Trouble started last night as I was logging on to RennList.
Call me stupid, but I had never installed anti virus software. Tonight my son was watching Tech TV and guess what virus they were alerting everyone to. It doesn't really affect the computer until you are connected to the internet, after a few minutes or just a couple in my case, you get a warning that you have lost contact and your system (computer) will shut down in 60 seconds (timer displayed) then it shuts off completely. He said the warning they showed was just like the one we were getting along with the other symptoms. Went to Wal-Mart, bought Norton, installed it and found the 5 infected files with the "WIN32.KLEZ" virus. Don't know how it is spread, but it is out there. Thought I would let you know.




Anthony Tate
79/928 Silver Metallic
(Virus Free)

 

It's actually called WORM_MSBLAST. You may still need to do some work to exorcise this demon. I suspect the WIN32.KLEZ was another virus on your system.

Go to www.trendmicro.com to get the free fix. The virus is listed on their front page.

By the way....don't feel too bad. I have anti-virus software installed and it got right through and nailed my laptop last evening, plus one of my firm's satellite offices also got hit. The virus slips in through holes in Microsoft (through an open port) which require a service update patch to close. The patch is free at Microsoft's website.

You don't have to download anything to get it. The virus causes infected computers to constantly scan the internet for random IP addresses, looking for computers that still have the open port (i.e., those that haven't updated with the Microsoft patch).

 

Thanks Dave! I got hit with that too.

 

I suppose I shouldn't complain...
Although I have XP loaded, I haven't "installed it" if you know what I mean. Especially since the last attack -was told it was a weakness in XP- I have 98 with the 2000 upgrade running. Unfortunately, the restore feature is imbedded and somewhat inaccessable. All of the patches are foiled because of the scrambled registry files, and associated dll's.
Then again, Texas Department of Transportation was hit but our Automation people spent most of the day sorting things out.
The Maryland State Police were shut down at least thru early morning.
I'm pissed because I saved virtually every picture of 928's, modifications sites, pictoral repairs, and Ebay sales. All gone!!!
Goes to disc from now on as a back-up.

 

Thanks Dave, I downloaded the Windows XP Security Patch too. Set up two firewalls and can't believe I got WORMED!



Anthony Tate
79/928 Silver Metallic

 

Yep,
Got me too!

W32.Blaster.Worm

I downloaded the fix from Symantic but for some reason it fails to complete?
I run Nortan and had bypassed the auto-protect feature.

Also tried the fix in Safe mode - still nogo?

Any ideas?

 

We got it at work yesterday. God it sucked. I spent like 4 hours playing with the computers untill microsh_t released a patch. My win2k machince corrupted from it so i installed redhat 9. The new redhat rules it found out IMB laser printer connected to a win98 machine with a usb port lol.

 

Its a denial of service attack. It attacks microsofts computers. It has a message in it that tells bill gates to stop making money and fix his software. lol or something like that

 

Actually, Microsoft released the patch and the security notice on July 16, 2003 in response to a tip they received from some Polish software geeks. in addition the Department of Homeland Security advised that admins around the globe patch the machines before this vunerability was exploited. Unfortunately, business admins didn't listen and home users generally do not patch their machines frequently enough.

Want proof? Go to Windows Update and see how many Service packs, patches and critical updates you don't have . Bet its more than 20 in most instances.

For those of you with broadband connections, even if you fix this worm and patch the machine, you may still have issues with any functions that require certain services called RPC's. Things like cut and paste may not work from time to time. The cure for this is to set up a firewall (hardware or software) that filters what comes in from outside your local machine. In fact, that is a GREAT idea anyway, not just to fix this problem.

Most of this kind of stuff is preventable.
PPPPPPP(Proper Prior Preparation Prevents P*ss Poor Performance)

 

Shawn:

Good idea about the firewall. You can set mine up next time you're over my place!