SitePoint Sponsor

User Tag List

Results 1 to 24 of 24

Thread: Infected!

  1. #1
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Infected!

    I just ran a virus scan and found a Nimda virus on my computer. So, I quarantined it. However, my browser is having problems. Sometimes when I close it, it performs an illegal operation and screws up my computer. Usually causing me to restart. I am using Internet Explorer 5.5.

  2. #2
    Digital Warrior Renegade's Avatar
    Join Date
    Nov 2000
    Location
    Portland, OR
    Posts
    480
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quarentineing the virus does not remove it. You should clean your system.

    Get Norton or Mcafee antivirus installed on your machine and scan every file. even if it takes several hours, its worth it.

    For more info on nimda, check out this site:

    http://www.norton.com/avcenter
    --There's my 1.5 cents, now where is my change!?!?

  3. #3
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    You will have to download a special cleaning tool for the particular virus from one of the antivirus sites to get rid of it.


    affordable website design

    :: sydney australia ::

  4. #4
    Xbox why have you forsaken me? moospot's Avatar
    Join Date
    Feb 2001
    Location
    Clearwater, FL
    Posts
    3,615
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    If you are using windows, make sure you get all the necessary patches from M$.

    Windows Update

    and subscribe to their Security Bulletin

    http://www.microsoft.com/technet/tre...tin/notify.asp

    And look around their security site

    http://www.microsoft.com/technet/tre...ty/default.asp

  5. #5
    Prolific Blogger silver trophy Technosailor's Avatar
    Join Date
    Jun 2001
    Location
    Before These Crowded Streets
    Posts
    9,446
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    on top of the above things, please take it upon yourself, for your own sake and everyone you associate with electronically, to make sure you keep your virus definitions up to date. Symantec's LiveUpdate that comes with Norton's Antivirus and also the DAT engine update with McAfee both have features that automatically check for new virus definitions and even automatically download them. Personally, I like to know when I'm downloading things so I turn that featurew off. But you had better believe it checks for new updates and tells me when they are available. In addition to the automatic update, I also manually check now and then as you never know when a program isn't going to work right anymore. Please keep yourself updated.

    Sketch
    Aaron Brazell
    Technosailor



  6. #6
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I have Norton AntiVirus 2002 installed and running. I just scanned EVERY FILE (full system scan (including boot records)). Also, the virus seems to have screwed up Apache on my computer. Gonna have to reinstall. The last virus that I had, MTX.EXE (on the most dangerous list in Norton) replaced an important windows executable with a virus on my computer.

  7. #7
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    As I said- download and run the special cleaning tool to get rid of it.


    affordable website design

    :: sydney australia ::

  8. #8
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    But the virus is already deleted. Do you mean that I can still run the cleaning tool?

  9. #9
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Yes, just deleting the file doesn't clean it from your system.


    affordable website design

    :: sydney australia ::

  10. #10
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    No, the file was removed during a Norton Full System Scan.

    Edit: I didn't remove the file manually

  11. #11
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Yea but you STILL need to run the cleaner.


    affordable website design

    :: sydney australia ::

  12. #12
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Obtain a copy of the Fixmtx.exe tool, and save it to the Windows desktop.
    Start the computer in Safe mode.
    Run the Fixmtx.exe tool from an MS-DOS window.

    I don't know how to do the other two steps...

  13. #13
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Did you get the fix from Symantec? You don't need to be in DOS for that one.


    affordable website design

    :: sydney australia ::

  14. #14
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I ran the file. A DOS prompt blinked and disappeared. Now what?

  15. #15
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Did you get the fix from Symantec? You don't need to be in DOS for that one. [/QUOTE]

    GET THE ONE FROM SYMANTEC or else you need to restart your computer in safe mode open a dos window and type in the path to the fix tool.


    affordable website design

    :: sydney australia ::

  16. #16
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Yeah, I downloaded the fix from www.norton.com

  17. #17
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Oh well. I don't remember ever having to do it in a dos window.
    Didn't you say it was the Nimba Virus?? It sounds like you downloaded the W95.MTX Fix Tool

    There are two Nimba A & E.
    The removal tools for these are here http://www.symantec.com/avcenter/tools.list.html and you don't have to run them from a dos window.
    Last edited by tommatthews; Nov 18, 2001 at 16:29.


    affordable website design

    :: sydney australia ::

  18. #18
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    The fact that I got infected with Nimda happened after I got infected with MTX (much more dangerous). However, the damages from MTX were much more severe, it damaged Windows executables beyond repair. So, lets repair MTX damages first. I already have the tool. How do I restart in Safe Mode?

  19. #19
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Restart the computer and when it is restarting press F10 or F1 or ESC depending on your computer. You will get a list of options - select Safe Mode.

    You have to press the right key before windows starts up so you may have to do it a few times to work out which one works for your computer.


    affordable website design

    :: sydney australia ::

  20. #20
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Sounds unsafe...

  21. #21
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    It is a pretty standard procedure. Run the Nimba one through your system first to see if that helps.


    affordable website design

    :: sydney australia ::

  22. #22
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Ok, screw MTX, The Nimda screwed up internet explorer. However, Norton doesn't have a removal tool for W32.Nimda.enc(dr).

  23. #23
    Net Senior Citizen tommatthews's Avatar
    Join Date
    Apr 2001
    Location
    Sydney Australia
    Posts
    869
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Uhhh... is this the one?
    W32.Nimda.E@mm


    affordable website design

    :: sydney australia ::

  24. #24
    Spam Can Kill!!! Disk-t's Avatar
    Join Date
    Jul 2001
    Location
    n/a
    Posts
    214
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    http://securityresponse.symantec.com...dyn/24365.html

    Oh yeah, whenever I turn off internet explorer (the browser window, close it), it performs an illegal operation and at times, cause all programs to perfrom fatal errors upon launching.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •