Korean Job Discussion Forums

keithinkorea · Joined: 17 Mar 2004

I've not had a serious issue with viruses in the past but my computer is running like an absolute dog at the moment. My processor is running at 100% usuage all the time, programs take ages to start and shut down, it's a very nasty business indeed.

I really dont want to have to reinstall windows but I'm seriously considering it. It is a bit drastic I know, but I've run a downloaded virus checker that found a trojan in my windows directory and removed it and I'm still experiencing major problems. The anti virus thing I downloaded said something about a DCOM exploit, what is that and how can I beat this nasty thing? I get the odd little box pop up that looks like a command line type thing that is giving very cryptic messages on occasion, something about an administrator something or other. It is a very quick message so it has been very hard to decipher it.

Has any of you folks had serious virus issues in the past and how did you get rid of the bloody thing?? It is driving me up the wall at the mometn.

Demophobe · Joined: 17 May 2004

What is a DCOM expoit? Well...

DCOM (Distributed Component Object Model) is a set of Microsoft concepts and program interfaces in which client program objects can request services from server program objects on other computers in a network. DCOM is based on the Component Object Model (COM), which provides a set of interfaces allowing clients and servers to communicate within the same computer (that is running Windows 95 or a later version).

For example, you can create a page for a Web site that contains a script or program that can be processed (before being sent to a requesting user) not on the Web site server but on another, more specialized server in the network. Using DCOM interfaces, the Web server site program (now acting as a client object) can forward a Remote Procedure Call (RPC) to the specialized server object, which provides the necessary processing and returns the result to the Web server site. It passes the result on to the Web page viewer.

DCOM can also work on a network within an enterprise or on other networks besides the public Internet. It uses TCP/IP and Hypertext Transfer Protocol. DCOM comes as part of the Windows operating systems. DCOM is or soon will be available on all major UNIX platforms and on IBM's large server products. DCOM replaces OLE Remote Automation.

DCOM is generally equivalent to the Common Object Request Broker Architecture (CORBA) in terms of providing a set of distributed services. DCOM is Microsoft's approach to a network-wide environment for program and data objects. CORBA is sponsored by the rest of the information technology industry under the auspices of the Object Management Group (OMG).

In computing, an exploit is an attack on a computer system, especially one that takes advantage of a particular vulnerability that the system offers to intruders. Used as a verb, the term refers to the act of successfully making such an attack.

Many crackers (or hackers, if you prefer that term) take pride in keeping tabs of such exploits and post their exploits (and discovered vulnerabilities) on a Web site to share with others.

Where an exploit takes advantage of a weakness in an operating system or vended application program, the owners of the system or application issue a "fix" or patch in response. Users of the system or application are responsible for obtaining the patch, which can usually be downloaded from the Web. Failure to install a patch for a given problem exposes the user to a security breach. (However, it can be difficult to keep up with all the required patches.)

________________________________________________

Personally, I have never had a virus, so I haven't a clue about how to fix this. YOu should try opening the task manager (CTRL+ALT+DEL) and see which process is using all of the CPU cycles, then post that here.

Stop using Internet Explorer.

I would format and re-install Windows. Remember that simply re-installing Windows doesn't do a complete or deep format, so be sure to actually format first. Don't just stick in the Windows CD and re-install. It will bring up a page about formatting, and chose the option to do a format, not a "quick format".

Evidence of this was when a few peope I have known did a re-install of Windows and when all was done, they still had Program File folders in the C:/ directory from the previous installation. This means there was no real format. I have argued this to death on other forums, but I know that the "quick format" that Windows XP installer offers is bunk.

I think that Windows just checks the existing file system for damaged areas, and not finding any, just carries on.

A post-virus system will never seem "right", so just bite the bullet. Afterwards, don't use IE, update Windows (if it's not a legit copy of XP you have, then you are on your own), get a good AV/spyware/malware program running, and watch what you download and from where. Usin P2P networks is risky, until you realize what kind of files are "dirty" and which ones are usually clean. Really, buy XP, a good AV prog, a good firewall and with some thought and system maintenance, you will be fine.

The upside of formatting (and the reason I like doing it) is that the system will be so snappy afterwards. With some thoughtful partitioning, registry backing-up and file copying, formatting can be easy. I've almost got it down to an art, as have many people on this forum. (Hello Sage! Wink

) There are so many ways to make it faster and easier to get everything back the way it was in a hurry...do some reading about how to make it easier and it won't seem so bad.

keithinkorea · Joined: 17 Mar 2004

Fixed the bleeding thing now but it took a format and a whole load of trouble. I think that possibly the wireless driver was at fault. My anti virus thingummijig has been working overtime today! I have decided to stop using as many microsoft products as possible and probably will move over to linux.

My computer is now running like a dream, I had no idea viruses could be so damn persistent but I've finally got the bastard licked Very Happy

Fortunately I only lost a little data in the process but it could have been really bad, I had a whole bunch of tunes I was working on (cubase) and I really didn't want to lose them, I also had a whole bunch of Photos I took over the Xmas period on my wonderful new digital camera and I didn't want to lose those either but all seems to be OK.

I'm happy at last....After hours of frustration.

Dalton · Joined: 26 Mar 2003

Here are some links to help keep your pc virus free. In adition you might consider using Mozilla Firefox as a browser. I haven't tested the links lately.

Free:
This link is to CNets' most popular downloads page. You'll see
AdAware, Zone Alarm, Mozilla Firefox, Spybot Search and Destroy
AdAware and Zone Alarm

Spybot Search and Destroy
Coolweb Shredder

HiJack This
Spyblaster
Spyware Guard

Not:
Window Washer
Scroll down and find Window Washer 5.1 on the right. DL it and open and read the .nfo file(s) with notepad. The rip is built into the program. Just install it. Run it every time you go off line.

Info and help sites:
Prevention article from cexx.org
spywareinfo.com
cexx.org

This is a lot of stuff. You have to get into the properties for each one too. For instance Ad Aware has a setting to eliminate the reg entry for anything it finds. Ad Aware will disabel a lot of free stuff that come swith spyware and adware. Like free DivX and Download accelerator. I let it and learn to live with out that stuff.