'blaster' worm
Discussion
zumbruk said:
Mark.S said:
Everytime a virus/trojan of this type arrives I can't help laughing at the number of big firms that are brought to their knees!
So how would you like to install fixes every 2 or 3 days on 12,000 machines? Especially when those fixes break other things.
Here at the Uni I'm at, the Virus files and any updates are installed overnight during the automatic restart, they aren't affected by worms or anything similar.
As for firewalls, check out www.sygate.com and get their SPF (Sygate Personal Firewall) which is free. Very good.
As for AntiVirus (www.grisoft.com), AVG 6 Free version is very good indeed and is updated regulary. A well worthy download, just make sure you patch it regulary.
To get rid of the Blast'er virus, goto task manager (either right-click on taskbar, task-manager or ctrl-alt-del) and enter the services tab. Select msblaster.exe and click end-process.
Next navigate c:windowssystem32 (or c:winntsystem32) and delete msblast.exe.
Thats you got rid of the virus but if you want to be through, goto start, run "Regedit". Navigate to:
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun and delete the key which says Auto Windows Update or similar.
Then run the patch and install a firewall
Stefan
edit: to add grisoft link.
>> Edited by docevi1 on Saturday 16th August 22:38
lx993 said:
Equally, how many people out there actually need to expose Windows netbios ports to the internet?? (this is a serious question). The DCOM bug can't be exploited without port 135 being open (or 445, IIRC).
please translate! I have a small business with three networked computers, internet permanenetly on and windows internet sharing running. Do I need 135 open? If not can I close it? If so how?
Regrettabbly as in most small (three man) businesses the owner is also the IT dept and I am not bad at surveying houses but poor at "complicated" IT!
Steve
When a computer connects to the internet or network it opens up ports to allow the programs and hardware to communicate.
The best way to close these un-needed ports is two-fold, one get a hardware firewall which is usually a router or switch that sits between your internal network and the outside world or get software firewalls on each machine.
What sort of internet connection and network are you running? A £90 pound 4 port router from NetGear, Cisco... will get rid of the need for Windows ICS and protect your network all in one go.
Much more reliable.
Stefan
The best way to close these un-needed ports is two-fold, one get a hardware firewall which is usually a router or switch that sits between your internal network and the outside world or get software firewalls on each machine.
What sort of internet connection and network are you running? A £90 pound 4 port router from NetGear, Cisco... will get rid of the need for Windows ICS and protect your network all in one go.
Much more reliable.
Stefan
Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff