From: Charles Church (cchurch@wamnet.com)
Date: Tue Aug 12 2003 - 15:37:04 GMT-3
Not meaning to flame anyone, but why the hell are you only installing W2K
SP3 now? It's been out a year. With all the security holes that MS
products have, whether you're responsible for 1 machine or 1000, you really
need to be checking for (and installing) critical updates once a week at a
minimum. There's really no excuse. Us Cisco people shouldn't have to put
up with this crap because the server and workstation people aren't keeping
up on security holes. Sorry. Rant over.
Chuck Church
CCIE #8776, MCNE, MCSE
Wam!Net Government Services
13665 Dulles Technology Dr. Ste 250
Herndon, VA 20171
Office: 703-480-2569
Cell: 703-819-3495
cchurch@wamnet.com
PGP key: http://pgp.mit.edu:11371/pks/lookup?search=chuck+church&op=index
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
John Smith
Sent: Tuesday, August 12, 2003 12:10 PM
To: MADMAN; Snow, Tim
Cc: 'ccielab@groupstudy.com'
Subject: Re: Virus Alert - W32.Blaster.Worm
I got hit with it as well. I was wondering what this msblaster.exe was doing
in the taskmgr.... a google search brought me to realize it was a worm.
I updated Win 2K Pro to service pack 3 added the MS fix, then went to
symantec, got the latest virus sig file ( which started to tell me 30 times
I had the worm... ) and used their exe to fix the problem. They got rid of
the worm, the msblaster.exe, fixed the registry settings.
Now all I need to do is get my taskmgr working again, cause I can't see my
the buttons to change to view the utilization and can't shut it down without
killing the taskmgr process (luckily the only screen available)
MADMAN <dave@interprise.com> wrote:
Yes I was fortunate enough to get paged yesterday evening regarding
this. Here is some more info for those so inclined:
Dave
Snow, Tim wrote:
> Anyone else going through the W32.Blaster.Worm?
>
>
http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.worm.htm
> l
>
> Big pain in the ....
>
> Tim
>
>
> Timothy Snow
> CCIE #12042
> EDS - Network Operations
> MS 3B
> 1075 W. Entrance Drive
> Auburn Hills, MI 48326
>
> * phone: +01-248-754-7900
> * mailto:timothy.snow@eds.com
> pager: 888-351-4584
> www.eds.com
>
>
> _______________________________________________________________________
> You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
-- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367"Government can do something for the people only in proportion as it can do something to the people." -- Thomas Jefferson
This archive was generated by hypermail 2.1.4 : Tue Sep 02 2003 - 18:53:57 GMT-3