Avast Network Shield: Blocked DCOM Exploit
If you got a warning from Avast’s Network Shield indicating that it has blocked a DCOM Exploit attack from an IP address, you’ve come to the right place. Continue reading to know more about the Network Shield DCOM Exploit warning and what to do about it.
What is DCOM?
DCOM (Distributed Component Object Model) is a mechanism that allows software on your Windows computer to communicate over a network.
Does DCOM make my Windows computer vulnerable?
It does. It is enabled by default in every Windows installation, and very often, it is exploited by viruses and worms. The loophole could be used by any attacker to gain control over your system.
Is there a patch that solves this vulnerability?
Yes, there are two. First, download DCOMbobulator to see if you need to apply the patch. If yes, install this and then this.
Can DCOM be disabled on Windows?
Yes, it can be. You can use the aforementioned DCOMbobulator to disable DCOM on your Windows computer.
Otherwise, you’ll have to follow the steps mentioned below:
- Go to Start > Run, type ‘regedit’ and hit Enter
- Go to HKEY_LOCAL_MACHINE\Software\Microsoft\OLE
- Change the value of EnableDCOM from Y to N
- Restart Windows
You can also disable DCOM in Windows by following these steps:
- Go to Start > Run and type dcomcnfg.exe
- Expand ‘Component Services’ which can be seen under ‘Console Root’
- Open ‘Computer’
- Right click on ‘My Computer’ and choose ‘Properties’
- Click the ‘Default Properties’ tab
- Uncheck the option ‘Enable Distributed COM on this Computer’
- Restart Windows
That’s it. You’ve disabled DCOM on your computer.
What about Avast’s “Network Shield: Blocked DCOM Exploit attack” warning? How to get rid of it?
There’s probably a virus or worm that’s lurking around in your computer. Do a full scan. That should solve the issue.
Also, install a free firewall software which could prevent all such communications in the first place. That would do. If you’ve got any questions, please ask them in the comments section below.
