When your computer is slow, you don’t have much choice but to wait until it gets done with a task at its own pace, albeit a slow one. So if you want to switch user accounts on your computer a couple of times daily, then a slow computer can get really irritating. What makes system processes slow is that the accounts have some programs or applications running and resources allocated to them. And besides, if your computer is already low on performance, it will kill the natural fluidic flow of the user. But worry not, for this post will guide you in switching user accounts with the help of some minor tweaks in your Windows 10 computer.
To disable or enable Fast User Switching, you have two methods to do that using the Registry Editor and the Group Policy Editor. Either way, refer to the instructions laid out below.
Take note that this option will not work if you are using the Windows 10 Home edition since the Group Policy Editor does not come with Windows 10 Home. Refer to the steps below to enable or disable Fast User Switching using Group Policy Editor.
Note: On the configuration page, you will see the following description:
“This policy setting allows you to hide the Switch User interface in the Logon UI, the Start menu, and the Task Manager. If you enable this policy setting, the Switch User interface is hidden from the user who is attempting to log on or is logged on to the computer that has this policy applied. The locations that the Switch User interface appears in the Logon UI, the Start menu, and the Task Manager. If you disable or do not configure this policy setting, the Switch User interface is accessible to the user in the three locations.”
Hive ransomware has been targeting Microsoft exchange servers lately vulnerable to ProxyShell security issues in order to deploy various backdoors. Once the backdoor has been placed various attacks can be performed including but not limited to network reconnaissance, stealing admin accounts, taking valuable data, and even installing and deploying file-encrypting algorithms.
ProxyShell is a set of three vulnerabilities in the Microsoft Exchange Server that allows remote code execution without authentication on vulnerable deployments. The flaw has been used in past by various ransomware like Conti, BlackByte, Babuk, Cuba, and LockFile.
Security vulnerabilities have been reported to be fully patched on May 2021 but how Hive was able to still be successful in exploiting PowerShell and infiltrating into the system there seems to be still some unpatched and open issues.
Hive has gone a long way since it was first observed in the wild back in June 2021, having a successful start that prompted the FBI to release a dedicated report on its tactics and indicators of compromise.
In October 2021, the Hive gang added Linux and FreeBSD variants, and in December it became one of the most active ransomware operations in attack frequency.
Last month, researchers at Sentinel Labs reported on a new payload-hiding obfuscation method employed by Hive, which indicates active development.
powershell -windowstyle hidden -command "Start-Process cmd -ArgumentList '/s,/c,net stop "icssvc" & REG ADD "HKLMSYSTEMCurrentControlSetServicesicssvcSettings" /V PeerlessTimeoutEnabled /T REG_DWORD /D 0 /F & net start "icssvc"' -Verb runAs"
“Error in loading dll” “Object library not registered”
del *.*
Digital Publisher: GreenTree Applications srl Product Version: YTD Video Downloader 4.8.9.7 Original File Name: YTDStub.exe Entry Point: 0x0000323C