cornerrage
#0
Heysan!
Jeg har lige været ude og lave en comp for en ven. Altså, geninstall, antivirus og såen.. Så går der 24 timer og han har fået blaster!
Han kan ikke selv finde ud af at opdatere hans windows xp pro.. Og jeg har ikke tid i den nærmeste fremtid.. jeg kunne godt lige tænke mig at vide om der er mulighed for at finde et program eller noget, som kan fjerne blaster.. HELT.. og en redistribuable (!) patch til windows med blaster fix.. Så ville jeg bare blive helt vild glad..
Og desuden forstår jeg ikke at hans Norton AntiVirus ikke fangede den.. Jeg nåede at opdatere dette og sætte det på pas på mode.. Men alligevel fik han virus.. Jeg ved ikke om han bruger p2p-apps men tror det. Han vil egentlig bare kunne spille Battlefield Vietnam og freelancer på nettet.. men den lukker jo, som blaster nu gør, hele tiden compen! Så PLEASE hilfe mig!
mvh. Rage
Jeg har lige været ude og lave en comp for en ven. Altså, geninstall, antivirus og såen.. Så går der 24 timer og han har fået blaster!
Han kan ikke selv finde ud af at opdatere hans windows xp pro.. Og jeg har ikke tid i den nærmeste fremtid.. jeg kunne godt lige tænke mig at vide om der er mulighed for at finde et program eller noget, som kan fjerne blaster.. HELT.. og en redistribuable (!) patch til windows med blaster fix.. Så ville jeg bare blive helt vild glad..
Og desuden forstår jeg ikke at hans Norton AntiVirus ikke fangede den.. Jeg nåede at opdatere dette og sætte det på pas på mode.. Men alligevel fik han virus.. Jeg ved ikke om han bruger p2p-apps men tror det. Han vil egentlig bare kunne spille Battlefield Vietnam og freelancer på nettet.. men den lukker jo, som blaster nu gør, hele tiden compen! Så PLEASE hilfe mig!
mvh. Rage
#1
Der kan hentes en opdateringt på både Microsoft og TDCs hjemmeside
http://sikkerhed.tdconline.dk/...
http://sikkerhed.tdconline.dk/...
#2
Takker ydmygt! Jeg har lige skrevet en sms til ham... tror han prøver det når han kommer hjem.. du skal ha tak for det hurtige svar!
mvh. Rage
mvh. Rage
#3
Få din ven til at downloade DCOMbobulator fra http://grc.com/freepopular.htm
Det program kan disable DCOM, som er det "blaster" feks. smitter igennem.
Taming Windows' Dangerous DCOM / RPC System
What is DCOM?
Windows employs a component-based system to help programmers manage Windows' complexity. This system is called COM for "Component Object Model." Much of Windows itself, and many Windows programs, are assembled from individual COM components. Microsoft thought it would be "cool" if these COM components could find and use each other from different machines across a network, so Distributed COM (DCOM) was created to allow this. DCOM uses an existing networking protocol known as Remote Procedure Call (RPC), usually over Internet port 135, to host COM's distributed operation across a network.
What's the problem?
The problem is that this very powerful DCOM system, which allows pieces of your computer to be remotely activated and used from across a network -- even by any stranger across the Internet -- is always enabled in Windows systems by default. Microsoft's most recent DCOM patch, which fixes another (not the first) remotely exploitable vulnerability in this complex system, continues to defiantly leave the whole DCOM system exposed and enabled . . . and waiting for the next vulnerability to be discovered.
What's the solution?
Just turn it off. No Internet applications use or require DCOM. Some Windows applications support it, but those that do neither use nor require it. As with so many of Windows' easily avoided security vulnerabilities, Microsoft should never have chosen to enable DCOM by default, and they certainly should have had their most recent patch turn it off after the MSBlast worm event. But instead, all Windows systems are still running DCOM and waiting for the next disaster.
You and I have the responsibility to fix this correctly by just saying no to DCOM.
Det program kan disable DCOM, som er det "blaster" feks. smitter igennem.
Taming Windows' Dangerous DCOM / RPC System
What is DCOM?
Windows employs a component-based system to help programmers manage Windows' complexity. This system is called COM for "Component Object Model." Much of Windows itself, and many Windows programs, are assembled from individual COM components. Microsoft thought it would be "cool" if these COM components could find and use each other from different machines across a network, so Distributed COM (DCOM) was created to allow this. DCOM uses an existing networking protocol known as Remote Procedure Call (RPC), usually over Internet port 135, to host COM's distributed operation across a network.
What's the problem?
The problem is that this very powerful DCOM system, which allows pieces of your computer to be remotely activated and used from across a network -- even by any stranger across the Internet -- is always enabled in Windows systems by default. Microsoft's most recent DCOM patch, which fixes another (not the first) remotely exploitable vulnerability in this complex system, continues to defiantly leave the whole DCOM system exposed and enabled . . . and waiting for the next vulnerability to be discovered.
What's the solution?
Just turn it off. No Internet applications use or require DCOM. Some Windows applications support it, but those that do neither use nor require it. As with so many of Windows' easily avoided security vulnerabilities, Microsoft should never have chosen to enable DCOM by default, and they certainly should have had their most recent patch turn it off after the MSBlast worm event. But instead, all Windows systems are still running DCOM and waiting for the next disaster.
You and I have the responsibility to fix this correctly by just saying no to DCOM.
#4
Well... Blaster er jo en orm som kommer af sig selv hvis du ikke har opdateret dit windows (XP). Ved ikke hvor svært det er at opdatere men sig til din ven det ellers ligger inde i start->Alle programmer og så helt oppe i toppen et sted, det er jo ikke så svært. Med hensyn på blaster problemt er der jo allerede skrevet nogle gode foreslag og ville da også lige tilføje et: Hvis Det vindue kommer frem som tæller ned fra ??30?? så gå ind i lør og skrive "shutdown -a" systemet vil blive en smule ustabilt men man kan opdatere i fred/scanne for virus ;)