Security Incidents mailing list archives
Re: suspicious firewall rules in WinXP firewall
From: "Thor (Hammer of God)" <thor () hammerofgod com>
Date: Tue, 04 Jul 2006 18:19:12 -0700
Exactly. And next time, don't run as local administrator, and the virus/spyware won't be able to screw with ICF. t On 7/4/06 7:39 AM, "Valdis.Kletnieks () vt edu" <Valdis.Kletnieks () vt edu> spoketh to all:
On Mon, 03 Jul 2006 15:16:23 PDT, Bob Madore said:The first problem of course is the firewall or internet security suite --- remove that and all should be OK again.You mean "all should *look* OK again".A spyware and virus have the ability to perform this same problem.And if the corruption of the firewall is due to spyware or a virus, fixing the firewall doesn't remove the actual malware, and as a result, things are most certainly *NOT* OK. You have gotten rid of the patient's fever, but the bacteria is still present. Nuke it from orbit and reinstall. It's the only way to be sure.
------------------------------------------------------------------------------ This List Sponsored by: Black Hat Attend the Black Hat Briefings & Training USA, July 29-August 3 in Las Vegas. World renowned security experts reveal tomorrow's threats today. Free of vendor pitches, the Briefings are designed to be pragmatic regardless of your security environment. Featuring 36 hands-on training courses and 10 conference tracks, networking opportunities with over 2,500 delegates from 40+ nations. http://www.blackhat.com ------------------------------------------------------------------------------
Current thread:
- suspicious firewall rules in WinXP firewall belka (Jul 03)
- Re: suspicious firewall rules in WinXP firewall killy (Jul 03)
- Re: suspicious firewall rules in WinXP firewall Harry Hoffman (Jul 03)
- RE: suspicious firewall rules in WinXP firewall David Gillett (Jul 03)
- Re: suspicious firewall rules in WinXP firewall kent crispin (Jul 03)
- Re: suspicious firewall rules in WinXP firewall Bob Madore (Jul 03)
- Re: suspicious firewall rules in WinXP firewall Valdis . Kletnieks (Jul 04)
- Re: suspicious firewall rules in WinXP firewall Thor (Hammer of God) (Jul 04)
- Re: suspicious firewall rules in WinXP firewall Bob Madore (Jul 03)
- Re: suspicious firewall rules in WinXP firewall Jamie Riden (Jul 03)
- <Possible follow-ups>
- RE: suspicious firewall rules in WinXP firewall Darren Clarke (Jul 03)
- Re: suspicious firewall rules in WinXP firewall jimm22222 (Jul 03)
- Re: Re: suspicious firewall rules in WinXP firewall shenba_rake (Jul 04)