uap (user account protection)

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

i am being annoyed by the uap system. it keepd asking me if i would like to
run certian applications over and over again. even when it already asked me
to run it a bit ago. the system only did that for one application. i think it
was for the file Exec.exe. it asked me if i would like to run it every 1.2
seconds. most times the uap system asked me about the same application
everytime i restarted the pc.

my seggestion is that there should be an ignore list for applications,
settings and other stuff. the uap system will not ask you about something
when it is on the ignore list. acually it should be calls the apps list. it
will have a list of stuff that you always want windows to run, applications
and processes that you never want windows to run, and more. it will also keep
track of your personal settings for the display panel stuff. when an
application runs and the uap pops up asking it if you want to allow it to run
it or not. there should also be more options. you should be able to say
whether, you always want it to run, you don't want it to run at all (don't
ask me about it again), run it this time (but ask me again about it later the
next time it runs), i don't want it to run this time (but ask me about it
again the next time it run).

does anyone like my idea?
i'm just suggesting these ideas because i did not see that much about the
uap system in vista.

----------------
This post is a suggestion for Microsoft, and Microsoft responds to the
suggestions with the most votes. To vote for this suggestion, click the "I
Agree" button in the message pane. If you do not see the button, follow this
link to open the suggestion in the Microsoft Web-based Newsreader and then
click "I Agree" in the message pane.

http://www.microsoft.com/communitie...bcb&dg=microsoft.public.windows.vista.general
 
It sounds like UAC is working just fine.

http://www.sophos.com/security/analyses/w32spybotz.html :
W32/Spybot-Z is a peer-to-peer worm and a backdoor Trojan that copies itself
into the Windows system folder with the name exec.exe or with a random name
and sets the following registry entries:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\
eth0 driver = exec.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
eth0 driver = exec.exe

The worm creates the folder <System>\kazaabackupfiles and copies itself into
this folder as:
crack.exe
divx.exe
gg.exe
ich.exe
ie.exe
irc.exe
justin.exe
mp3.exe
pamela.exe
sex.exe
winamp.exe
xxx.exe

The worm also sets the following registry entry to point to this folder:
HKCU\Software\Kazaa\LocalContent\Dir0

W32/Spybot-Z terminates certain utility programs and logs on to a predefined
IRC server and waits for backdoor commands.
 
then why is the file copied over to the pcv with some antivirus software.
when that particular file starts up it asks whether you want to let it run
or not. whether you say yes or no it will just keep asking you every .5
seconds. this makes it so you can do nothing at all. but when you start up
the pc it will not ask you about that procees for a few minutes allowing you
to uninstall the app that the file came with. once that app is gone, the
file is gone as well. if you keep the anuvirus software on the pc, and
delete the file fro the hard drive using another OS the file just seems to
come back. i just think there should be a way so that the uap system won't
keep asking you about the same file over and over again like it was doing
with that file. it just made the pc unusable because of uap. since i was
having that issue i just disabled uap. evewn though i deleted that file
whether through xp or vista, it just kept comong back. and the antivirus
software that i got for vista did not detect the file at all. in xp, i just
did a search for it and deleted it. then loaded vista. then it seemed to
have returned. thjen restarted in xp then found it again and deleted it. the
uap should have a permenate way of not allowing some apps from starting. it
should have a ignor list, a block list, and then the new apps just get asked
to run on their first appearence on the system. there should be more
advanced options for the uap.
 
then why is the file copied over to the pc with some antivirus software.
when that particular file starts up it asks whether you want to let it run
or not. whether you say yes or no it will just keep asking you every .5
seconds. this makes it so you can do nothing at all. but when you start up
the pc it will not ask you about that procees for a few minutes allowing you
to uninstall the app that the file came with. once that app is gone, the
file is gone as well. if you keep the anuvirus software on the pc, and
delete the file fro the hard drive using another OS the file just seems to
come back. i just think there should be a way so that the uap system won't
keep asking you about the same file over and over again like it was doing
with that file. it just made the pc unusable because of uap. since i was
having that issue i just disabled uap. evewn though i deleted that file
whether through xp or vista, it just kept comong back. and the antivirus
software that i got for vista did not detect the file at all. in xp, i just
did a search for it and deleted it. then loaded vista. then it seemed to
have returned. thjen restarted in xp then found it again and deleted it. the
uap should have a permenate way of not allowing some apps from starting. it
should have a ignor list, a block list, and then the new apps just get asked
to run on their first appearence on the system. there should be more
advanced options for the uap.
 
You're probably right. Something to stop a Denial-Of-Service via UAC could
be handy.

But I hope got my point that it sounds like you are already infected by the
Trojan that is now trying furiously to launch that exec.exe. You need to fix
that to get it to stop coming back. Then you need to think about whether you
clicked Continue in the UAC dialog for something you shouldn't have (and MS
needs to think about how many other people are going to do the same, making
UAC near useless).

I don't know why your AV software isn't catching it. Is it Vista compatible
and up to date?
 
What is UAC?

Thank you

Chris Altmann said:
You're probably right. Something to stop a Denial-Of-Service via UAC could
be handy.

But I hope got my point that it sounds like you are already infected by
the Trojan that is now trying furiously to launch that exec.exe. You need
to fix that to get it to stop coming back. Then you need to think about
whether you clicked Continue in the UAC dialog for something you shouldn't
have (and MS needs to think about how many other people are going to do
the same, making UAC near useless).

I don't know why your AV software isn't catching it. Is it Vista
compatible and up to date?
Click to expand...
 
well, i'm talking about uap, user account protection. maybe he is just
putting uap as uac...
 
maybe i did accept something i should not have for the accepting but all i
did was let the antivirus software run.
my evo laptop was not really vista capable to the point it should have been.

it has a 1.0GHz processor, 640MB of RAM, about 16MB of vram i think. it is
like 4 years old or more and it came with xp. it is like a phone modle
laptop.
the main hard drive was 20GB but i put vista on the multibay hard drive
which was 60GB.
since it uses multibay ports i had to remove the dvd drive to run vista. to
install vista i just used my external multibay adapter.
i'm going to remove vista from it though. even though vista seems to be
running good on it.

since i had issues on my evo i might install it on my zd8000 laptop since
that one is way more then capable of vista. but i'm going to run vista on an
external multobay 80GB hard drive because right now i'm using the 60GB one
for backup. the zd8000 does not use multibay ports. that was my only
disapointment about it when i got it. it has a 3.4GHz processor with HT
technology, 2GB of ram, 256MB of vram, 100GB internal hard drive. and plus
it is less then a year old. i did not get the 80GB hard drive yet. i'll wait
to put vista on it untill i get it and upgrade the warranty which i'll be
doing in a few days or so before it expires. my mom got me the crudy 1 year
warranty. but at least she let me get all the hardware upgrades in it in
all. it was a bday gift. she just gave me a price limite for what i could
spend on it.
 
I'm calling it UAC because the feature is called User Account Control. It
used to be called User Account Protection (UAP), but it isn't anymore.
 
Back
Top