T
tim sanders HELP
help me plz plz plz i have a stupid bug that shuts down
comp. in 60sec email me plz if u can plz help me plz plz
plz
comp. in 60sec email me plz if u can plz help me plz plz
plz
HELP i have the 60 sec shut down error because the stupid RPC help
D
David H. Lipman
When you get the shutdown message...
Go to; Start --> Run
enter; shutdown -a
This will halt the shutdown and give you a chance to Download the McAfee worm removal tool,
Stinger: http://vil.nai.com/vil/stinger/ or the Microsoft Lovsan/Blaster and Nachi/Welchia
Removal Tool
http://www.microsoft.com/downloads/...8B-FE98-493F-AD76-BF673A38B4CF&displaylang=en
and install the following patch for the RPC/RPCSS and DCOM Vulnerabilities that are
addressed by Microsoft Security Bulletin MS04-012 - KB828741
http://support.microsoft.com/default.aspx?scid=kb;en-us;828741 and finally
http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
Please read: http://www.microsoft.com/security/incident/blast.asp
You also need a FireWall. If you don't patch the PC and not use a FireWall then you will
just be re-infected.
I also suggest the installation of *ALL* MS Critical Updates ASAP.
Dave
| help me plz plz plz i have a stupid bug that shuts down
| comp. in 60sec email me plz if u can plz help me plz plz
| plz
|
Go to; Start --> Run
enter; shutdown -a
This will halt the shutdown and give you a chance to Download the McAfee worm removal tool,
Stinger: http://vil.nai.com/vil/stinger/ or the Microsoft Lovsan/Blaster and Nachi/Welchia
Removal Tool
http://www.microsoft.com/downloads/...8B-FE98-493F-AD76-BF673A38B4CF&displaylang=en
and install the following patch for the RPC/RPCSS and DCOM Vulnerabilities that are
addressed by Microsoft Security Bulletin MS04-012 - KB828741
http://support.microsoft.com/default.aspx?scid=kb;en-us;828741 and finally
http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
Please read: http://www.microsoft.com/security/incident/blast.asp
You also need a FireWall. If you don't patch the PC and not use a FireWall then you will
just be re-infected.
I also suggest the installation of *ALL* MS Critical Updates ASAP.
Dave
| help me plz plz plz i have a stupid bug that shuts down
| comp. in 60sec email me plz if u can plz help me plz plz
| plz
|
D
dev
/tim sanders HELP/ said:
frequent reply from Bruce Chambers...
If you connected the PC to the Internet without having first
installed the KB824146 Hotfix, without having first installed an
antivirus application with current virus definition files, and before
enabling a firewall, you're very likely to get infected from any of
the thousands of PCs on the Internet that are constantly broadcasting
the Blaster and/or Welchia worms. It only takes a few seconds of
exposure.
To stay on-line long enough to get the necessary updates, patches,
and removal tools, click Start > Run, and enter "shutdown -a" when the
next RPC countdown begins. This will abort the shut down. Also, make
sure you've enabled a firewall before starting, to preclude any more
intrusions while getting the updates/patches/tools.
Microsoft Security Bulletin MS03-39
http://support.microsoft.com/?kbid=824146
What You Should Know About the Blaster Worm
http://www.microsoft.com/security/incident/blast.asp
Removal Tool for Blaster/Nachi worm infections from computers running
Win2K or WinXP
http://support.microsoft.com/?kbid=833330
W32.Blaster.Worm a.k.a. W32/Lovesan.Worm
http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.html
W32.Blaster.Worm Removal Tool
http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html
W32.Welchia.Worm a.k.a. W32/Nachi.Worm
http://securityresponse.symantec.com/avcenter/venc/data/w32.welchia.worm.html
W32.Welchia.Worm Removal Tool
http://www.symantec.com/avcenter/venc/data/w32.welchia.worm.removal.tool.html
McAfee AVERT Stinger
http://us.mcafee.com/virusInfo/default.asp?id=stinger
The likely problem, as mentioned here frequently, is outlined in this
frequent reply from Bruce Chambers...
If you connected the PC to the Internet without having first
installed the KB824146 Hotfix, without having first installed an
antivirus application with current virus definition files, and before
enabling a firewall, you're very likely to get infected from any of
the thousands of PCs on the Internet that are constantly broadcasting
the Blaster and/or Welchia worms. It only takes a few seconds of
exposure.
To stay on-line long enough to get the necessary updates, patches,
and removal tools, click Start > Run, and enter "shutdown -a" when the
next RPC countdown begins. This will abort the shut down. Also, make
sure you've enabled a firewall before starting, to preclude any more
intrusions while getting the updates/patches/tools.
Microsoft Security Bulletin MS03-39
http://support.microsoft.com/?kbid=824146
What You Should Know About the Blaster Worm
http://www.microsoft.com/security/incident/blast.asp
Removal Tool for Blaster/Nachi worm infections from computers running
Win2K or WinXP
http://support.microsoft.com/?kbid=833330
W32.Blaster.Worm a.k.a. W32/Lovesan.Worm
http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.html
W32.Blaster.Worm Removal Tool
http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html
W32.Welchia.Worm a.k.a. W32/Nachi.Worm
http://securityresponse.symantec.com/avcenter/venc/data/w32.welchia.worm.html
W32.Welchia.Worm Removal Tool
http://www.symantec.com/avcenter/venc/data/w32.welchia.worm.removal.tool.html
McAfee AVERT Stinger
http://us.mcafee.com/virusInfo/default.asp?id=stinger
D
David H. Lipman
You don't read your past replies - do you ?
KB824146 has very recently been superceded by KB828741
http://support.microsoft.com/default.aspx?scid=kb;en-us;828741
http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
So for Nachi/Welchia and Lovsan/Blaster worms, KB828741 is NOW needed to fix all RPC/RPCSS
DCOM Vulnerabilities.
Dave
PS Please wriite your OWN reples instead of copying replies from other.
| /tim sanders HELP/ said:
|
| > I have a stupid bug that shuts down comp.in 60sec.
| >
| The likely problem, as mentioned here frequently, is outlined in this
| frequent reply from Bruce Chambers...
|
| If you connected the PC to the Internet without having first
| installed the KB824146 Hotfix, without having first installed an
| antivirus application with current virus definition files, and before
| enabling a firewall, you're very likely to get infected from any of
| the thousands of PCs on the Internet that are constantly broadcasting
| the Blaster and/or Welchia worms. It only takes a few seconds of
| exposure.
|
| To stay on-line long enough to get the necessary updates, patches,
| and removal tools, click Start > Run, and enter "shutdown -a" when the
| next RPC countdown begins. This will abort the shut down. Also, make
| sure you've enabled a firewall before starting, to preclude any more
| intrusions while getting the updates/patches/tools.
|
| Microsoft Security Bulletin MS03-39
| http://support.microsoft.com/?kbid=824146
|
| What You Should Know About the Blaster Worm
| http://www.microsoft.com/security/incident/blast.asp
|
| Removal Tool for Blaster/Nachi worm infections from computers running
| Win2K or WinXP
| http://support.microsoft.com/?kbid=833330
|
| W32.Blaster.Worm a.k.a. W32/Lovesan.Worm
| http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.html
|
| W32.Blaster.Worm Removal Tool
| http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html
|
| W32.Welchia.Worm a.k.a. W32/Nachi.Worm
| http://securityresponse.symantec.com/avcenter/venc/data/w32.welchia.worm.html
|
| W32.Welchia.Worm Removal Tool
| http://www.symantec.com/avcenter/venc/data/w32.welchia.worm.removal.tool.html
|
| McAfee AVERT Stinger
| http://us.mcafee.com/virusInfo/default.asp?id=stinger
|
| --
| For most XP answers and tweaks...
| http://www.kellys-korner-xp.com/xp_abc.htm
| http://dougknox.com http://aumha.org
| http://support.microsoft.com
KB824146 has very recently been superceded by KB828741
http://support.microsoft.com/default.aspx?scid=kb;en-us;828741
http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
So for Nachi/Welchia and Lovsan/Blaster worms, KB828741 is NOW needed to fix all RPC/RPCSS
DCOM Vulnerabilities.
Dave
PS Please wriite your OWN reples instead of copying replies from other.
| /tim sanders HELP/ said:
|
| > I have a stupid bug that shuts down comp.in 60sec.
| >
| The likely problem, as mentioned here frequently, is outlined in this
| frequent reply from Bruce Chambers...
|
| If you connected the PC to the Internet without having first
| installed the KB824146 Hotfix, without having first installed an
| antivirus application with current virus definition files, and before
| enabling a firewall, you're very likely to get infected from any of
| the thousands of PCs on the Internet that are constantly broadcasting
| the Blaster and/or Welchia worms. It only takes a few seconds of
| exposure.
|
| To stay on-line long enough to get the necessary updates, patches,
| and removal tools, click Start > Run, and enter "shutdown -a" when the
| next RPC countdown begins. This will abort the shut down. Also, make
| sure you've enabled a firewall before starting, to preclude any more
| intrusions while getting the updates/patches/tools.
|
| Microsoft Security Bulletin MS03-39
| http://support.microsoft.com/?kbid=824146
|
| What You Should Know About the Blaster Worm
| http://www.microsoft.com/security/incident/blast.asp
|
| Removal Tool for Blaster/Nachi worm infections from computers running
| Win2K or WinXP
| http://support.microsoft.com/?kbid=833330
|
| W32.Blaster.Worm a.k.a. W32/Lovesan.Worm
| http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.html
|
| W32.Blaster.Worm Removal Tool
| http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.removal.tool.html
|
| W32.Welchia.Worm a.k.a. W32/Nachi.Worm
| http://securityresponse.symantec.com/avcenter/venc/data/w32.welchia.worm.html
|
| W32.Welchia.Worm Removal Tool
| http://www.symantec.com/avcenter/venc/data/w32.welchia.worm.removal.tool.html
|
| McAfee AVERT Stinger
| http://us.mcafee.com/virusInfo/default.asp?id=stinger
|
| --
| For most XP answers and tweaks...
| http://www.kellys-korner-xp.com/xp_abc.htm
| http://dougknox.com http://aumha.org
| http://support.microsoft.com
D
dev
/David H. Lipman/ said:
Dave,
Thank you for your update/admonition, and the assistance that you provide
here. When an informed souce like Bruce takes the time to aggregate good
info, there is little need to reinvent the wheel. Instead it makes sense
to simply reference or include that info. - unless the quoted source asks
that this not be done, of course. No doubt the many links mentioned would
have led the questioner to resolution of the problem.
Dave,
Thank you for your update/admonition, and the assistance that you provide
here. When an informed souce like Bruce takes the time to aggregate good
info, there is little need to reinvent the wheel. Instead it makes sense
to simply reference or include that info. - unless the quoted source asks
that this not be done, of course. No doubt the many links mentioned would
have led the questioner to resolution of the problem.
D
David H. Lipman
dev:
The point is since the environment is fluid, not static, information does have to be changed
periodically. When YOU understand the information and you write the reply yourself you will
be able to make the changes that are required by the fluid environment. So, in essence the
wheel DOES need to be reinvented.
Dave
| Dave,
|
| Thank you for your update/admonition, and the assistance that you provide
| here. When an informed souce like Bruce takes the time to aggregate good
| info, there is little need to reinvent the wheel. Instead it makes sense
| to simply reference or include that info. - unless the quoted source asks
| that this not be done, of course. No doubt the many links mentioned would
| have led the questioner to resolution of the problem.
The point is since the environment is fluid, not static, information does have to be changed
periodically. When YOU understand the information and you write the reply yourself you will
be able to make the changes that are required by the fluid environment. So, in essence the
wheel DOES need to be reinvented.
Dave
| Dave,
|
| Thank you for your update/admonition, and the assistance that you provide
| here. When an informed souce like Bruce takes the time to aggregate good
| info, there is little need to reinvent the wheel. Instead it makes sense
| to simply reference or include that info. - unless the quoted source asks
| that this not be done, of course. No doubt the many links mentioned would
| have led the questioner to resolution of the problem.
D
dglock
you need a new keyboard! its skipping most of the letters
in your sentances!
don
in your sentances!
don
D
dev
/David H. Lipman/ said:
Whether the reply was 'pirated' or original is irrelevant. The dynamic
nature of the Net twarts attempts to stay immediate on every issue - there
simply isn't time...
Rarely is a well-meaning reply injurious. The cumulative wisdom of the
group quickly addresses errors, as you have demonstrated. The friendlier
the exchange, the more beneficial to all.
Whether the reply was 'pirated' or original is irrelevant. The dynamic
nature of the Net twarts attempts to stay immediate on every issue - there
simply isn't time...
Rarely is a well-meaning reply injurious. The cumulative wisdom of the
group quickly addresses errors, as you have demonstrated. The friendlier
the exchange, the more beneficial to all.
C
CS
Assuming of course that the so called "informed source" (Mr. Chambers)
is providing accurate information. I'm sure he's seen Mr. Lipman's
posts often enough to know that he needs to change his "canned" reply
that you copied.
But then Mr. Chambers is probably too busy providing apologies for
Microsoft to pay attention to what his responses consist of.
Y
yo
D
David H. Lipman
Bruce Chambers is very knowledgeable in viruses and spyware, specifically spyware.
I haven't seen him post in a few days but I'm sure that he'll be showing up soon enough and
he'll modify his boiler plate response.
Bruce can mostly be found in...
news://msnews.microsoft.com/microsoft.public.scripting.virus.discussion
news://msnews.microsoft.com/microsoft.public.security.virus
Dave
| Assuming of course that the so called "informed source" (Mr. Chambers)
| is providing accurate information. I'm sure he's seen Mr. Lipman's
| posts often enough to know that he needs to change his "canned" reply
| that you copied.
|
| But then Mr. Chambers is probably too busy providing apologies for
| Microsoft to pay attention to what his responses consist of.
I haven't seen him post in a few days but I'm sure that he'll be showing up soon enough and
he'll modify his boiler plate response.
Bruce can mostly be found in...
news://msnews.microsoft.com/microsoft.public.scripting.virus.discussion
news://msnews.microsoft.com/microsoft.public.security.virus
Dave
| Assuming of course that the so called "informed source" (Mr. Chambers)
| is providing accurate information. I'm sure he's seen Mr. Lipman's
| posts often enough to know that he needs to change his "canned" reply
| that you copied.
|
| But then Mr. Chambers is probably too busy providing apologies for
| Microsoft to pay attention to what his responses consist of.
A
A.A. Fussy
Try this:
Press Windows key (usually this key is identified by a Windows 'flag 'logo'
+R
type in Shutdown -a
Press Windows key (usually this key is identified by a Windows 'flag 'logo'
+R
type in Shutdown -a
T
Tom
David H. Lipman said:
I really have no problem with canned replies as it is an easy piece of
advice to give if relevant, as opposed to taking time to type essentially
the same thing(s). But they are problematic, if not being typically
condescending from him since they are generalized as opposed to being
personal; Bruce does this, and maybe he doesn't realize it.
Saying that one is "foolish" or "demonstrates that you haven't been taking
sufficient precautions" as just a few examples, shows maybe an insensitivity
to those that do not really understand the internet. I would question his
knowledge on viruses and spyware, as any minor PC savvy person using the net
a great deal, could be just as informative.
Anyone with the smallest amount of internet savvy can look up virus
definitions, and post them here (or anywhere). If he were to give an account
on how the code that make these viruses and spywares work, then I could lay
credence to his ability given by you, but that has never happened, nor has
it been offered or given.
N
NoNoBadDog!
Your computer is infected with the Blaster worm. It is YOUR fault...
1. You do not have a properly configured firewall.
2. Your Windows operating system has not been updated with the patches that
will prevent your computer from being infected with the worm.
3. You do not have a properly configured and up to date antivirus program
installed on your computer.
Until you become responsible enough to employ at least rudimentary security
practices, you should not be allowed to own, much less use a computer. The
Blaster worm has been out for a year or more...it's old news and almost
anyone with any awareness of computer security has long ago taken
appropriate measures to protect themselves. Because you have not taken even
the slightest steps to secure your machine, you have become a threat to
everyone else on the internet, because now your machine is being used to
infect others who, like you, have taken no precautions.
Your REAL problem is that you have not taken the time and the effort to
become a responsible user. Until you can educate yourself on the basics as
outlined in the three steps above, you should not be allowed access to the
internet.
This may sound harsh, but there is no reason for someone like you to have a
total lack of responsibility. If you are going to become a member in good
standing of the vast and beautiful internet community, you have to at least
take the time and the effort to make sure that your computer is not
vulnerable to such worms. I would advise that your computer is probably
infested with any number of trojans, worms, viruses, spyware, key loggers,
etc.
Bobby
1. You do not have a properly configured firewall.
2. Your Windows operating system has not been updated with the patches that
will prevent your computer from being infected with the worm.
3. You do not have a properly configured and up to date antivirus program
installed on your computer.
Until you become responsible enough to employ at least rudimentary security
practices, you should not be allowed to own, much less use a computer. The
Blaster worm has been out for a year or more...it's old news and almost
anyone with any awareness of computer security has long ago taken
appropriate measures to protect themselves. Because you have not taken even
the slightest steps to secure your machine, you have become a threat to
everyone else on the internet, because now your machine is being used to
infect others who, like you, have taken no precautions.
Your REAL problem is that you have not taken the time and the effort to
become a responsible user. Until you can educate yourself on the basics as
outlined in the three steps above, you should not be allowed access to the
internet.
This may sound harsh, but there is no reason for someone like you to have a
total lack of responsibility. If you are going to become a member in good
standing of the vast and beautiful internet community, you have to at least
take the time and the effort to make sure that your computer is not
vulnerable to such worms. I would advise that your computer is probably
infested with any number of trojans, worms, viruses, spyware, key loggers,
etc.
Bobby
T
Tom
<snipped>
What a condescending little brat you are! Are you related to cerridwen per
chance?? How do you know that the PC in question is not the first one for
this person, and was just acquired within the past month or less? Yet you
complain that the virus has been on the boards with info for a year; do you
actually think that many new PC users just go about and search first off,
about PC viruses and warnings? Be nice, and give advice, but don't be a
cerridwen about it.
What a condescending little brat you are! Are you related to cerridwen per
chance?? How do you know that the PC in question is not the first one for
this person, and was just acquired within the past month or less? Yet you
complain that the virus has been on the boards with info for a year; do you
actually think that many new PC users just go about and search first off,
about PC viruses and warnings? Be nice, and give advice, but don't be a
cerridwen about it.
N
NoNoBadDog!
Tom;
Just trying to get his attention. All too often someone is instructed on
how to repair the Blaster worm and then just as merrily continues to leave
their machine unprotected. You would be amazed at how many computers see in
an average week that are completely infested with all kinds of muck, and
when the owner is informed they say "Well, the computer came with "XYZ"
antivirus so I don't think it should have any viruses", and then when they
are told that it was a trial and has never been updated, and that their OS
has never been updated, and that they don't have a firewall, they just shrug
their shoulders, pay the bill and walk away. It's good for business, I
guess, because their attitudes guarantee that they will be back for another
cleansing, or they blame it on the computer and come in and buy another. I
wanted to make sure that the OP knew that there were many things that he
could have done, yet didn't. Maybe now he will at least do a little reading
or research, or perhaps even ask in this forum how he can better his
computer security. I know the tone of my post was harsh, but sometimes that
is what it takes to get people to understand that they must be proactive in
order to insure that their computer is at least acceptably safe.
Bobby
Just trying to get his attention. All too often someone is instructed on
how to repair the Blaster worm and then just as merrily continues to leave
their machine unprotected. You would be amazed at how many computers see in
an average week that are completely infested with all kinds of muck, and
when the owner is informed they say "Well, the computer came with "XYZ"
antivirus so I don't think it should have any viruses", and then when they
are told that it was a trial and has never been updated, and that their OS
has never been updated, and that they don't have a firewall, they just shrug
their shoulders, pay the bill and walk away. It's good for business, I
guess, because their attitudes guarantee that they will be back for another
cleansing, or they blame it on the computer and come in and buy another. I
wanted to make sure that the OP knew that there were many things that he
could have done, yet didn't. Maybe now he will at least do a little reading
or research, or perhaps even ask in this forum how he can better his
computer security. I know the tone of my post was harsh, but sometimes that
is what it takes to get people to understand that they must be proactive in
order to insure that their computer is at least acceptably safe.
Bobby
T
Tom
<snipped>
Your explanation is very illogical, so I will make this easy for you.
Treat others as you would have them treat you, but if this is how you think
it should be, then you shouldn't show surprise or reply with disdain, when
one replies to you in the manner in which you think is OK.
Your explanation is very illogical, so I will make this easy for you.
Treat others as you would have them treat you, but if this is how you think
it should be, then you shouldn't show surprise or reply with disdain, when
one replies to you in the manner in which you think is OK.
R
Richard Urban
And then what?
--
Regards:
Richard Urban
aka Crusty (-: Old B@stard
--
Regards:
Richard Urban
aka Crusty (-: Old B@stard
K
kurttrail
dev said:
What a pussy! Good intentions do NOT equate to good tech help. If you
don't know what you are talking about, the advice you regurgitate can be
injurious to another's computer setup.
--
Peace!
Kurt
Self-anointed Moderator
microscum.pubic.windowsexp.gonorrhea
http://microscum.com
"Trustworthy Computing" is only another example of an Oxymoron!
"Produkt-Aktivierung macht frei!"