Name: embean Date: November 2, 2007 at 08:45:14 Pacific Subject: ircbot virus OS: varies CPU/Ram: varies Model/Manufacturer: varies
Comment:
I am having problems with a supposed virus and my ISP. They cut us off due to an ircbot virus and said we were trying to corrupt them, etc. None of us have a virus, to our knowledge. The ISP wanted us to reformat all of our computers, which we weren't going to do, but said we did so they would turn our internet back on. About a week later, they turned it off again for the same reason, this time with a week "suspension." So, we cancelled our service because they said it was our fault and we still had to pay for internet we weren't getting. When trying to get new service with another company, we discovered that the old ISP had a monopoly on our neighbourhood and no other company would be able to supply us with fast enough service. So, we had to go back to the old company, and they are now re-activating our internet after this dumb suspension. We have our wireless network encrypted and firewalled and everything, but we know its still possible for someone else to get on, so this is what we assume is happening, because we have all done numerous virus scans, etc. So, we likely will have our service cancelled again, and they have warned us that the next time will result in either a one month suspension, or us being banned. What I want to know is if there is some specific kind of tool that will search out this one kind of virus for SURE? This is frustrating.
If you think that your wireless network may be getting tapped you can try turning off your pc's and checking the activity lights on your modem, especially the wireless one. If it is flashing away you can almost be certain someone has gained access.
Also you can enter your modems setup utility and check to see if it has access logs. The number of different mac addresses in this log should be equal to the number pc's used to access it in the home.
To check each of your pc's mac addresses click start > run and type "cmd" then type "ipconfig /all" (note: there is a space between ipconfig and /all). The mac address is is the line "physical address..."
Armed with these you should be able to see, if there is an offending mac id, the frequency and duration of the visits when you look at the log.
MAC address filtering is an additional security measure you can take for your wireless network. Most wireless routers do support this. The only way someone can access the network is to clone one of your computers mac address.
One last thing I would suggest is to change the password you use to access the router configuration utility and change the encryption key (all wireless pc's passwords will need to be changed also to access). Keep these to yourself, write down the changes if you need to and keep it somewhere safe.
These changes along with MAC address filtering will give you more peace of mind as far as your wireless goes.
The information on Computing.Net is the opinions of its users. Such
opinions may not be accurate and they are to be used at your own risk.
Computing.Net cannot verify the validity of the statements made on this site. Computing.Net and Computing.Net, LLC hereby disclaim all responsibility and liability for the content of Computing.Net and its accuracy.
PLEASE READ THE FULL DISCLAIMER AND LEGAL TERMS BY CLICKING HERE
Version Tracker Pro
Driver Agent