[email protected]

http://myITforum.com

•

Irrational fear of being “Old Man Jenkins”

•

Added primary EXE for the application

http://technet.microsoft.com/en-us/library/jj849987.aspx

http://blogs.technet.com/b/neilp/archive/2012/06/12/runbook-commander-an-orchestrator-console extension-for-system-center-2012-configuration-manager.aspx

http://myitforum.com/cs2/blogs/rhouchins/archive/2008/04/09/sccm-right-click-tools.aspx

http://sourceforge.net/projects/smsclictr/

http://scug.be/blogs/sccm/archive/2009/09/15/adding-wmic-right-click-actions-to-the-configmgr-2007 admin-console-1.aspx

WMIC /namespace:\\root\ccm\policy\machine\requestedconfig path ccm_SoftwareDistributionClientConfig 0" ,SiteSettingsKey="1" /NOINTERACTIVE CREATE ComponentName="Disable SWDist",Enabled="false",LockSettings="TRUE",PolicySource="local",PolicyVersion="1.

http://msdn2.microsoft.com/en-us/library/aa394102.aspx

'INTDEL.exe', -- Adware - Pop-ups 'ISTSVC.exe', -- Spyware - Integrated Search Technologies 'KeenValue.exe', -- Spyware - Gator 'loader.exe', -- Backdoor.Prorat Virus 'lol.exe', -- W32.HLLW.Rackus Virus 'Lspmonitor.exe', -- Spyware - StopSign 'mapisvc32.exe', -- KX Virus 'MD.exe', -- System MD Virus 'MDie.exe', -- Backdoor.Win32.Rbot.Gen Virus 'MemoryMeter.exe', -- Grokster Peer-To-Peer File Sharing Suite 'MFIN32.exe', -- Adware - MyFreeInternet Update 'MMod.exe', -- Adware.W32.EarnBundleWare

'MOStat.exe', -- Spyware - Wurld Media 'mousebm.exe', -- W32.ESBot Virus 'mousemm.exe', -- W32.ESBot.A Virus 'MSBB.exe', -- Adware.W32.BargainBuddy - 180Solutions 'MSCache.exe', -- Spyware - Integrated Search Technologies 'MSCMan.exe', -- Spyware - Odysseus Marketing 'msdefr.exe', -- Spybot Worm 'MSMACROPROTXZ.exe', -- Spybot Worm 'MSMGT.exe', -- Spyware - Total Velocity 'MSSVR.exe', -- Spyware - 2020DownLoader - 2020 Internet Search Toolbar 'MSUpdater.exe', -- TrojanDownLoader.Win32.WinShow Trojan 'MWSOEMON.exe', -- MyWebSearch Toolbar 'mwsvm.exe', -- Adware - Adw.ScanPortAL.A

'Nail.exe', -- Trojan.Win32.Stervis.B Trojan 'nb32ext2.exe', -- MyDoom.BV worm 'nbmanager.exe', -- Spyware - eAnthology 'netbutler.exe', -- ?

'onsrvr.exe', -- Spyware - OnWebMedia 'PC32.exe', -- Mastak Virus 'per.exe', -- Worm.ZOTOB.C Virus 'PGMonitr.exe', -- Adware.W32.DelFin

'PowerScan.exe', -- Adware.W32.PowerScan

'PRMVR.exe', -- Spyware - Adtomi.com

'pnpsrv.exe', -- W32.SDBOT.Worm Virus 'Precisiontime.exe', -- Adware.W32.ClariaPrecision

'PrizeSurfer.exe',-- Spyware - PrizeSurfer 'Prmt.exe', -- Spyware - OpiStat 'RAY.exe', -- Homepage Hijacker 'RB32.exe', -- Adware.W32.RapicBlaster

'RCSync.exe', -- Spyware - PrizeSurfer 'Run32DLL.exe', -- Key Recorder - Screen Capture - PAL PC Spy 'SAHAgent.exe', -- Adware.W32.CyDoor - CyDoor Desktop Media 'savenow.exe', -- Coupons - WhenU.com

'SBHC.exe', -- IE Plugin - GIGATech Software 'ShowBehind.exe', -- Adware - MicroSmarts Enterprise 'SLMSS.exe', -- Spyware - 2nd Thourgh by CPM Media 'SRNG.exe', -- Spyware - Search Hijacker 'STCLoader.exe', -- Spyware - 2nd Thourgh by CPM Media 'SUSP.exe', -- Spyware - ABetterInternet 'SVCINIT.exe', -- Backdoor.Sinit Trojan 'svnlitup32.exe', -- Worm.RBOT.CBJ

'syscpy.exe', -- Backdoor.Hogle Trojan 'Systesm32.exe', -- Spyware - Bling.exe 'thefourthcoming.exe', -- ?

'Trickler.exe', -- Spyware - Gator GAIN (Gator Advertising and InfoNetwork) 'TSADBot.exe', -- Adware 'TVMD.exe', -- Spyware 'TVTMD.exe', -- Spyware 'UCMWESKU.exe', -- ?

'Updates32.exe', -- Spyware - Bling.exe

'uptodate.exe', -- Adware - BrowserPal 'veloz.exe', -- StopSign Email Scanner - eAcceleration Software 'velozsys.exe', -- StopSign Email Scanner - eAcceleration Software 'Weather.exe', -- Adware 'webcel.exe', -- eAcceleration Software - Spyware - ?

'WebDev.exe', -- ?

'Win32US.exe', -- Dial-up Hijacker - high cost toll number 'WinActive.exe', -- Homepage Hijacker 'windrg32.exe', -- W32.ZOTOB.D Worm 'WinMain.exe', -- Trojan.KonDeli

'WinNet.exe', -- Adware/Spyware - CommonName I.E. Search 'winpnp.exe', -- W32.SDBOT.Worm

'WinServN.exe', -- Adware.W32.PurityScan - ClickSpring LLC 'WinStart.exe', -- Homepage Hijacker - iGetNet

'WinStart001.exe', -- Adware 'wintbp.exe', -- W32.ZOTOB.E Worm 'wintbpx.exe', -- W32.BOZORI.Worm.B

'WNAD.exe', -- Spyware - TwistedHumor.com

'wpa.exe', -- ESBOT Worm 'ygpmrgsb.exe', -- ?

'zeus.exe', -- Zeus:Master of Olympus game 'zmanager.exe' -- Spyware - eAcceleration ) ) OR --SF.FileDescription like '%doom%' OR -- DOOM Game SF.FileDescription like '%GNUTE%' OR -- MP3 Resources SF.FileDescription like '%l0pht%'OR -- Password cracker SF.FileDescription like 'Lime%' OR -- Peer-to-Peer file sharing SF.FileDescription like '%nuke%' OR -- DOOM Game SF.FileDescription like '%orafice%' OR -- Keystroke mapper SF.FileDescription like '%sniff%' OR -- Network sniffer SF.FileDescription like '%unreal%' OR -- Games ((SF.FileName like '%as-101%' OR SF.FileName like '%babylon%' OR SF.FileName like '%bearshare%' OR SF.FileName like '%bindery%' OR -- SF.FileName like '%bindin%' OR SF.FileName like '%bo2k%' OR SF.FileName like '%chknull%' OR SF.FileName like '%Cracker%' OR -- Password cracker SF.FileName like '%Craserv%' OR -- SF.FileName like '%doom%' OR -- DOOM game SF.FileName like '%EbatesMoeMoney%' OR -- Spyware SF.FileName like '%expolit%' OR SF.FileName like 'gator%' OR -- Gator Spyware/Adware SF.FileName like '%getadmin%' OR SF.FileName like '%gnucleus%' OR SF.FileName like '%GNUTE%' OR -- MP3 Resources SF.FileName like '%GROK%' OR SF.FileName like '%hack%' OR -- Password cracker SF.FileName like '%hotbar%' OR -- IE Toolbar - Spyware/Adware SF.FileName like '%kazaa%' OR -- Peer-to-Peer file sharing SF.FileName like 'keygen%'OR -- Password cracker (SF.FileName like 'loader.exe' AND SF.FileDescription not like '%handheld%') OR -- Virus SF.FileName like '%l0phtcrack%' OR -- Password cracker SF.FileName like '%lc252install%' OR -- Password cracker SF.FileName like '%LIME%' OR -- Peer-to-Peer file sharing SF.FileName like '%morpheus%' OR SF.FileName like '%Napster%' OR -- Peer-to-Peer file sharing MP3Resources SF.FileName like '%nbsvr%' OR SF.FileName like '%nbtscan%' OR SF.FileName like '%ndssnoop%' OR SF.FileName like '%netbusr%' OR SF.FileName like '%nmapNT%' OR SF.FileName like '%nuke%' OR -- DOOM Game SF.FileName like '%nwpcrack%' OR SF.FileName like '%orafice%' OR -- Keaystroke mapper SF.FileName like '%otglove%' OR SF.FileName like '%precisiontime%' OR SF.FileName like '%pwdump%' OR -- Password cracker SF.FileName like '%quake%' OR -- DOOM game SF.FileName like '%Retina%' OR SF.FileName like '%RFPoison%' OR SF.FileName like '%smbdie%' OR SF.FileName like '%smurf%' OR SF.FileName like '%unreal%' OR SF.FileName like '%XUPITER%' OR SF.FileName like 'POPSRV%' ) AND SF.FileName not like '%.mp3') order by SF.FileName

[email protected] http://myITforum.com • Irrational fear of being “Old Man Jenkins” • Added primary EXE for the application.

Transcript [email protected] http://myITforum.com • Irrational fear of being “Old Man Jenkins” • Added primary EXE for the application.

[email protected]

http://myITforum.com

Irrational fear of being “Old Man Jenkins”

Added primary EXE for the application

WMIC /namespace:\\root\ccm\policy\machine\requestedconfig path ccm_SoftwareDistributionClientConfig 0" ,SiteSettingsKey="1" /NOINTERACTIVE CREATE ComponentName="Disable SWDist",Enabled="false",LockSettings="TRUE",PolicySource="local",PolicyVersion="1.

Directory