Windows DCOM RPC Vulnerability Exploit Proliferating
31 posts
• Page 2 of 4 • 1, 2, 3, 4
I tried to update using Windowsupdate, but for some strange reason it keeps looping back to the 'update now' screen.
I tried to use the security patch, but the program wouldn't let me install it, saying something about vertifying the integrity of the Update.inf file....
I tried using that worm remover from Symatec, scanned the computer, says no worms detected, turn off firewall, restart warning pops up again.
Ack... does that mean I have to leave the firewall on forever?
(Note, I've deleted the registry file and the msblast.exe... does it keep reinfecting systems everytime I go onto the internet?)
I tried to use the security patch, but the program wouldn't let me install it, saying something about vertifying the integrity of the Update.inf file....
I tried using that worm remover from Symatec, scanned the computer, says no worms detected, turn off firewall, restart warning pops up again.
Ack... does that mean I have to leave the firewall on forever?
(Note, I've deleted the registry file and the msblast.exe... does it keep reinfecting systems everytime I go onto the internet?)
Myself and two friends all got hit with this worm last night. i downloaded the tool from Symantec to clean it.. the tool also automatically redirected me to M$'s site to download the critical patch, and all is fine now! here is the link to download the tool from symantec:
http://securityresponse.symantec.com/av ... .tool.html
W32.Blaster.Worm Removal Tool
Discovered on: August 11, 2003
Last Updated on: August 11, 2003 08:01:58 PM PDT
Symantec Security Response has developed a removal tool to clean the W32.Blaster.Worm infections.
What the tool does
The W32.Blaster.Worm Removal Tool does the following:
Terminates the W32.Blaster.Worm viral processes.
Deletes the W32.Blaster.Worm files.
Deletes the dropped files.
Deletes the registry values that the worm added.
http://securityresponse.symantec.com/av ... .tool.html
W32.Blaster.Worm Removal Tool
Discovered on: August 11, 2003
Last Updated on: August 11, 2003 08:01:58 PM PDT
Symantec Security Response has developed a removal tool to clean the W32.Blaster.Worm infections.
What the tool does
The W32.Blaster.Worm Removal Tool does the following:
Terminates the W32.Blaster.Worm viral processes.
Deletes the W32.Blaster.Worm files.
Deletes the dropped files.
Deletes the registry values that the worm added.
- BitTorrent
- Posts: 35
- Joined: Tue Jun 24, 2003 11:49 pm
- Location: Northeast USA
does it keep reinfecting systems everytime I go onto the internet?
Not to sound like a smartass, but yes, that is what worms are designed to do. If you use the Symantec tool without patching the Windows vulnerability then yes you can and probably will get infected again. Updating virus definitions will also help.
-Weaver
Public Keys
The primary purpose of the DATA statement is to give names to constants; instead of referring to pi as 3.141592653589793 at every appearance, the variable PI can be given that value with a DATA statement and used instead of the longer form of the constant. This also simplifies modifying the program, should the value of pi change.
-- FORTRAN manual for Xerox Computers
The primary purpose of the DATA statement is to give names to constants; instead of referring to pi as 3.141592653589793 at every appearance, the variable PI can be given that value with a DATA statement and used instead of the longer form of the constant. This also simplifies modifying the program, should the value of pi change.
-- FORTRAN manual for Xerox Computers
- Weaver
- PROfessional Member
- Posts: 1967
- Joined: Wed Jun 19, 2002 12:05 am
- Location: /home/weaver/
I had this mother yesterday. I know it did. Sucker kept on rebooting and shutting down anything I was doing. And then telling me it was going to reboot in 60 seconds. I was so irritated. I couldn't even stay online after I posted a PM to Johnny so I trashed the OS and started fresh. What a pain.
I believe that imagination is stronger than knowledge - myth is more potent than history - dreams are more powerful than facts - hope always triumphs over experience - laughter is the cure for grief - love is stronger than death
Robert Fulghum
Robert Fulghum
- SCJwl
- PROfessional Member
- Posts: 707
- Joined: Mon Mar 11, 2002 4:45 pm
- Location: South Carolina
so I trashed the OS and started fresh
That's one way to handle it.
-Weaver
Public Keys
The primary purpose of the DATA statement is to give names to constants; instead of referring to pi as 3.141592653589793 at every appearance, the variable PI can be given that value with a DATA statement and used instead of the longer form of the constant. This also simplifies modifying the program, should the value of pi change.
-- FORTRAN manual for Xerox Computers
The primary purpose of the DATA statement is to give names to constants; instead of referring to pi as 3.141592653589793 at every appearance, the variable PI can be given that value with a DATA statement and used instead of the longer form of the constant. This also simplifies modifying the program, should the value of pi change.
-- FORTRAN manual for Xerox Computers
- Weaver
- PROfessional Member
- Posts: 1967
- Joined: Wed Jun 19, 2002 12:05 am
- Location: /home/weaver/
Weaver wrote:
Not to sound like a smartass, but yes, that is what worms are designed to do. If you use the Symantec tool without patching the Windows vulnerability then yes you can and probably will get infected again. Updating virus definitions will also help.
-Weaver
Ack... I can't download the patch from the Windows Update website for some strange reason... the 'Update Now' page keeps looping and looping whenever I press the button. Are there any alternative sites to the patch?
31 posts
• Page 2 of 4 • 1, 2, 3, 4
Who is online
Users browsing this forum: No registered users and 3 guests