Borked!
<div class="IPBDescription">What does that mean, anyway?</div> First off, my apologies for posting this here.
It would seem as though I cannot start a topic within the off topic forum, but I CAN start one here. (I would appreciate it if this was also moved to OT.)
That was my first problem, my second problem is this;
I was browsing the forums, listening to winamp, chattign on AIM as usual when my computer starts working extremely hard for an unknown reason. This goes on for roughly 5 minute before I am confronted with this image.
<img src='http://myweb.cableone.net/rtmm1977/mikes/moo.jpg' border='0' alt='user posted image' />
My Question - Is this a possible sign of bad things to come? Possibly a virus? Or maybe just a random act of randomness by a confuzzled computer fresh from a recent format, struggling to regain its identity in this harsh cyber world? (O_o)
Thanks in advance for any help.
Any Mod - please PM me why I cannot post in the OT forum. A simple "No bloody clue." would even suit me. I'm usually content just replying to already created topics.
Edit: Should probrably make it clear what its like when I attempt to post in OT - I get nothing. It just goes to a completely blank page with a black background. No message, no sign of life on other planets, no hint or indication as to what the heck is going on. Just black nothingness.
2nd Edit: Darn spelling errors.
It would seem as though I cannot start a topic within the off topic forum, but I CAN start one here. (I would appreciate it if this was also moved to OT.)
That was my first problem, my second problem is this;
I was browsing the forums, listening to winamp, chattign on AIM as usual when my computer starts working extremely hard for an unknown reason. This goes on for roughly 5 minute before I am confronted with this image.
<img src='http://myweb.cableone.net/rtmm1977/mikes/moo.jpg' border='0' alt='user posted image' />
My Question - Is this a possible sign of bad things to come? Possibly a virus? Or maybe just a random act of randomness by a confuzzled computer fresh from a recent format, struggling to regain its identity in this harsh cyber world? (O_o)
Thanks in advance for any help.
Any Mod - please PM me why I cannot post in the OT forum. A simple "No bloody clue." would even suit me. I'm usually content just replying to already created topics.
Edit: Should probrably make it clear what its like when I attempt to post in OT - I get nothing. It just goes to a completely blank page with a black background. No message, no sign of life on other planets, no hint or indication as to what the heck is going on. Just black nothingness.
2nd Edit: Darn spelling errors.
Comments
you should get a virus-scanner and never use ie again!!!
opera, firefox or mozilla are excellent browsers and have far less security problems
and ms-blast is a virus <!--emo&::nerdy::--><img src='http://www.unknownworlds.com/forums/html//emoticons/nerd.gif' border='0' style='vertical-align:middle' alt='nerd.gif' /><!--endemo-->
First, get the patch <a href='http://microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-026.asp' target='_blank'>Here.</a>
Then on your computer hit CTRL, ALT and DELETE and find MSBlast.exe in the running processes (under processes tab in Windows XP). End the process then go to your windows folder and to system32. If system32 is not seen, then it must be hidden so just type c:\windows\system32 in the address bar. Delete the msblast.exe file. Now the actual file itself is gone but, it was set to boot with your computer so next time you boot your computer, you would get a message saying that it cant find the file. But you can remove it from startup easily by clicking start - run and type msconfig. Click the startup tab and uncheck it. Now it wont be set to boot with the computer but it wont disappear from the list on its own so if you're like me and dont even like having it in the list, do the following instead!
Click start - run and type regedit. Now navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run and remove the string with the value msblast.exe. It should be called Windows Update or something similar!
Now hit the f5 key to refresh your registry. Close it and I recommend a reboot! Then when you reboot, go to <a href='http://www.windowsupdate.com' target='_blank'>http://www.windowsupdate.com</a> and download any security updates for your OS. The reason these stupid worms get out anyway is because people don't keep their OSes updated. Update it at least once a week.
In NS 2.01, someone could say that Fade hitboxes were borked.
1) Format. Twice. Then format again just in case.
2) But before you format ( <!--emo&:p--><img src='http://www.unknownworlds.com/forums/html//emoticons/tounge.gif' border='0' style='vertical-align:middle' alt='tounge.gif' /><!--endemo--> ), remember to download ZoneAlarm firewall. It's free and it's good enough for you. Burn it somewhere.
3) Install some OS, or use Knoppix -it doesn't require installing if you have enough RAM.
4) Install the firewall ASAP. Then update your OS.
5) Get Mozilla/Konqueror/Firefox/whatever as long as it isn't IE (the worst browser in the market).
Formatted.
Fixed.
Finished.
Almost what Caesar said. <!--emo&:p--><img src='http://www.unknownworlds.com/forums/html//emoticons/tounge.gif' border='0' style='vertical-align:middle' alt='tounge.gif' /><!--endemo-->
<a href='http://people.kldp.org/~eunjea/jargon/?idx=borken' target='_blank'>source</a>
If you ever see "remote procedure call," it means some program running on your computer is basically phoning home to run a program for your computer. If nothing you have running should be doing that (it's unlikely that you would), you are infected with something.
RPC is not a very common programming tactic anymore. Unless you're contacting a supercomputer for a weather sim or something, your PC should be able to do anything that the programmer wants to do itself, and faster by cutting out the latency of networking.
Click Start -> Run... -> enter "CMD" and hit OK to open a command prompt.
Then put in the command
shutdown -a
to stop the computer from shutting down.
Then, download the Removal tool, <a href='http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html' target='_blank'>this one right here</a> to remove the virus, and you're done. There is nothing about RCP that you need to know.
Hell, it's really uncommon, I thought I could safely disable it along with all the other services I don't need.
...
Then I had a problem with my videocard and tried to reinstall the drivers. Of course, nvidia's driver setup doesn't finish unless you have the RPC service running... It too me a while to figure that one out.
What a pain in the ****.
And then I switched to ATI.
That might be just a coincidenc... but i believe it worked by contacting an internet site, which ran the "code" that shutdown the computer... no internet... no shut down
At least for me nayways
~Jason
I already recently reformatted, and I wasnt about to again...I havent gotten around to putting in my AV software yes... And is IE *really* that bad? I've been using it for as long as I can remember... (I've been an int4rw3b monkey since I was 8 years old, I'm 18 now.) I hear Firefox is pretty good... I'll look into that.
Once again, thanks a ton for all of your help <!--emo&:)--><img src='http://www.unknownworlds.com/forums/html//emoticons/smile.gif' border='0' style='vertical-align:middle' alt='smile.gif' /><!--endemo-->
In NS 2.01, someone could say that Fade hitboxes were borked. <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
Heh, while that is an acurate discription of the word, its been around for a <b>lot</b> longer than the Star Wars Galaxies beta <!--emo&;)--><img src='http://www.unknownworlds.com/forums/html//emoticons/wink.gif' border='0' style='vertical-align:middle' alt='wink.gif' /><!--endemo-->
1. Tabbed browsing (which can be ignored if you decide not to use it)
2. Popup blocker (very useful)
3. Automatically imports IE favorites list for convenient switchover
Occasionally sites are made using code that only works in IE, so it is useful to keep it installed just in case.
1. Tabbed browsing (which can be ignored if you decide not to use it)
2. Popup blocker (very useful)
3. Automatically imports IE favorites list for convenient switchover
Occasionally sites are made using code that only works in IE, so it is useful to keep it installed just in case. <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
And there's a mouse gestures plugin too! Wooties!
The term, at least politically, means to go through extremely difficult, fierce, and demoralizing trial and still succeed. Although, after coming through the mess, it leaves the person "bloodied", for a lack of a better word. Sometimes, almost making the ordeal not worth it.
1. Tabbed browsing (which can be ignored if you decide not to use it)
2. Popup blocker (very useful)
3. Automatically imports IE favorites list for convenient switchover
Occasionally sites are made using code that only works in IE, so it is useful to keep it installed just in case. <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
Though I'm not sure about the Popup Blocker, MyIE2 can do these things and is far more customizable. You also won't have to download ten billion extensions just to get it to work the way you want it to.
1. Tabbed browsing (which can be ignored if you decide not to use it)
2. Popup blocker (very useful)
3. Automatically imports IE favorites list for convenient switchover
Occasionally sites are made using code that only works in IE, so it is useful to keep it installed just in case. <!--QuoteEnd--></td></tr></table><div class='postcolor'><!--QuoteEEnd-->
Though I'm not sure about the Popup Blocker, MyIE2 can do these things and is far more customizable. You also won't have to download ten billion extensions just to get it to work the way you want it to. <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
I have received <b>zero</b> popup ads since I started using Firefox at the beginning of this year. Occasionally it will block a popup box that you want, but it is easy to tell it to unblock that site so you can have the box show up. I saw that MyIE2 also has an ad blocker, but it seems like it takes more work customizing it. I also looked through all of the extensions for Firefox, and didn't see a single one worth downloading.
Anyway, the point is, don't use IE. There are lots of other choices out there, and I think they are all better in terms of security and convenience (if you can deal with the initial time investment to install and configure it, which isn't much).
closing random svchost.exe entries in the task manager crashes the RPC service, (svchost stands for service host). if the rpc service closes for any reason, windows recognizes that it is broken, and decides to reboot to restart the service.
because it is windows trying to shut itself down, and not the virus forcing you, "shutdown -a" will happily cancel the timer.
however, many parts of windows wont work without RPC. do not blame your nvidia drivers, for even floppy drives and usb drives wont work without RPC.
IE does not cause the virus, any unpatched windows XP machine is vulnerable. you must run windows update to patch the vulnerability, there are three vital patches for this particular exploit, one for each virus "Blaster", "Sasser", and the new one "Korgo."
next, reboot and run an antivirus software such as Trend-Micro's Housecall, because the virus DID get in as the timer started. MSBlast and Sasser are extremely prevalent these days. so long as you do not clean the virus off, your computer is actively using your bandwidth in effort to cause this whole thing on other people's computers.
I am a professional PC repairman, and see these things happen so often, that i felt obligated to tell you what i know. run windows update weekly to prevent this from happening. the sasser and blaster patches were avaliable from microsoft's windows update MONTHS before the waves of viruses came out exploiting unpatched systems.