there's a virus going around causing people's computers to restart repeatedly, and attacks Microsoft.
if you have Microsoft Windows NT, 2000, XP, or Server 2003 download the appropriate patch immediately, if you haven't already.

NT: http://download.microsoft.com/download/6/5/1/651c3333-4892-431f-ae93-bf8718d29e1a/Q823980i.EXE

2000: http://download.microsoft.com/download/0/1/f/01fdd40f-efc5-433d-8ad2-b4b9d42049d5/Windows2000-KB823980-x86-ENU.exe

XP: http://download.microsoft.com/download/9/8/b/98bcfad8-afbc-458f-aaee-b7a52a983f01/WindowsXP-KB823980-x86-ENU.exe

Server 2003: http://download.microsoft.com/download/8/f/2/8f21131d-9df3-4530-802a-2780629390b9/WindowsServer2003-KB823980-x86-ENU.exe

OMG KTHX

I WAS ABOUT TO POST ABOUT THIS

it keeps happening tonight

I have XP, but doesnt the system also have NT or something?

Windows 2000, XP, and Server 2003 are all based on NT. thats why they all have the same vulnerability.

meh well

it worked :)

Yo, it hasnt happened to me, so I am too lazy to download.

Ahh fuck it, Im bored, I have nothing else to do.

Hmm lol

Well, earlier when my cousin was on, the computer started rebooting over and over. I got on and found out where the problem was coming from. Not knowing that there was a patch for this, I went into services and into the properties for RPC, and changed it to take no action when there was a failure. It of course, was set to restart the computer, before. Soooo... now that annoying dialog box that was coming up with the 60 second countdown (then shutdown) wasn't popping up anymore. Anyway, I got to looking around, and found out about the patch, and installed it, because just changing the properties didn't solve the problem, it just stopped the error box/rebooting. That thing was annoying. Everyone, install the patch, because this thing is a little bastard. :tongue2: It was rebooting the computer everytime there was a connection made to the internet. lol

@ 1st is a pop up call Generic Host Process for Win32. If I close it it pops what he said. If I leave it for a few mins, same thing. So I researched and read a thread on a different forum and I accidently stopped an essencial "service" call Remote Control S.... Now Windows doesnt laod up properly and other stuff. After hours of panicking, Windows XP was finally reinstalled. Phew. But I still had to re installl some old programs and still had to import my cookies + bookmarks. The 1st thing I did was download the darn patch. So far so good. God that was scarry I tell u.

I never get viruses of any kind ever. I guess I am just lucky.

mojaam, make sure you patch and/or run windowsupdate so you don't have to go through it again.

Abusiveelusive, if you don't patch for it you will, in all likelyhood, eventually get it. then it becomes a fun race to the clock to see if you can get the patch downloaded and installed before it reboots you.

and technically its not a virus, its a vulnerability in the RPC Service that someone has taken advantage of.

i never had the problem, fortunately, i patched for it the day it was discovered.

Originally posted by Abusiveelusive
I never get viruses of any kind ever. I guess I am just lucky.

Same here. My cousin is the little fucker who got this one on here. Btw, no virus scanners detect this thing.

Originally posted by Zmaster
then it becomes a fun race to the clock to see if you can get the patch downloaded and installed before it reboots you.

Or you can do as I did, and set RPC to take no action when it has failure. Then there will be no rebooting. You can d/l the patch. :D :werd:

Viruses are bad :(

:tongue2:

im watching the news

they said it might get un-good-er this week :( :mad:

Yeah... oh well! It ain't gonna fuck with me... I'll slice it and dice it, throw it in the trunk......take it to the river and the bitch will be dumped!

whatever.

whatever.

Dude, that's exactly what has been happening to my computer. I'll connect it to the internet and then a stupid countdown would start up and then my computer would restart... it was getting annoying as hell! But for some reason it has been working today but I'm downloading that and hopefully that will fix the problem!!!

Thank you!!

Originally posted by Take me big boy
I never get viruses of any kind ever. I guess I am just lucky. me either =P

:rage:

:o

bwaha i have windows 95, yay
i think i'm just gonna not go on the internet with my laptop (xp) ;/

Originally posted by xivmar
:rage:


download the file again and save it to disk in a better location(try desktop). also make sure you have administrator 'privileges'.

:shifty:

Microsoft patch for worm may be flawed
MIKE TARSALA
CBS MarketWatch

SAN FRANCISCO - A program Microsoft instructed customers to use to fix a hole in its Windows operating software, which is vulnerable to attack by the Blaster/Lovsan worm that infected computers around the world this week, may itself be flawed.

A glitch in the Microsoft Windows Update patch-management system used to download Windows software fixes has tricked some customers into thinking their systems were patched to prevent Lovesan, when they really were not, said Russ Cooper, moderator of a mailing list with 30,000 subscribers that tracks Microsoft's software weaknesses.

"I know of numerous companies - more than 10 - with thousands of computers among them that have run into this problem," Cooper said. "They were all in a state where Windows Update said the systems were patched, but they really weren't."

The problem is a result of the way Windows Update checks that a computer has run a particular patch, Cooper says. As of Wednesday, Windows Update only checked a database to see that the patch for Blaster/Lovesan had been run on a particular computer in the past - not that the patch was successfully installed and working.

It left open the possibility that computers that crashed during the process, were unexpectedly turned off or simply didn't have enough memory to install the software patch inaccurately reflected that the patch was successfully installed, when in some cases it wasn't, Cooper said.

Microsoft did not immediately return calls seeking comment about Cooper's claims.

The Blaster/Lovsan worm attempts to attack a security-software update service from Microsoft that can make it difficult to patch the very security vulnerability that the worm exploits.

The worm also addresses Bill Gates, Microsoft's chief software architect, directly: "billy gates why do you make this possible? Stop making money and fix your software!!" it says.

---

thats why i say download the patches directly, don't use Windows Update.

Originally posted by Zmaster
download the file again and save it to disk in a better location(try desktop). also make sure you have administrator 'privileges'. i tried that... but how do i get administrator privileges? lol

lol
have your administrator (i'm guessing your parents and/or older sibling) to install it.
tell them its necessary, and if they don't just say something like "then don't blame me when you can't access your pr0n because the computer keeps restarting". that always seems to motivate people.

fortunately my computer is my own and i don't have to deal with that. even though if my parents/sibling ever have a dire need to use it i've created a useraccount titled 'Mortals Click Here' for their convenient use.

Originally posted by Zmaster
lol
have your administrator (i'm guessing your parents and/or older sibling) to install it.


lol oh. my mom already told me to do it..why wont it install??

thats why im the admin of this piece of crap. my parents dont even know how to turn this thing on.

Just a bit more on this shit....









Microsoft braces for Phase 2 of attack
Associated Press

SEATTLE (AP) - Microsoft Corp. may write flawed software, but it can take solace in the fact that the author of the ``blaster'' worm also makes mistakes.

And that error may be Microsoft's biggest weapon in fending off part two of the Internet attack that started Friday and is expected to continue into Saturday. The worm, which so far has infected more than 350,000 computers around the world, now aims to bring down Microsoft's Web site for software patches by flooding it with traffic.

The worm was already starting to have an effect in Asia and other parts of the world, said Gordon Johndroe, spokesman for the Department of Homeland Security. He urged home users and small and mid-sized businesses to download the patch from http://www.dhs.gov.

The virus-like infection, also dubbed ``LovSan'' or ``MSBlast,'' exploits a flaw in most current versions of Microsoft's Windows operating system for personal computers, laptops and server computers. Although Microsoft posted a software patch to fix the flaw on July 16, many users failed to download the patch, leaving them vulnerable to the worm, which first started hitting computers around the world on Monday.

The worm caused computers to reboot frequently or disrupted users' browsing the Internet. But it also packed a second punch: starting at midnight local time on Aug. 16, infected computers that have not cleaned up the virus will in effect turn into a legion of zombies instructed to repeatedly call up a Microsoft Web site that houses the software patch. With so much traffic flooding the network, the site could be unreachable and computer users would be unable to access the patch.

But there's a flaw. The worm instructed computers to call up http://windowsupdate.com -- which is an incorrect address for reaching the actual Microsoft Web site that houses the software patch. Although Microsoft has long redirected those who visited that incorrect address to the real site -- http://windowsupdate.microsoft.com -- the company disabled the automatic redirection Thursday in preparation for the onslaught of infected computers.

Microsoft's real Web site should still be accessible to users, said Microsoft spokesman Sean Sundwall. However, those who don't know the correct address may be confused and believe that the so-called ``denial of service'' attack worked. The company is taking other measures to keep its site up and running, he said, although he declined to give specifics.

Microsoft's network and others around the country may still see a slowdown in Internet traffic simply from the volume of activity the worm is expected to generate from its legion of infected computers, said Vincent Weafer, senior director of security response for Symantec Corp., a security and antivirus company.

However, considering that Microsoft has disabled the automatic link from the incorrect Web site to the correct Web site, the worm's effects are ``not going to be catastrophic,'' he said. ``The Internet by itself is very resilient.''

``It's a very simple and effective way of redirecting a denial of service attack into nowhere,'' he said.

The rate of new infections has slowed, he said. But computer users who still have not downloaded the patch need to do so, he said, adding that the company expects new infections to continue for as long as two years to come.

The worm left behind a love note on vulnerable computers: ``I just want to say LOVE YOU SAN!'' It also carried a hidden message to taunt Microsoft's chairman: ``billy gates why do you make this possible? Stop making money and fix your software!''

Microsoft doesn't take the taunt personally, said Sundwall.

``Certainly we have had our naysayers in the past and I think those who have an ax to grind and happen to know how to write some code sometimes choose this mechanism to exhibit their frustration,'' he said.

Sundwall noted that Microsoft has been trying to make its software more secure, even before the ``Trustworthy Computing'' memo that Microsoft chairman Bill Gates sent in January 2002, emphasizing the need for security and spawning months of training for developers on how to tighten up their code. Despite that initiative, the flaw appeared in Windows Server 2003, the first new operating system to come out since the Trustworthy Computing campaign began.

Sundwall said there's more work to be done, and that Microsoft is looking for any ways to improve its security. ``Most people would agree while we have a long way to go ... we've come a long way,'' Sundwall said.

next time just post a URL and summarize the article.
since the writer/publication could get angry at you for directly copying their material without their expressed permission.

and also, that just shows why you shouldn't use WindowsUpdate for very important patches and service packs.

Hehe, let them get mad. ;)

Originally posted by VADRIGAR

The worm left behind a love note on vulnerable computers: ``I just want to say LOVE YOU SAN!''

Simply A Newbie :eek2:

lol :shifty:

Originally posted by xivmar
Simply A Newbie :eek2:

That's what I thought when I saw that on the news. :\

LOL me too :X

Holy shit.


I'm know as SAN on 5 message boards.


Literally everone calls or knows me as SAN on here and TB and TS and *****.

Know any 18 year olds from MN that would dedicate a worm to you? ;p

Umm.....No?

Kerplunk?

This must be something else with the name or initials SAN..

HAS to be.


I've been known as SAN all over message boards since 2000, but who the hell would do this for someone like me?

Jeffrey Lee Parson?

I'm sure it's an acronym for something else, yeah, or someone's initials. They'll probably find out once they interrogate the guy, but whether they'll bother to give updates in the news is another question. Meh.