Howdy doodly. I'm new here.
I have recently been under attack by various strains of digital vermin..
First W32.Gaobot copies itself into many *.SPL files on my \windowsxp\system32\spools\print\*.SPL
And then the printer started printing garbled junk of about 2 lines , then the next paper, garbled 3 lines, next paper.. it's the first virus I've heard of that destroys the print-paper of the user.
Then I got the infamous W32.Blaster which my Norton AV killed.. using autoprotect, BUT EVEN THEN, the blaster was able to carry out its RPC-mojo and initiate a reset of my system - like it was its last dying spasms of violence..
But it didn't get installed, I've checked regedit and processes..
My computer is currently cleaned of viruses.. but since I seem to get these viruses over and over again, it occured to me that even if I have a hardware Gateway/Firewall, it doesn't mean that it will work perfectly, so here I am..
Now.. my personal network is setup as a wireless lan. From the ADSL-modem to an officeconnect 3com 11b to the rest of the house. This wlan router has a firewall.. YET, I carried out the Security Response scan on symantec.com , and it seems my hardware firewall does NOT seem to block ports 135 nor 1025..
I've blocked port 135 by running dcomcnfg.exe , going to "component services" , Computers, My Computer, rightclick-properties -> default properties -> unchecked "Enable Distributed COM on this computer"
Now, that's fixed.. I only have one gaping securityhole left, Port 1025.
How do I block it? My Officeconnect firewall does not give me any option of blocking specific ports.. it only seem to work the other way around. It blocks EVERYTHING , and I have to OPEN the ports that I DONT want it to block.. except it doesn't seem to block port 135 and 1025
I am certain I haven't added these ports anywhere on the firewall.
Any ideas on blocking port 1025? (without installing a bloaty software firewall)
