SP2 - can this crap be un-installed?

[ruinedcomputerfromsp2]

My question would be, CAN IT BE UNINSTALLED. The new
update is a piece of crap. It ruins movie viewing, file
sharing (Name a business with less than 10 tcp
connections?)

I'd forgo the future updates if I could reverse this out
without having to format 300 computers for work. (thank
you Microsoft).

Bosses are about to have my head, I love working weekends
to back everything out. I keep "hearing about security",
but I'm on the internet 24/7 at home, and I have never,
ever, had an instance where something like this would be
of help. The "one" virus I caught was from good old
microsoft's website (since I installed os, and only
connected to them straight connection to register,
disconnected, installed virus software, boom. got
virus....)

 

[Jupiter Jones [MVP]]

300 computers?
How did you miss this in the earlier testing you surely did?
Go to Add/Remove Programs in the Control Panel.
Double click Service Pack 2 and follow the prompts to uninstall.

 

[NoNoBadDog!]

You didn't back up or set a restore point prior to installation...and you
blame MS for your laziness???

Bobby

 

[Mary Richardson]

I surely can agree with you on this one. Did the update
last night and could not get windows to open up after
that. Finally had to reinstall windows this morning, and
lost alot of important info that I cannot get back now.
Cannot use restore as it only give current date. I am
sorry for you misfortune I only have my computer to worry
about. Good luck

 

[Cari \(MS MVP\)]

Mary, at what point does it stop??

Do you ran a Prescott CPU on an i865/i875 chipset motherboard?

 

[cquirke (MVP Win9x)]

On Sat, 21 Aug 2004 06:45:05 -0700, "Mary Richardson"

I surely can agree with you on this one. Did the update
last night and could not get windows to open up after
that. Finally had to reinstall windows this morning, and
lost alot of important info that I cannot get back now.

What motherboard chipset? Precott processor?

I know it's too late now, but there is a way to undo out of trouble:
- get into CMOS setup
- find setting to disable L1 and L2 cache, do that
- now boot XP (it will work)
- Add/Remove Programs, uninstall SP2
- wait for some hours for this (looks "hung" but isn't)
- back into CMOS, re-enable L1 and L2 cache
- should be OK now

Yes; see above.

Details?

Most that I know. AFAIK there are settings you can apply to raise the
number of TCP/IP connections before SP2 concludes a DoS attack of some
kind is being mounted against the system.

Start, Settings, Control Panel, Add/Remove Programs, Uninstall

It's a pity you didn't get clue as well ;-)

If you connect an unpatched Win2000 or XP PC to the Internet without a
firewall enabled, you WILL be immediately attacked even if you don't
go to any sites at all. That you attribute your infection to being
"from microsoft's website" suggests an unawareness of the above.

For a sysadmin, that's really scary.

------------ ----- ---- --- -- - - - -

Our senses are our UI to reality

 

[Roger Abell [MVP]]

Pro versions of Windows have always had a 10 connection
limit. If you rely on more then you are violating your license
agreement.
Your post is full of rant but short on actual information that
could be used to assist you beyond as Jupiter has already,
but answering your specific request - how to uninstall.
(you really do not know how to uninstall but run 300 machines?)
I am left believing your are taking the sure fix, uninstall, instead
of the one requiring a little head-work, a couple tweaks, in order
to resolve your (unstated) issue.
Also - your one "virus" was likely not from MS but the network
due to being connected without your firewall enabled.

 

[cquirke (MVP Win9x)]

Pro versions of Windows have always had a 10 connection
limit. If you rely on more then you are violating your license
agreement.

I blinked on that too, but I think she's talking about something else.

Win95xx, 98xx, 2000 and XP Pro have limit of 10, while WinME and XP
Home are crippled to 5, incoming network connections from that many
PCs. In practice, bugs may drop these limits to 9 and 4. I'm not
aware of any workaround for this.

OTOH (and AFAIK), SP2 has an awareness of the number of incoming
TCP/IP connects (irrespective of what source they are from), in that
when this is exceeded, a DoS or other attack is assumed. AFAIK, there
is a way of changing this limit via Regedit or so.

The logic is that multiple connect attempts are likely to be flooding
from malware - either a number of the same malware trying to get in,
or one copy trying to consume resources, or one copy trying numerous
break-in attempts at the same time.

I dunno much more about it than that - i.e. whether it's a number of
connects from a single process or source or whatever.

-------------------- ----- ---- --- -- - - - -

Tip Of The Day:
To disable the 'Tip of the Day' feature...

 

[NoNoBadDog!]

I surely can agree with you on this one. Did the update
last night and could not get windows to open up after
that. Finally had to reinstall windows this morning, and
lost alot of important info that I cannot get back now.

You want us to feel sorry for you because you did not back up your
"important data" before making a major change to your OS? (sound of
smirking in background).

Cannot use restore as it only give current date. I am
sorry for you misfortune I only have my computer to worry
about. Good luck

I have no idea here, as I have not experienced any of your stated problems
on the four computers I have at home. I do connect to a corporate domain
and also use VPN, and have no issues whatsoever. I also have a
Tuner/Capture card on one of my machines and it records and plays back
videos just fine.


You deployed the update without testing it in your mixed environment, and
you do not have current backups for your 300 computers at work? If you
worked for me, you would already have yor pink slip.


I would think they should.....


I love working

weekends

You are certainly naive...You connected to a ms website without a firewall
or AV, and you got infected. If you think it "had" to be from MS, you are
even more stupid than this post makes yousound. Blaster, Sasser, and all
the other crpa out ther will get you if you connect with no firewall and AV,
no matter what website you connect to.

You should not be allowed anywhere near a production computer. If you
worked for me, you would be sweeping floors. You certainly know nothing
about computer security, backup regimens, and proper maintenance and
deployment of a working network. By posting you drivel here, you have
managed to show just how ignorant you are. Each problem is because of YOUR
actions, YOUR stupidity, and YOUR lack of knowledge. You deserve the woes
you have.

Bobby

 

[Roger Abell [MVP]]

Yea, after I hit enter it occurred to me that they were blowing
hot air over the DoS detection feature. Again, instead of doing
the research to find the settings, go rant.

 

[cquirke (MVP Win9x)]

"Mary Richardson" <[email protected]>

You want us to feel sorry for you because you did not back up your
"important data" before making a major change to your OS?

Yes. I see lots of "install SP2, it's great", and little of any of
this is preceded by "backup your data first".

That's before one considers the vast practical difference between glib
advice to "just backup" and actually doing it, when MSware scatters
data all over the place, XP Home installs no backup app by default,
and some PCs have nil other than 1.44M to backup to.

(sound of smirking in background).

That says more about you than Mary.

You deployed the update without testing it in your mixed environment, and
you do not have current backups for your 300 computers at work? If you
worked for me, you would already have yor pink slip.

That's a point - if Mary is a sysadmin, she'd be expected to have the
resources to manage backups and do pre-deployment testing. That's on
the ASSumption that all sysadmins enjoy proper resource allocation by
management, have spare PCs lying around, etc. Hmm.

You are certainly naive...You connected to a ms website without a firewall
or AV, and you got infected. If you think it "had" to be from MS, you are
even more stupid than this post makes yousound. Blaster, Sasser, and all
the other crpa out ther will get you if you connect with no firewall and AV,
no matter what website you connect to.

That's true too, and I've already flamed her for that

But before you rip Mary's head off, consider that sysadmins are not
always brought in as such, chosen on the basis of certification etc.
Often it is a geeky general staffer that becomes the de facto sysadmin
in small networks, and that is not such an easy path to walk.

--------------- ------- ----- ---- --- -- - - - -

When your mind goes blank, remember to turn down the sound