The "Freeola Customer Forum" forum, which includes Retro Game Reviews, has been archived and is now read-only. You cannot post here or create a new thread or review on this forum.
Turns out there's been a major security alert with NT based OS's and a virus has been spread to those who are vunrable. Luckily Zonealarm picked up 204 attempted "outgoing" connections from the application "msblast.exe" and told me to block the connection and download a patch from MS's site.
This is a warning to all XP user's - Check the "processes" list in task manager and see if ms blast is there.
****
"This worm spreads by exploiting a vulnerability in the RPC service for DCOM. This is described along with the fix for it in Microsoft Security Bulletin MS03-026. This affects the following systems; Windows NT 4, Windows 2000, Windows XP and Windows Server 2003. The worm also performs a Denial of Service (DoS) attack on the windowsupdate.com server.
The worm exploits vulnerability in DCOM RPC. It subsequently searches IP addresses and when it finds a vulnerable computer it uses the exploit to remotely run a shell which issues a command for downloading a copy of itself by TFTP. The copy of the worm is lunched directly after download.
When the worm is lunched it copies itself as a file named msblast.exe to the SYSTEM32 folder and registers msblast.exe as a windows auto update item in the following registry key
If your computer is infected by this virus, you will have to apply the Microsoft security patch available from this link:
microsoft.com/technet/security/bulletin/MS03-026.asp
Symptoms of the worms existence within a network (LAN):
- increased traffic on UDP port 69 (TFTP used by worm for downloading
- increased traffic on port 135 or 593 (worm sending data to try and exploit RPC for DCCOM)
- sudden system crashes reporting fault in RPC
Recommendation for network administrators is to disable outward access on ports 135 and 593 used by worm.
Virus also contains these texts:
I just want to say LOVE YOU SAN!!
billy gates why do you make this possible ?
Stop making money and fix your software!!"
************
Heh. Clever - Yet scary.
> Windows 98 would crash long before any RPC exploit got the chance
HAHAHAHA
> Thanks a lot, so sometimes it pays not to update.
That is absolute BS, there isn't a single reason why Win98 should have even been created in the first place.
> ]-[ØM€® B€€® §ØL!!D wrote:
> I am a windows 98 user, is there any chance of me getting this
> virus,
> as by the sounds of it it can be very harmful to the system.
>
> Nope - Your ok mate :)
>
> The virus only affects NT based operating systems: -
>
> Windows NT
> Windows 2000
> Windows XP.
Thanks a lot, so sometimes it pays not to update.
> I am a windows 98 user, is there any chance of me getting this virus,
> as by the sounds of it it can be very harmful to the system.
Nope - Your ok mate :)
The virus only affects NT based operating systems: -
Windows NT
Windows 2000
Windows XP.
Cheers :)