Re: Suspicous Updates
From: George Hester (hesterloli_at_hotmail.com)
Date: 02/05/04
- Next message: George Hester: "Re: kb832894"
- Previous message: George Hester: "Re: Active Scripting"
- In reply to: Jim Slager: "Re: Suspicous Updates"
- Next in thread: Robert Moir: "Re: Suspicous Updates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 5 Feb 2004 04:05:51 -0500
Norton has been finding issues in Microsoft updates from Day One. Most all are issues that lead people to think their AV is working very well. It was money well spent. In fact the issue is really a piece of trash called Norton.
Windows Update site uses akamai now for the update control. That's the way it is and wherever their servers are is anyone's guess. I'm sure you were fine but I told you to go to Microsoft's site and verify the update if you were worried.
-- George Hester __________________________________ "Jim Slager" <jslager@iname.com> wrote in message news:utTl4No6DHA.2908@tk2msftngp13.phx.gbl... > George, > > I'm not sure what you mean by your reply. Perhaps you mean that I should > not click "Go ahead and do the update" but instead I should go to > Microsoft's site and download it by myself. Is that a blanket good security > method? But perhaps you mean something else. Of course, the popup said > that it was Microsoft updates but I don't know if I should trust that, > especially since I got the Norton alert. But I'm still wondering if I've > been had by some worm or not. Is there any good reason that Updates would > come through LA to the SF Bay Area? > > Thanks for answering my post but if you could shed a little more light on > this I'd appreciate it. > > "George Hester" <hesterloli@hotmail.com> wrote in message > news:evoK4Do6DHA.2460@TK2MSFTNGP09.phx.gbl... > I think your Norton hopes you think you spent your money well. If you had > looked at the Details... in the popup that told you about a security update > you could have used that information to find it at Microsoft. Then you > could have decided if the issue was Norton (likely) or something else. > > -- > George Hester > __________________________________ > "Jim Slager" <jslager@iname.com> wrote in message > news:OmCK3kn6DHA.1072@TK2MSFTNGP11.phx.gbl... > > Today after I logged on I received a balloon popup message from my > Automatic > > Updates (which I have set to "Download the updates automatically and > notify > > me when they are ready to be installed") that updates were ready. So I > > clicked Yes and soon got a Security Alert from Norton Internet Security of > a > > High Risk Threat Level of an Extreme Trojan Horse being blocked. It was > an > > inbound TCP with remote address download.windowsupdate.com. I pinged this > > and got an IP of 208.172.158.208. I did tracert and saw that the last two > > hops were through Los Angeles. I'm in Northern California and Microsoft > is > > up north. > > > > So???? What do you think? > > > > > >
- Next message: George Hester: "Re: kb832894"
- Previous message: George Hester: "Re: Active Scripting"
- In reply to: Jim Slager: "Re: Suspicous Updates"
- Next in thread: Robert Moir: "Re: Suspicous Updates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Loading
