Thanks Dave You saved me posting the tempory patch.
Jeremy.
Dave Tutelman wrote:
OK, I have protected and cleaned my computer of the WMF Exploit. I
don't need to stay off the web for a week while MurkySoft comes up
with their fix. You can, too. Here are the steps:
(1) Patch the OS. You can download the patch from
http://www.grc.com/sn/notes-020.htm
(2) Test to insure that you are properly patched (that is,
invulnerable to the exploit). There is a test .exe available on the
same site
http://www.grc.com/sn/notes-020.htm
(BTW, I loaded essentially the same patch from another site, but the
test program from this site. The test program said I was invulnerable.
(No wiseass comebacks, please.) The test program works by trying to
exploit the same vulnerability that the evil program does. If it
succeeds, you're vulnerable.
(3a) Scan your computer to see if you have lingering infected files. I
downloaded the free version of Ewido from
http://www.ewido.net/en/
and/or...
(3b) I use AVG free edition antivirus. Sometime after 10am and before
4pm today, AVG updated its definitions file with a test for the
exploit. I have updated my installed copy of AVG, so I'm shielded from
new occurrences, and my computer will be routinely scanned for it.
Here's the site for that
http://free.grisoft.com/freeweb.php
Actually, step #1 SHOULD be sufficient. The rest are insurance and
peace of mind.
Hope this helps y'all,
DaveT
