded when I tried using LiveUpdate today (5/20/04) but the same old crashing/freezing/inability to surf problems happened when I did. And now that I've reinstalled and unchecked SymEvent and Symantec Redirector in LiveUpdate I'm running. Go figure.
Hope that helps, Heidi | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | said by heidilaf:
. . .Hi, sorry, I'm leery of downloading anything beta given my computer has been so fussy of late (and it's my livelihood -- I work from home). BUT I looked in my Program Files and don't find any .exe files for May...but I reinstalled since the problems started and last LiveUpdate I did not install Symantec Redirector OR SymEvent -- as I'm sure these items were crashing me (as I'd get a SymEvent error before the BSOD; and now that I don't have those components I seem to be running OK).
Sure, I can understand that (personally). Still, there's the listing above theskulptor's last post of an install (albeit on WinXP) that seems to now be working. If you notice any differences (with the possible exception of a *.vxd rather than a *.sys), could you at least note that?
quote:
Also I do not have any of the files you listed under Addendum -- not sure exactly what I downloaded when I tried using LiveUpdate today (5/20/04) but the same old crashing/freezing/inability to surf problems happened when I did. And now that I've reinstalled and unchecked SymEvent and Symantec Redirector in LiveUpdate I'm running. Go figure.
The Addenda files are not displayed by Albert's NIS Settings. You have to run a File Find ... search on SYM*.* to find where they may be located on your machine (and they're likely not in the same place as they would be on a Win XP box). I don't think you're going to find anything post 1 May, but I'd like to know if you do, especially anything dated 12 May or later.
Every little bit helps at this point.
--
Regards, Joseph V. Morris | |
| Hi, I searched on Sym*.* and there's nothing recent... BTW my mom has NAV 2002 on her Windows XP and I know she has all the new updates as I run her LiveUpdate for her and she's fine...so maybe it's a problem with the recent updates and Win ME and NIS 2002... Thanks again for troubleshooting! | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | Heidi,
Nope, it's been reported on Win 98 and Win XP machines, also. Consequently, it seems to only impact NIS/NPF 2002. However, when I say that, it's the firewall component that seems to be impacted. People running only NAV 2002 seem to be unaffected.
--
Regards, Joseph V. Morris | |
| Ive tried new LiveUpdates and the definitions were updated but the firewall itself refuses to work. Still in a holding pattern using ZA for now.
Heidi, this is on my pc running WinXP SP1, so i dont think its just WinME
cheers | |
| reply to jvmorris
said by heidilaf:
Hi, I searched on Sym*.* and there's nothing recent... BTW my mom has NAV 2002 on her Windows XP and I know she has all the new updates as I run her LiveUpdate for her and she's fine...so maybe it's a problem with the recent updates and Win ME and NIS 2002... Thanks again for troubleshooting!
I can confirm on my son's Win98SE running NAV 2002, all updated via LU and no problems whatsoever; as jv said:
said by jvmorris:
Heidi, Nope, it's been reported on Win 98 and Win XP machines, also. Consequently, it seems to only impact NIS/NPF 2002. However, when I say that, it's the firewall component that seems to be impacted. People running only NAV 2002 seem to be unaffected.
This seems quite the case: only NPF 2002 {the firewall} is impacted; presumably due to some mysterious mismatch in file versions that were probably intended for NPF 2003 or 2004, but are wrong for NPF 2002.
--
"But now abide faith, hope, love, these three; but the greatest of these is love." (1 Cor. 13:13) | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA
1 edit | reply to jvmorris
There are times in life when . . . One is reminded of the value of participating in (or at least monitoring) a variety of Security Forums. Today was one of those days for me.
Oddly enough, there are bits and pieces of the answer here and also at Wilders (I still need to get back to Computer Cops and check there), but what it took was a question from a guy I've never dealt with before at the NNTP GRC newsgroup grc.security. He said:
quote:
Do you have a URL for your assertion that NIS/NPF 2002 crashes by being patched for the vulnerabilities discovered by eEye?
I'd like to forward it to a colleague who doesn't seem to have had any problems with the patches on his NPF 2002.
Digressing for a moment, this guy is from Quebec (deepest, darkest, as he chooses to describe it). Indeed, anyone who carefully checks through all these threads will be struck rather quickly by the international nature of the responses. And I think that's truly one of the strengths of all of these forums and newsgroups. I've read responses from Argentina, the UK, France, Netherlands, Belgium (I think), at least one Scandinavian country, in addition to those from the US and Canada. People from different societies tend to approach problems a bit differently and indeed it appears that this is where the solution may be found in this instance.
At any rate, in response to Le Flake's query, I dutifully started toddling around here, Wilders, and Computer Cops in an attempt to provide the requested URLs and synopsize them.
And I think I may have found a solution (of sorts) at Wilders: From the synopsis that I just posted in the grc.security newsgroup:
quote:
. . . .
»www.wilderssecurity.com/showthre···?t=31945 -- 12 May 2004. Oremina (UK) is, I believe, the first person to identify the problem, so this thread is of more than passing interest. Running NIS 2002 and downloaded one Security and one Symantec Redirector Update totalling 1642.7 kB. System crashes. Did a Drive Image restore, repeated process with same result. Redirector update fingered as culprit (adding SNDMON.exe, apparently) Little Mike is having no problems with NIS 2004, but on 17 May 2004, A MAN (guest account) confirms experience and again points to SNDMON.
On 18 May (in the above thread) Oremina indicates SNDMON.EXE is no longer showing in the LiveUpdate listing (she presumes it's been withdrawn) -- this may indicate why some individuals are escaping this problem. CHECK FOR THIS FILE, AND NOTE ITS VERSION AND BUILD NUMBER IF FOUND.
If this IS the problem, it remains unclear as to whether NIS/NPF 2002 users are actually protected from the eEYE vulnerabilities and any exploits thereof or whether this is simply a means of ensuring that their software firewalls are again functional.
Regarding that last paragraph, a little bird told me that Symantec had found a 'temporary' fix, but was not more specific; this may be it.
Now note that Randy Bell (and he's from California of all places!  ) also mentioned this file earlier under this sub-thread and that I then posted an anonymous reply from a Lurkers Anonymous (in the UK, incidentally, I think) pointing out a subtle variation in what they had found. So, yes, even the lurkers serve us well. )
Addendum Always leave something out!  If you go back to Randy's initial response to »Is if FIXED yet?? , you will also note that he mentions a registry entry -- don't forget about that if you get into a "do it yourself" mode.
You know what I like about these places? I get taught something every day!
--
Regards,
Joseph V. Morris | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA
1 edit | It appears that Symantec may now have fixed this problem. See »Latest Norton Update: Symantec director , which apparently came out late on Friday evening.
Have any of the NIS/NPF 2002 users that experienced the problem after the 12 May LiveUpdate applied this patch; does it solve the problem?
Next question: Does this fix, primarily for NIS/NPF 2002 users, still provide a solution to the eEYE vulnerabilities that started all this? (Anyone checked using eEYE's Retina scanner?)
And finally, by way of feedback, just what files are changed by this update?
--
Regards,
Joseph V. Morris | |
| This update didnt come up for me running NPF 2002 LiveUpdate. I ran LU a couple times to check, it keeps telling me ive got the most recent files. It still has all of the problems as before. | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | Sorry, I went out looking for my old LP with "Magical Mystery Tour" on it, . . . but then I realized I don't have a record player, anymore!
Hmmm, perhaps you could now use a tagline, "I want the LiveUpdate that is not there"? Well, it was just a thought.
--
Regards, Joseph V. Morris | |
| well low and behold, i leave town for a few days and magically Symantec has a live update for the symantec redirector waiting for me to try out.
It appears to have fixed the problems, it stayed up and running for 2 hours with no BSOD's or odd messages. I havent had a chance to see if it has any new problems, I'll review the alert logs to see if it is actually working.
Anyone else having any luck with this LiveUpdate? Any ill effects ?
hopefully it will stay working for the time being
thanks all | |
jvmorrisI Am The Man Who Was Not There.Premium,MVM
join:2001-04-03
Reston, VA | said by theskulptor:
well low and behold, i leave town for a few days and magically Symantec has a live update for the symantec redirector waiting for me to try out.
Ehhh?? When did that show up? Over at »sudden slow browsing - CPU flat out , sonofjay on 25 May at 10:51 posted that there were no new LiveUpdates available. At that time, the newest things he had were sndmon.exe and symfw.sys last modified on 23 May (ignoring some NAV updates on that date). You've got something newer?
quote:
It appears to have fixed the problems, it stayed up and running for 2 hours with no BSOD's or odd messages. I havent had a chance to see if it has any new problems, I'll review the alert logs to see if it is actually working.
Could you search for Files Modified between 23 May and now and see if you might find anything that might have come down in this LiveUpdate you just got? (Not just SYM*.* files, might be something named very differently.)
--
Regards, Joseph V. Morris | |
1 edit | I ran LU at 10pm or so CST yesterday the 25th, when i get home from work I can get the specific information, the exact time etc...
the category that was listed with an update was the Symantec Redirector. I'll post all of the info tonite. The update did require a reboot of the machine. I was a bit too tipsy to pay much closer attention last nite.
[edit] FYI I was running ZAP in conjunction with NPF during this time. I did a bit of browsing through the web pages I used to test it out previously, google, nytimes etc... before the update NPF would freak out by the 3rd page load through IE6 this time it only created the popup warnings about ActiveX in some of the pages like it used to do before May ~12 update.
I dont know if having ZAP operating at the same time made any difference but im kinda wary to let NPF play alone atm. | |
| I am still facing the same problem... the auto gened reports to microsoft after the ASR or blue screen is referencing files related to nis as well... I HAVE updated to latest redirector.. loaded one just tonight.. still no go.. | |
|
