HOW-TO: Microsoft DirectShow Vulnerability Exploit

Microsoft says hackers are targeting a security flaw in the DirectX feature of Windows. According to Microsoft, attackers are using malicious QuickTime videos to exploit the bug. From the security advisory:
Microsoft is investigating new public reports of a new vulnerability in Microsoft DirectX. The vulnerability could allow remote code execution if user opened a specially crafted QuickTime media file. Microsoft is aware of limited, active attacks that use this exploit code. While our investigation is ongoing, our investigation so far has shown that Windows 2000 Service Pack 4, Windows XP, and Windows Server 2003 are vulnerable; all versions of Windows Vista and Windows Server 2008 are not vulnerable. Microsoft has activated its Software Security Incident Response Process (SSIRP) and is continuing to investigate this issue.

According to security bulletin KB971778, one of the workarounds is to delete the registry subkey: HKEY_CLASSES_ROOT\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A}.

The quickest copy-n-paste procedure is to open a command terminal (Start --> Run.. --> "cmd"). Copy and paste the commands below..

First backup the registry subkey before deleting it (execute this in the command terminal)..
reg export HKEY_CLASSES_ROOT\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A} QuickTime.reg

It follows that the newly created file QuickTime.reg is the backup. Then upon successful backup, delete the subkey (execute this in the command terminal as well)..
reg delete HKEY_CLASSES_ROOT\CLSID\{D51BD5A0-7548-11CF-A520-0080C77EF58A}

Confirm deletion when prompted.

Although this procedure will not correct the underlying vulnerability, it is a workaround to mitigate the threat and block the potential attack.

Having a backup of the registry subkey will make it easier to revert the change when a permanent patch is available.


Everybody, Somebody, Anybody, and Nobody

This is a little story about four people named Everybody, Somebody, Anybody, and Nobody.

There was an important job to be done and Everybody was sure that Somebody would do it.

Anybody could have done it, but Nobody did it.

Somebody got angry about that because it was Everybody's job.

Everybody thought that Anybody could do it, but Nobody realized that Everybody wouldn't do it.

It ended up that Everybody blamed Somebody when Nobody did what Anybody could have done.

(The above is a short story I accidentally found in an archive of files from long ago. Credits to the original author.)


HOW-TO: Post YM Status Icon in Forums

I used to trade (mostly sell) stuff online and in forums. And for practicality sake, it is important for me to be reachable most of the time. Giving up your email address online has its pros and cons but face it, you would think twice about giving away your mobile number.

So is there another alternative to getting reached and notifying the buyer you are reachable? YM has been one of the popular chat systems since its inception and it is widely used. And I have been intrigued by forum posts with icons showing the user is online. And I assume you would like to put your own online or offline status just as I am.

This is really simple to do. To get straight to the point, below is the code. On some forums the syntax may be different but the URL is pretty much the same.


Replace the string "YOUR_YM_ID_HERE" with your Yahoo ID and it will show your YM status as an icon or image on your post.

The images should look like the ones below. First offline:

... then online.

There you go, YM status as icon on your post.


HOW-TO: dwwin.exe - DLL Initialization Failed

Have you ever noticed this error message pop-up each time you shutdown or reboot your computer? Although shutdown proceeds and the message seems harmless (and in fact it does not give a clue of anything wrong), it is still a nuisance to get such especially on shutdown sequence.

This article will discuss the weird solution to such error message.. I say "weird" because the error message does not give a clue and the solution to it seems unrelated at all. You will get to know it soon. Read on..

I could not capture a screenshot of the pop-up message but since you are here, you might have searched for this cos you might have encountered it and got curious. Don't worry, when I first encountered it we probably shared the same puzzled expression and curiousity.

However, I can share the event message with you. If you take a look at the application event logs of your machine you should be able to see something similar (see screenshot below) -- Event ID: 26. Completely clueless, I went to search in the internet for a possible solution.. And unfortunately, did not find any.

However, a friend has already encountered the same and with his permission I am posting the solution here.

Believe it or not, the error has something to do with Adobe Acrobat Reader. So launch the reader and go to:
--> "Preferences"
----> "Internet"
(untick "Display PDF in browser")

Execution will cause Acrobat Reader to repair itself and the pop-up message will no longer haunt you when executing a reboot or shutdown.


Subscribe for Latest Update

Popular Posts

Post Labels

100gb (1) acceleration (1) acrobat (1) adblock (1) advanced (1) ahci (1) airdrop (2) aix (14) angry birds (1) article (21) aster (1) audiodg.exe (1) automatic (2) autorun.inf (1) bartpe (1) battery (2) bigboss (1) binance (1) biometrics (1) bitcoin (3) blackberry (1) book (1) boot-repair (2) calendar (1) ccleaner (3) chrome (5) cloud (1) cluster (1) compatibility (3) CPAN (1) crypto (3) cydia (1) data (3) ddos (1) disable (1) discount (1) DLNA (1) dmidecode (1) dns (7) dracut (1) driver (1) error (10) esxi5 (2) excel (1) facebook (1) faq (36) faucet (1) firefox (17) firewall (2) flash (5) free (3) fun (1) gadgets (4) games (1) garmin (5) gmail (3) google (4) google+ (2) gps (5) grub (2) guide (1) hardware (6) how (1) how-to (45) huawei (1) icloud (1) info (4) iphone (7) IPMP (2) IPV6 (1) iscsi (1) jailbreak (1) java (3) kodi (1) linux (28) locate (1) lshw (1) luci (1) mafia wars (1) malware (1) mapsource (1) memory (2) mikrotik (5) missing (1) mods (10) mouse (1) multipath (1) multitasking (1) NAT (1) netapp (1) nouveau (1) nvidia (1) osmc (1) outlook (2) p2v (2) patch (1) performance (19) perl (1) philippines (1) php (1) pimp-my-rig (9) pldthomedsl (1) plugin (1) popcorn hour (10) power shell (1) process (1) proxy (2) pyspark (1) python (13) qos (1) raspberry pi (7) readyboost (2) reboot (2) recall (1) recovery mode (1) registry (2) rename (1) repository (1) rescue mode (1) review (15) right-click (1) RSS (2) s3cmd (1) salary (1) sanity check (1) security (15) sendmail (1) sickgear (3) software (10) solaris (17) squid (3) SSD (3) SSH (9) swap (1) tip (4) tips (42) top list (3) torrent (5) transmission (1) treewalk (2) tunnel (1) tweak (4) tweaks (41) ubuntu (4) udemy (6) unknown device (1) updates (12) upgrade (1) usb (12) utf8 (1) utility (2) V2V (1) virtual machine (4) VirtualBox (1) vmware (14) vsphere (1) wannacry (1) wifi (4) windows (54) winpe (2) xymon (1) yum (1) zombie (1)