Re: suspicious firewall rules in WinXP firewall

["Thor (Hammer of God)" <thor () hammerofgod com>]

Exactly.  And next time, don't run as local administrator, and the
virus/spyware won't be able to screw with ICF.

t


On 7/4/06 7:39 AM, "Valdis.Kletnieks () vt edu" <Valdis.Kletnieks () vt edu>
spoketh to all:

> On Mon, 03 Jul 2006 15:16:23 PDT, Bob Madore said:
> > The first problem of course is the firewall or internet security suite
> > --- remove that and all should be OK again.
>
> You mean "all should *look* OK again".
>
> > A spyware and virus have the ability to perform this same problem.
>
> And if the corruption of the firewall is due to spyware or a virus,
> fixing the firewall doesn't remove the actual malware, and as a result,
> things are most certainly *NOT* OK.  You have gotten rid of the patient's
> fever, but the bacteria is still present.
>
> Nuke it from orbit and reinstall.  It's the only way to be sure.



------------------------------------------------------------------------------
This List Sponsored by: Black Hat

Attend the Black Hat Briefings & Training USA, July 29-August 3 in Las Vegas. 
World renowned security experts reveal tomorrow's threats today. Free of 
vendor pitches, the Briefings are designed to be pragmatic regardless of your 
security environment. Featuring 36 hands-on training courses and 10 conference 
tracks, networking opportunities with over 2,500 delegates from 40+ nations. 

http://www.blackhat.com
------------------------------------------------------------------------------