Re[2]: BLASTER WORM - was Re: can I change RE: into something else?
Tuesday, August 12, 2003, 1:42:40 PM, Thomas wrote: T OK. I'm running Win98, so I'm not vulnerable, right? (This is T the first question.) Here is a layman's article about Blaster. http://money.cnn.com/2003/08/12/technology/msft_worm.reut/index.htm?cnn=yes PS - My apologies for the OT continuance, as well. I hope that the urgency of this nasty worm is sufficient cause for dispensation from the TBUDL powers-that-be! :) -- Dave Kennedy Current version is 1.62r | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: BLASTER WORM - was Re: can I change RE: into something else?
On Tuesday, August 12, 2003, 1:23:08 PM, Alexander wrote: A The only permanent cure against Blaster (or any other worm that is A yet to come, exploiting the same vunerability) is to close Port 135, A 139, 445 for remote access from the internet with a firewall (even A the built-in fw in WinXP will do) and install the KB823980 patch from A MS. *Anyone* with WinNT4, 2000 or XP is advised to do so immediately, A read MS03-26. Okay, so should my *firewall* have protected me then? I don't seem to be experiencing any problems, other than difficulties downloading from AVG (which I suspect has more to do with their servers being over-run by people doing the same thing than anything about my computer). I'm running the Symantec tool anyway, have dl'd the patch to install right afterwards. Oh, the Symantec tool has just finished, it says I'm clean :-). Off to install the patch now :-) -- Deborah Current version is 1.62r | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: BLASTER WORM - was Re: can I change RE: into something else?
Greetings tracer! port 135 critical mass day. maybe time to start selling prebuilt stand alone firewalls again eh? Problem is - talking new users into the necessity. Days like today are good days to sell sell sell! Here is a nice photo. Wish my stocks looked like this: http://isc.sans.org/images/port135percent.png ps: Long time no hear. ;o) On Tuesday, August 12, 2003 at 06:32:12 GMT +0700 (which was 4:32 PM where you think I live) [EMAIL PROTECTED] said: t Spike wrote: There is a tool available to check for (and remove) BLASTER at: http://www.sarc.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html t Am downloading it as I guess I will be busy, Sofar none of my t customers have been hit -- --- The Bat! 3.9 Beta/8 + w2K3 ... na na na na na na na na na nay The Bat! gets is mail so fast today. * Origin: Private Gateway to Outer-Space (88:888/8) Current version is 1.62r | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
