What on-earth happened?!
On Friday (29th January 2005) our network was hit by at least one "Trojan-Horse" kind of virus.
Many computers were hit. On our first reaction to the attack we counted 200 infections on 15 computers
The network came to a standstill and we immedietly got underway with a defence plan.
Are you doing anything about it?
All areas were shut down manualy at main-hub to stop the virus from spreading between network areas.
( This is very much like shutting down partitions in a submarine when it starts getting flooded)
We then started opening up one area after the other, sometimes more than one at a time, and checking
every computer in that particular area. All this to try opening up various areas as quick as possible
while keeping the attack at a level we could actually work with.
So can we work on the internet?
At this stage only those who are physicaly connected can work on the "Broadband"
Anyone who has a Dial-up connection, can work with it and we recommend people do so untill
we can bring this virus down to it's knees. It's slow but it works
What are we actualy doing about it?
Five people have been recruted so far, to help with this defense plan and we are slowly but surely
getting on top of things.
We are working on various levels: Checking each computer with the built-in and other, defense
software. Keeping a constant 24-hour watch on the network from an
emergancy-built headquarters. Studying the situation constantly, trying to pin-point the source(s) of
trouble and deal with them
In parallel, we are in contact with various help sources from outside, experts
and experienced people in the field.
There is a lot of detective work going on, searching and hunting down the virus, pinpointing it's latest
point of attack, learning new tools to deal with this virus. Keeping an eye open for re-infected
computers, and at the same time planning for tomorrow too. After all we clean up everything and what
happens tomorrow?.....
I will be placing various tools and sites that can be used by every network user, to help clean up this
mess, each at his/her level of knowledge and understanding.
I thank you for your patience and understanding
David Ellman
Tools area:- Please feel free to use them for keeping your computer clean
a. - "TrendMicro" online virus scanner
b. - "Panda" online virus scanner (use "active scan" at bottom left)
c. - "BitDefender" online virus scanner
d. - "Symantec" online virus scanner (Norton)
e. - "RAV Antivirus" online virus scanner
Warning!!
Don't have more than one anti-virus program running on your computer at any one time
(they tend to see each other as viruses and could end up cleaning each other out )
f. - "AVG" free anti-virus - in case you don't have one or don't like the one you have
g. - Spybot - removes spyware programs
h. - Adaware - removes adware programs
I. - WCShredder - removes browser highjack programs
J. - When cleaning viruses you may come across an issue called "Turning system Restore, on or off"
Here is a link
that explains what this means and how it is done.
A few things to think about:-
Whichever procedure you use, make sure you do it often enough. You cannot over-clean your computer.
Before using your anti-virus program, make sure the virus definitions are updated
Use "SpyBot" and "Adaware" frequently. They clean up all kinds of "spyware" programs.
If you have alternative programs that work, and you know what they do, use them.
You could try your hand at "HighjackThis" ( After you reach the page,
Roll down till you get to the download section. )
"HighjackThis" is somewhat more complicated. You are dealing with the background services of your system
so take care before you remove anything. ( recommended using in SAFE MODE )
Make sure you use "Windows Updates" too, they are there to shut down security holes as they are discovered.
If you can't find "Windows Update" on your computer,
Click Here
Clean out files you don't need especialy "cookies" and "temporary files". Both can be found in your browser
under "tools/options/" and there look for "delete cookies" and "delete files"
Here is an article by AVG, found by Rut Ney. Article deals with cleaning your computer.
Give it a try, it might "speak" to you.
For the article Click Here