Blaster worm remover and source code ... - Security

Author	All Replies
JERMaCIDE Death Is Eternal...? join:2002-09-14 Vancouver, WA	reply to Name Game Re: Blaster worm remover and source code ... said by Name Game: So there JERM a CIDE, what is the source code on that symantec fixer upper you download from their site and then zipped up to troll this thread that is not even about it. If you check the top of this DSLR forum you will see a link to download that tool. I see you have one How do I know the one you zipped is safe and not your own concoction??? Wow! thanks for the new ***hole. I received this from my father in an e-mail, it is the same one that someone posted a link to before, only you have to go around looking for it with their link. I just thought it would be handy to direct link it. I simply came here looking to help and post this. Since this was one of the two posts about the worm on the front page and the other was about the anatomy of the worm and this about a removal tool, I posted here. Sorry I didn't look above the thread for the links. We can't all be on top of it all the time. I didn't realize how offensive I could be with my six words that I posted. I know most people here already have everything well in hand, but maybe someone not as knowledgeable about this stuff could use Symantecs simple little tool. So I made a simple little post. Six words long. Sorry for offending you so much. For my own sake, I don't "troll" any of the forums here. I am here everyday, reading and replying. I think they call that a member.
	to forum · permalink · 2003-08-13 20:19:36 ·
Andreas Haak Premium join:2003-03-07 Austria	reply to Vampirefo >This is A, not b same file, different name, Why do you >think TH can catch it? Cause it scans the process memory. Try to scan it on demand. Its undetected. >cause it's the same file, your program misses it, no hex >editing was done, oh well. In fact it was. Do a file compare . >This pic just shows how Stinger is able to detect it, it's >the same worm, Stinger uses signatures for detection, not >just file name. Stinger uses signature + unpacking. >If you want the file, give me an e-mail address to send it >to, hopefully, you will then add signature, I doubt it >though. haak.a@yaw.at - please inside a password protected ZIP file. -- Denn wenn man etwas liebt, was man eigentlich kaum bekommen kann, was unerreichbar fern erscheint, wird man ein Stück traurig. Wird man ein Träumer. Oder wird man ein Radikaler. Oder ein radikaler Verwirklicher seiner Träume ... .
	to forum · permalink · 2003-08-14 04:09:55 ·
Andreas Haak Premium join:2003-03-07 Austria	@vamp: »New Blaster variant Or do you think you are more expert than Kaspersky?
	to forum · permalink · 2003-08-14 04:28:01 ·
Andreas Haak Premium join:2003-03-07 Austria	reply to Andreas Haak @vamp: And the variant you mentioned: »www.f-prot.com/virusinfo/descrip···stC.html There has to be a binary diffrence between the file. Otherwise it would be unable to detect certain variants g.
	to forum · permalink · 2003-08-14 04:33:14 ·
Martinus Premium join:2001-08-06 EU	reply to Andreas Haak Yo, Andreas. Talking about trojans... Whatever happened to that freeware tool you were developing, a² ? Been to your a-2.org site several times, have seen several launch announcements and lately have seen a server startup timetable ??. Hope that tool doesn't end in the vapourware drawer. Cheers Martin
	to forum · permalink · 2003-08-14 07:15:02 ·
Andreas Haak Premium join:2003-03-07 Austria	reply to Andreas Haak No it doesn't. YAW and a² shared the same server. But YAW need now its own one. So there are many delays seufz. In fact I hope its released within this week. The setup is already ready. So if someone really want a² free just email me at haak.a@yaw.at . -- Denn wenn man etwas liebt, was man eigentlich kaum bekommen kann, was unerreichbar fern erscheint, wird man ein Stück traurig. Wird man ein Träumer. Oder wird man ein Radikaler. Oder ein radikaler Verwirklicher seiner Träume ... .
	to forum · permalink · 2003-08-14 08:28:45 ·

Buddel5 Premium join:2003-08-12 Germany	said by Andreas Haak: ... But YAW need now its own one. So there are many delays seufz. BTW, is it possible for you to say when YAW 4.0 will probably be released?
	to forum · permalink · 2003-08-14 09:52:52 ·
R2 R Not Premium,MVM join:2000-09-18 Long Beach, CA kudos:1	reply to Andreas Haak Andreas - if I run your tool -- and keep it running -- is port 135 "closed"? Thanks.
	to forum · permalink · 2003-08-14 10:41:26 ·
Andreas Haak Premium join:2003-03-07 Austria	reply to Andreas Haak Nope. It doesn't shut down any service. So its still open. Its no kind of firewall.
	to forum · permalink · 2003-08-14 13:54:57 ·
Buddel5 Premium join:2003-08-12 Germany	reply to Andreas Haak No answer to my YAW question? Does this mean that this program is very unlikely to be released in the near future?
	to forum · permalink · 2003-08-14 14:17:56 ·
R2 R Not Premium,MVM join:2000-09-18 Long Beach, CA kudos:1	reply to Andreas Haak Thank you.
	to forum · permalink · 2003-08-14 15:47:51 ·

Broadband Tech > Security > Security > Blaster worm remover and source code ...

Re: Blaster worm remover and source code ...