PDA

View Full Version : Virus Warning (Everyone READ)


TAZTG
12th Aug 2003, 03:07 PM
Its all over the news about a new Virus, named LoveSand something like that. Its seems that is what DEV had yesterday. Its cause's your Rig to Shutdown & Restart, run real slow are other strange things. If you haven't already done so go an Run Windows Update for the Security Patch. Its been out a couple of weeks already. If you have it already update your AntiVirus Software and try to get rid of it or like Dev run System Restore and go back to a good date. (Make sure to get the updates)

Bonecrusher
12th Aug 2003, 03:21 PM
I thought the updates are what gave it to you...

TAZTG
12th Aug 2003, 04:32 PM
Negative, A group of hackers got together to launch this strand of Virus against MS. It ssuppose to activate on Sat. and spam the hell out of MS or something.
Here's a MS Link to Read:
http://www.microsoft.com/security/security_bulletins/ms03-026.asp

Check out Nortons or McAfee's site for further info.

Devastator
12th Aug 2003, 07:50 PM
System restore does not work... it kept doing it but I was OK for a while

TAZTG
12th Aug 2003, 09:15 PM
System restore does not work... it kept doing it but I was OK for a while
Update your Antivirus and see if it can detect and remove the virus. Check out the Mcafee, they tell you what to look for and how to remove it.

If not a Reformatting and reinstalling is a sure fire way to clean ones system up. Its a pain in the arse. Keep us posted Dev..

Devastator
13th Aug 2003, 05:54 AM
Virus i got is called MS Blast or W32.blaster.worm

There is a tool over at symantec to remove it. They suggest to temporarly shut down system restore because it might restore an infected file.

here is the link for the tool:
http://securityresponse.symantec.com/avcenter/FixBlast.exe


Here are other names for that virus:
W32/Lovsan.worm [McAfee], Win32.Poza [CA], Lovsan [F-Secure], WORM_MSBLAST.A [Trend], W32/Blaster-A [Sophos], W32/Blaster [Panda]

I yhink a new one jus got out this morning:
W32.Randex.E [Norton], IRC-BBot [McAfee], WORM_RPCSDBOT.A [Trend]

W32.Randex.E is an Internet Relay Chat (IRC) Trojan Horse that allows its creator to control a computer by using IRC. It is also a worm that can use the DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026) to spread itself.[Norton]

Be careful guys

Devastator
13th Aug 2003, 04:37 PM
Puter up and running great for 24 hours now...