Close TCP port 135 and also other NetBIOS ports (135-139, 445 and 593)
- Monitor all activities on TCP port 4444 and UDP port 69
- Download and apply Microsoft’s Patch
- Download and run the Blaster Removal Tool from Symantec to clean your system

===============

- Microsoft’s patch: http://www.microsoft.com/technet/tre...letin/MS03-026
- Blaster removal tool:
http://securityresponse.symantec.com...oval.tool.html
- Microsoft Security Bulletin – DCOM RPC Vulnerability: http://www.microsoft.com/technet/tre...n/MS03-026.asp
- Microsoft RPC Model: http://msdn.microsoft.com/library/de..._rpc_model.asp

Security Patches for M$BLAST
------------------------------------------
For Windows NT Server 4.0 and WorkStations

http://download.microsoft.com/downlo...a/Q823980i.EXE

Windows NT Server Terminal Service Editions

http://download.microsoft.com/downlo...9/Q823980i.EXE

Windows 2000(Server, Professional, DataCenter)

http://download.microsoft.com/downlo...80-x86-ENU.exe

Windows XP(32 Bit)

http://download.microsoft.com/downlo...80-x86-ENU.exe

Windows XP(64Bit.For Intel Itanium Based Systems)

http://download.microsoft.com/downlo...0-ia64-ENU.exe

Windows 2003(32 Bit.Server,Enterprise,DataCenter,Web)

http://download.microsoft.com/downlo...80-x86-ENU.exe

Windows 2003(64 Bit.For Intel Itanium Based Systems)

http://download.microsoft.com/downlo...0-ia64-ENU.exe

Enable a Internet Connections FireWall in Windows XP Professional, Windows XP Home Editions and Windows 2003 (All Editions)

Windows XP Pro

http://www.microsoft.com/windowsxp/p...orking/icf.asp

Windows XP Home

http://www.microsoft.com/WindowsXP/h...omenet/icf.asp

Windows 2003 All Editions

http://www.microsoft.com/technet/tre...e_firewall.asp