virus for winxp: remote process control failure

[MoMoney]

It found me too.  God-damn microsoft.  First CFS3 then this sht.

[Ripsnort]

My virus protection software and firewall protected me just fine.

[Fishu]

sounds like a scary mofo..

Good thing I should have it patched up, since windows update desn't find any necessary updates.

[Dinger]

interesting, huh?
The RPC buffer overflow issue has been around since windows 98.
A private security firm comes to M$ and says "we found this exploit, it could be nasty, and by the way, mention us in your press release".
Press release, patch, lots of chatter and news articles warning about impending attack.  Three weeks later, here it is.

[muckmaw]

Everyone squeakes about M$, but what about the miserable waste of flesh little salamanders who start these things?

You never hear about them getting arrested and doing time.

They really ought to be treated like E-Terrorists. Give 'em real prison sentences.

Little f*cks.

[Skuzzy]

Windows keeps several ports open all the time.  Go to a DOS box (XP/2K Start->Run, then type "command" and press )

In the box run "netstat -an" and it will list all your open ports for UDP and TCP.  Make sure you close down all programs before running this, or you could get quite a list.

The ports with "Foriegn Addresses" os all zero's are the ports Windows keeps open all the time.  They will get exploited, even if it is just a DOS attack.

The ports you cannot close down in Windows are ports TCP ports 135, 139, 445 (XP/2K) and UDP ports, 445 (XP/2K), 137, and 138.

The 13x ports are the NetBIOS ports and are used for file and printer sharing and have always been a security problem with all versions of Windows since W95.

[newguy]

Yea this is a nasty one. Been dealing with customers who have this for the last few days. Get yourself behind a firewall, preferably a router. I can see more viruses passed like this in the future.

[Creamo]

Of course, like Ripsnore, wasn’t taken by surprise either.

I have a non-electric vacuum pump to seal my bunker foods I bought at a Preprepardness Expo in Texas.

 Along with my diesel generator and Type 7 VHF radar and a two-level R6 bunker spread air traffic civil and military Mersey Radar, I’m set. The food will last for years.

Oh, and I patched WINXP, thank god.

[AKIron]

The Internet is the new old wild west. If you ain't behind a farwall it's only a matter of time before you get plugged pardner.

[muckmaw]

Iron-

I've got a firewall on my PC...I think it's a McCaffee job. Yes, it's a big white M in a red square. (Geez, I know nothing about computers).

Anyway, it was a free trial but I never dowloaded it. I just keep resetting the clock on my computer back 2 weeks to keep it going.

Is this protection enough? Should I pay for the damn thing or keep bumping my computer back 2 weeks?

[straffo]

muck you can have sygate personal FW for free :

http://smb.sygate.com/products/spf_standard.htm

[fd ski]

get a router with build in firewall. You can hook up more then computer and they are all covered.

[Curval]

My home machine has this...turned up this morning.

I'm p*ssed....my wife's relatives have been playing around on my computer and someone must have downloaded something.

[muckmaw]

Originally posted by fd ski
get a router with build in firewall. You can hook up more then computer and they are all covered.

Huh? What?


Could you put that in English?

Router? Is that a little black box thingy?

I am soooo confused.

[Dinger]

curval it's a port hack. All you have to be is connected to the internet.  No download necessary.