Anything Forums

Ndisuio.sys, a very mysterious system file is present in Windows XP and is a driver for wireless things such as wi-fi and bluetooth. However, there have been many issues with this file downloading immense amounts of data and perhaps causing activity that is "big brother"ish.

http://www.iceteks.com/articles/db.php/act...cle/ndisuio/p/1

Archived topic from Iceteks, old topic ID:2445, old post ID:20641

Hmm well it is a network-enabled driver, so it could be there are security flaws that allow this.

Also, you may want to look at this article: http://iamnotageek.com/articles.php?aid=10...&topic=Firewall

It's about the XP firewall being... well... microsoftish, it does not always work.

Archived topic from Iceteks, old topic ID:2445, old post ID:20688

lol true, well as long as you don't do windows update you're safe... no wait, that's contradicting... bah just get a router.

For a company that makes patches for patches I trust a router before the patches anyway. to be honest I never did windows update once on my win2k, and never had problems. There's other ways to keep things secure but you just have to know what you're doing. But the worse you can do is get a cracked copy or otherwise modified since some crackers wont only crack it, but they will insert things in it.

Might as well just buy it and that way you're safe, and you can do windows update.

Archived topic from Iceteks, old topic ID:2445, old post ID:20712

I have my registered copy of XP updated and use all the security measures I can. No problem so far.

Archived topic from Iceteks, old topic ID:2445, old post ID:20722

Woah, you're on the same subnet as my local network... that's weird.

Archived topic from Iceteks, old topic ID:2445, old post ID:21373

weird that a network related file would be needed for a screen saver though... but it is an RPC thing so you just never know when it comes to that.

Archived topic from Iceteks, old topic ID:2445, old post ID:21746

Well it's safe, but if you don't need it, then you can block it, and even disable this file altogether.

Archived topic from Iceteks, old topic ID:2445, old post ID:21833

Right I Have now reg'd hopefully this will get a reply cos i know it is an old thread!

Cheers

Darren

Archived topic from Iceteks, old topic ID:2445, old post ID:21890

I think it's just becase that file duplicates network activity, so if you've been to that site then it makes it look like it's trying to connect there.

Archived topic from Iceteks, old topic ID:2445, old post ID:21954

I don't think there's a paranoid one of us in the bunch. As far as Linux goes...I'm to old to care.

Archived topic from Iceteks, old topic ID:2445, old post ID:24962

Hi,
recently i logged my laptop to a local intranet and the admin had used
ndisuio.exe and ntokrnl.exe to control my comp. - atleast according to Sygate firewal
ndisuio.exe- Sygate says was used to find out all the running applications
and ntokrnl was used to enable th UDP -this i'm not sure what UDP is used for,
i have blocked it using sygate now,
bye

Archived topic from Iceteks, old topic ID:2445, old post ID:26932

Red Squirrel wrote: Hmm well it is a network-enabled driver, so it could be there are security flaws that allow this.

Also, you may want to look at this article: http://iamnotageek.com/articles.php?aid=10...&topic=Firewall

It's about the XP firewall being... well... microsoftish, it does not always work.

Wait. The MICROSOFT firewall doesn't always work? Are you serious?

Archived topic from Iceteks, old topic ID:2445, old post ID:27994

Yeah its' crap, dont trust it. Disable it and get something else. mind you, I've seen it where installing a firewall gives you the dreaded STOP error at startup when you reboot, so image your drive before installing the firewall in case you need to rollback, since BSODs are unescapable in most cases,on NT based OSes.

Oh and the firewall conflict is an XP thing, in 2000 all is smooth.

Archived topic from Iceteks, old topic ID:2445, old post ID:27998