So, it appears my Win2003 game server was hacked. There were a few virus' found:
Win32/ServU-Daemon
Win32/Parite.B virus
HackDef.073.b
So, my question is, other than a good virus scanner (Now using NOD32) What else can I do to protect my server from these ****ers?
Thanks
Full Version: Server Hacked
Did you reload the OS? I would then update your O/S, shutdown any unecessary services and try a firewall.
I was able to clean all of the infection so I didn't think an OS reload was necessary...
Although it doesn't make much difference at this point, it is very possible and indeed probable, that you simply downloaded a virus (as opposed to being hacked). At least it seems probable judging from the descriptions of those 3.
As for virus protection, I currently use Norton, but I have no idea whether its the best or not. It seems to work for me.
Although, IMHO, the best defense against viruses is simply to not download files from untrustworthy sources.
As for virus protection, I currently use Norton, but I have no idea whether its the best or not. It seems to work for me.
Although, IMHO, the best defense against viruses is simply to not download files from untrustworthy sources.
What they said. Make sure to keep your OS and daemons nice and patched too.
QUOTE (ntjones)
As for virus protection, I currently use Norton, but I have no idea whether its the best or not. It seems to work for me.
Is there an affordable version of Norton available for Windows 2003? I have not been able to find anything that would not break the bank.
I'm guessing that's how he picked up the viruses in the first place :o
There's also free online scanners you can scan your system with if you don't want to installl a full virus program.
http://housecall.trendmicro.com/
This is only good if you have control over what gets installed on your server and you do regular scans though.
http://housecall.trendmicro.com/
This is only good if you have control over what gets installed on your server and you do regular scans though.
Thanks for all of your help and suggestions guys. I've installed the NOD32 Anti-Virus program (Have used this program now on my home computers for a couple of years and never had a problem).
You have your server updated with all the latest security updates right ?
What kind of firewall were you running ?
What kind of firewall were you running ?
Don't use Pirated software Some of those pirated serve-u deamons have been known to have viruses in them heh.
I myself use Calmwin (http://www.clamwin.com/)
I do on the otherhand also use NIS2005 Pro at home.
Some of those pirated serve-u deamons have been known to have viruses in them heh.
I myself use Calmwin (http://www.clamwin.com/)
I do on the otherhand also use NIS2005 Pro at home.
I would get that OS reloaded. You never know what the person who pwned you dide or installed on your server. He could have put a kit on there like hacker defender or something and you would never know it.
I have invented a swanky new dance
Symmantec Norton Antivirus Corporate Edition v10
Its caught more crap than I've seen McAffee miss!
And WELL worth the cost. I own a copy for my home and SM machine simply for that reason.
Its caught more crap than I've seen McAffee miss!
And WELL worth the cost. I own a copy for my home and SM machine simply for that reason.
QUOTE (nForcer)
Symmantec Norton Antivirus Corporate Edition v10
Its caught more crap than I've seen McAffee miss!
And WELL worth the cost. I own a copy for my home and SM machine simply for that reason.
Its caught more crap than I've seen McAffee miss!
And WELL worth the cost. I own a copy for my home and SM machine simply for that reason.
Agreed,
And if you have more than one box you can setup a master and slave enviroment to push updates to your other boxes.
Rule of thumb though. Turn off the Real-time protection. Game servers should not have those running as they reduce performance.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.