Last year I wrote about a problem I had wherein a virus had disabled this computer's internet connectivity by shutting down the dhcp client service. If you are experiencing this problem, there is a relatively easy fix available that involves going into the registry and simply re-typing "dhcp" into the box for that particular service and its ancilliaries. Unfortunately, my filing system consists or stuffing papers into random pigeon-holes and drawers and right now I haven't the time to look through all that stuff. But a tad bit of research (use the terminals at the local public library or at a Kinko's or something) will put you in touch with the fix.
The reason I'm writing this now is that (1) someone pulled up this blog in a search about what to do about a deleted dhcp service and (2) I believe I was similarly assaulted a few days ago.
Here is a telltale symptom that you are being attacked by a virus that wants to disable and/or change your operating system: Your security program will display a message that a virus has been detected and neutralized, but it will be necessary to re-start your machine to complete the "clean-up" or "removal" process.
DO NOT DO THIS!! RE-BOOTING YOUR MACHINE IS ONLY NECCESSARY TO IMPLEMENT CHANGES TO THE OPERATING SYSTEM!!! SUCH A BULLETIN CAN ONLY MEAN THAT THE VIRUS HAS HIJACKED YOUR SECURITY SYSTEM AND IF YOU RE-START, IT WILL BE THE BEGINNING OF ONE BIG HEADACHE!
Instead, go IMMEDIATELY to Microsoft's security page and download and run the Microsoft Security Scanner. After the scan has been completed, note the name(s) of the viruses detected, and then to make VERY sure, download and run Microsoft's Malware Removal Tool. If other viruses are detected, note these also.
If at any point you get a note from these services that the virus was "partially" removed and if you look the virus up in Microsoft's index of viruses only to find out that "no information is available" about the bug, then wait until they find out what makes the rascal tick, and then repeat the scan procedure. Until then, don't turn your machine off. Let it "hibernate" but not "sleep".
ONLY after all of these conditions have been met should you re-start your machine in order to get rid of the glowing red warning from your security program.
PLEASE NOTE THAT THE FRUITCAKES WHO PRODUCE THESE PESTILENT ANNOYANCES ARE INNOVATIVE AND ARE CAPABLE (THEORETICALLY) OF GETTING AROUND EVEN THIS REGIMEN. It is entirely possible that even during a scan with the most up-to-date definitions, someone out there may have launched a new attack.
One more note: If your machine is "hopelessly" locked up, there are devices by which you can remove your hard drive and connect it to a USB port in another computer, and use that computer's scan system to murder the invader. But in these goofy times, my advice to you is to do what I do and update your security every day before you go surfing the net.
Personally, I rather enjoy outwitting and killing these malware programs - and as I have said, I hope one day to put some of the fruitcakes responible behind bars, and if one of you assholes are reading this then know that I am after your stinking behinds - but like most of us, I'd just as soon go online and get things done without having to worry about some idiot hacker. Every time I get attacked, I learn something new. Some day, one of these hackers is going to fuck up and tell me who exactly he is. As I have said, you hackers depend on the fact that every system has flaws. Yet you think that yours doesn't?? You are a pack of fools.
No comments:
Post a Comment