Network Shield is a protection against known Internet worms/attacks. It analyses all network traffic and scans it for malicious contents. It can be also taken as a lightweight firewall (or more precisely, an IDS (Intrusion Detection System).
Network Shield protects you from internet worms that spread themselves via various security holes in your system. Typicaly these kind of viruses don’t infect files but instead they attack running processes on your PC (either Windows components or some server programs like SQL Server, IIS etc.). These kind of attacks are not easily catched by ordinary antivirus during file or mail scanning. It is not a duplicate work with Standard Shield.
Basically, it covers all Internet worms. Such as Win32.CodeRed, Win32.SQLSlammer, Win32.Blaster, in32.Welchia (Nachi) and Win32.Sasser.
Messages like:
Network Shield: blocked “DCOM Exploit” - attack from 81.178.115.162:135/tcp
are due to the RPC/DCOM exploit, which is a vulnerability that allows an attacker to gain access to the destination machine by sending a malformed packet to the DCOM service. It uses the RPC TCP port 135.
Which firewall do you use?
And, most important, is your operational system updated?
Excuse me for my english, I translate the texts through electronic translator.
Except AVAST 4.7 Home Edition no other antivirus of the programs and firewall on my computer are not installed.
The Renovations Windows XP HE were not produced since 2003. My internet traffic very costly so I can not constantly update its operating system. You think that this is somehow connected with these attack and you will advise update my operating system?
Well, you’ll have DCOM attacks if you don’t use a firewall. avast is not a full firewall, just block very few kinds of attacks, like these ones.
If you had your Windows updated, you won’t see these attacks as they’re due to a Microsoft unpatched system. If you want (and find a Russian version), I’ll suggest Autopatcher (http://www.autopatcher.com/).