As one of the previous links mentioned this was a DCOM RPC buffer
overflow exploit the fact that the firewall was disabled may have
allowed the system to be attacked by opening the port used by DCOM RPC.
Maybe nothing to do with downloading an infected .exe rather leaving MS
network facilities open to attack which then infects the .exes.

wrote:

In misc.survivalism Gunner wrote:

My $#@!! kid turned off the firewall (again) and downloaded something
with a nasty malware called W32/Gaelicum.A


Ummm.....What does the firewall have to do with anythng? Why would he
have to turn off the firewall to download something?

And the REAL question is: Why didn't your antivirus software pick it up
before it couls do any damage? Didn't you have the latest definitions
installed?

With all due respect, I doubt that this is your kid's fault.