Re: Dcom Exploit

[I meant to ask, "Where is Avast finding this?"]

If you can post a few links to pertinent threads in that forum, I'd appreciate it.

Is the Windows Firewall or a third-party firewall enabled?

What anti-spyware applications might be installed (other than Defender)? What third-party firewall (if any)? Was Avast and/or any of these other applications running when you installed SP3?

How did you install SP3 (e.g., manually; via Windows Update)? Was the machine running WinXP SP1 or WinXP SP2 before SP3 was installed? Was the machine fully patched before you installed SP3? Had you just reinstalled Windows prior to installing SP3?

Can you successfully reach and scan for updates at Windows Update website? Are any updates offered? If so, can you install them successfully?
--
~PA Bear


LeeG wrote:
<paste>
Not yet. This exploit seems to coincide with the installation of SP3. Up
until now I had never had this exploit happen. I have been running Avast
for quite a while now and this is the first time it has flagged this
exploit.
</paste>
Forgot to mention. I have already looked at the avast forum and i can only
find explanations and possible cures and have also tried one and currently
monitoring the solution. I am curious has to why the change?

"PA Bear [MS MVP]" wrote:
/Where/ is Avast find this?

Have you posted about this in Avast User Forums?
http://forum.avast.com/
--
~Robear Dyer (PA Bear)
MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
AumHa VSOP & Admin http://aumha.net
DTS-L http://dts-l.net/


LeeG wrote:
In addition could this be being caused due to upgrading to SP3? I know
this
type of problem was addressed with sp2 but this seems to coincide with the
upgrade to sp3! I have tried a couple of ways to close down the DCOM port
135 but it is still showing as open. Anyone know any answers/solutions.

My Avast online scanner keeps flashing up with a Dcom Exploit
88.107.???.???:135 /tcp (the ???.??? keeps changing. 251.156, 115.154
being two of the combinations.) Am I being targeted by someone.

.

Relevant Pages

  • Re: windows vista will not allow me to update my computer with the lat
    ... If you disable the third-party firewall, make certain that you enable the Windows Firewall! ... How to troubleshoot Windows Update, Microsoft Update, and Windows Server Update Services installation issues: ... You cannot install some updates or programs ...
    (microsoft.public.windowsupdate)
  • Re: Windows Update screen is blank
    ... Temporarily disable real-time protection by your anti-virus and/or anti-spyware applications and/or any third-party firewall before attempting to install the update. ... If you disable the third-party firewall, make certain that you enable the Windows Firewall! ... How to troubleshoot Windows Update, Microsoft Update, and Windows Server Update Services installation issues: ...
    (microsoft.public.windowsupdate)
  • Re: System restore and windows update blank
    ... This will look for damaged or missing Windows system ... You might have to go to Windows Update and download all updates again. ... Be sure to use a firewall (either XP's own or a third-party firewall) ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Smeared screen = spyware?
    ... > Windows Update, but they haven't picked up anything. ... Step four - download and install the latest video card driver. ... NVidia Video Card Drivers ...
    (microsoft.public.security)
  • Re: SVCHost keeps crashing
    ... I'd mentioned previously that I had run virus scanning and anit-spyware ... installed after device drivers and windows patches. ... So the machine is not fully patched at Windows Update? ... I didn't do a repair install. ...
    (microsoft.public.windowsxp.general)