*VIRUS* Please help!

Remove all ads!

Even as I'm typing this message, my stupid computer is being flooded by a virus or maybe multiple viruses! My computer is all but ruined already. If anyone knows of some good software or some way to quickly get rid of the infections, Please inform me. (tried to put in a mad graemlin but that link stopped working)

NOTE: For those of you who have the worm, if ejsmith's link won't work(because of the virus) just type it into your browser's address bar.

[ August 12, 2003, 02:10: Message edited by: Kovalis Darkfire ]

 

Yeah, it's another worm.

http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.worm.html

I dunno what to say.

Good security habits are only appreciated in theory.

 

Argh, I got it too I think. Thanks for the link EJ

 

Thanks VERY much for the link! When I try to install it though it says i need to download and install "Java(TM) Runtime environment" and I can't find that when I go to the website.

[ August 12, 2003, 02:32: Message edited by: Kovalis Darkfire ]

 

That link is good. It's got the AV stuff, and the msft article.

 

Okay, now talk slowly, in small words and pretend that I'm an idiot (which I am )

I am playing online for the first time in my life. What exactly do I need to do to have a safe experience out there? Right now I'm having nightmares of Worms and Trojans.

Until now I guess I thought I was safe, you never think it could happen to me ... until its too late.

(this question sponsered by DUMB Gamers International)

 

Norton is a very good anti virus program.

 

I have my own little fantasy world that I live in. So what works for me in my little fantasy world, my not be compatible with yours.

Anyways, what I do.

1. I used to dualboot with Mandrake. XP for games, Linux for the 'net. Now I just use straight Linux on my Linux box. Err, laptop. Linux Laptop.

2. Anyways, with that out of the way, let's say you just repartitioned and formatted. I pull my net connection before I even put the boot cdrom in the drive. I turn of QSVP, Netbios, and file/printer sharing. I disable UPnP from the hardware profile; along with server, browser, help and support, gateway, background transfer/upload, and quite a few others like Wireless. There's other tweaks with redirects and SYN, but that's not critical.

3. I use Zonealarm. Yeah, things can still sneak through http, but it's better than nothing. Although, I think Blackice is a step below nothing. You can block off all your ports, or just let Zonealarm catch stuff for you.

4. Block svchost.exe from acting as an "internet server". Let services.exe use the intra. Don't let Explorer have any kind of access at all. Or Windows Media Player, for that matter.

5. Completely castrate IE. No cookies. No ActiveX. No Java or Javascript. No plugins. No playing in the sandbox. No Flash. Nothing. It'll show http, and that's about it. Maybe some frames.

6. Use Mozilla, Netscape, or Opera, or something other than IE for your Java/Script/Cookie stuff.

7. Don't use windowsupdate. Go to Symantec and hit the Q-articles from there, or find them yourself in the download section of msft. Use the sort-by-date feature to keep track of what you have, and don't have. Save everything to disk. Even if it's incorporated into a service pack, keep the individual q-patches back in a subfolder. Install the patches, manually. You can make a batch script and use qchain to automate installing them.

8. Run something in the background. Symantec, Mcafee, Panda. Whatever. Turn it off if you want the speed, but before you run a program or install something like drivers or whatever, flip it back on and do a manual scan beforehand. Things can still slip though; just not easily.


And the most important thing above everything else:

9. Read. Read about Kazaa and all it's security issues. Read about Flash and Realplayer. Read about IRC or Bearshare or Bittorrent or Waste or whatever else it is that you use on a consistant basis. Read about Zonealarm and Norton's. Don't go to the official website for your information; go to the hacker (as in I-hacked-out-a-patch-for-it) sites. The people that run packet loggers to catch spyware and trojans and DDoS games.

And be on the watch for the kinds of things that are KNOWN to be able to slip through. Symantec has flat out said that trojans aren't caught by NAV, unless they "are virulent in nature". Zonealarm won't stop you from running a virus, or stop it from unloading and deleting Zonealarm from the startup folder; it also won't block kernal level functions of Windows.



Keep everything on a need-to-know basis, and use the Two-Person-Integrity rule.

 

So this one is dangerous to XP/NT/ME only, right?

Thank god I'm stuck with 98.

 

Is this that LoveSam worm going around? We had a warning about it on the Radio. But they didn't say much else.

 

TV said, it's a worm which is supposed to bring down the microsoft/windows-support page on 15 (or 16 ?) august through mass spamming of E-mails.

 

Nah, AFAIK its an DDOS attack, not an email attack.

 

Well, I guess they're DoSing the Symantec site right now. Or it's getting a lot of traffic.

Anyways, I dunno about the java thing. You're downloading their standalone cleaner? I dunno about that one. To be honest, I've never faced up against a serious virus or worm or trojan. There's been some tiny little odd trojan's in the past, but the firewall has always caught them (and notified me, which really boils down to a cyber-version of Natural Selection ).

 

Okay, I had it fixed, ran virus scan and things were going well. Now it says that

My questions:

How do I get to Windsows Setup if I can't get the computer started (it gets the error screen during boot)

The computer came pre-loaded with Windows XP, I don't think I got a copy of the original disk.

Any ideas?

 

Well to get in Windows you can try running Windows in the safe mode

Usually you can get there by pressing F8 while the computer is starting and selecting the safe mode/

 

If you bought your computer there must be a cd-rom of windows but i'm afraid that this is a recovery disk, which means the moment you will start booting from this cd you will able to kiss your data goodbye. The file you are missing is the intepretor between the windows and your vga driver. You can find it in any other computer with windows. Just choose the same version got to your friend that has them copy this to a floppy disk and then go to your pc and boot from a startup disk (preferably windows 98 se) and copy the file to the location it said or better yet the location you found it. I hope this will help you

 

For those who still haven't found the proper tools to kill the worm, get it here.

 

AARRGGH! My computer is ruined because i couldnt find java!

 

Type msjava in yahoo search to find microsoft java or better yet go to sun Sun java automatic download and get the sun java. Hope i have helped

 

Ugh, I just got my computer back up and running after being attacked by the Worm. I ended up having to reformat my hard drive twice...but at least I didn't have to pay a lot of money to have a PC repair guy come out to my house and fix it. Now all I have to do is install BG2 and all the mods I just installed less than a week ago...