Keep up-to-date with the latest information concerning your computing needs.

Why do I need Antivirus Software?

How do I properly secure my computer?

Virus Alerts

Hardware Upgrades

W32.Blaster Worm - 8/25/03
Currently there is a worm spreading through the internet using a vulnerability in the Microsoft Windows operating system. However, the worm only affects Windows NT4, Windows 2000 and Windows XP Home and Professional (Windows 95/98/ME are not affected).

More MSBlaster Information

ResCom is asking students to not plug their computers into the internet until we are sure that it has been patched. To find out how to patch your computer or if you are vulnerable, please contact your local ResCom office or your RA.
top
Mimail Virus, admin@psu.edu - 8/4/03
There is currently a virus circulating which is shown to originate from the address: admin@psu.edu. This is NOT a real PSU email. The email contains an attachment, which contains the W32.Mimail.A@mm. and the text of the email is similar to this:

Hello there,
I would like to inform you about important information regarding your
email address. This email address will be expiring.
Please read attachment for details.
---
Best regards, Administrator
[random letters]

Again, this is NOT a legitimate PSU email. Do NOT open the attachment, as it contains a virus that can harm your computer and/or your data. If you have any questions about the email or the virus, you can contact your local ResCom office.
top
Kazaa 2.5 Configuration Guide - 7/2/03
We now have a configuration guide for the newest version of Kazaa, 2.5. the guide will go through best configuration options for use on the PSU network to prevent a bandwidth violation. Keep in mind, however, that using this guide does NOT guarantee that you will not get a violation. It is a stepping stone. So please use this guide and the program responsibly on the PSU network. 

Kazaa 2.5 Configuration Guide
top
Securing Your Computer - 6/11/03
Every student using a residence hall Ethernet connection is responsible to maintain the security of their computer from intruders or other people using their computer. We have put together a little "how to" web page about keeping your computer secure. It has some tips and ideas to keep your data and computer safe from hackers, viruses and other threats. Use this as guide to help you start securing your computer and protecting it from virtual threats.

Secure Your Computer
top
Bandwidth Restrictions - 5/19/03
Bandwidth restrictions are in effect every semester the University is open. The same limits and processes operate year round. If you need more information, you can find details on the Bandwidth FAQ and Connection Agreement pages. You can make appointments for one on one consultation at the West halls (865-2948) and North (865-2946) help desks.
top
The Digital Millennium Copyright Act
Students lose connection over DMCA:

Many students have lost their internet connections due to the enforcement of the Digital Millennium Copyright Act. If you suspect your internet connection has been shut off, check your Penn State email for notification.

Important Copyright Related Reading Material:

ResCom's Copyright Infrigement Info
DMCA (Digital Millennium Copyright Act)
Letter from the PSU VP & Provost

Any further questions should be directed toward your local ResCom desk.
top
Bandwidth Consumption Page Info
Things to know about the bandwidth consumption page:

The bandwidth consumption page is designed as a tool to monitor recent bandwidth consumption, so the student has a general idea of how much bandwidth he/she has consumed up to the point the total was checked. The system checks a students total only 3 times per day (every 8 hours).  The system was not designed to and can not operate as an "up to the minute reflection of how much bandwidth they have consumed".

Please make sure to understand how to properly use the information on this page. ResCom will discuss how to properly use this information if you call or stop down to the desk to ask questions. Carefully read the information on the consumption page for details of when the data was collected and when the next information will be displayed.

The student is solely responsible for monitoring his/her own bandwidth usage. The University is still monitoring each student's Internet bandwidth total consumption; the limits and violation procedures are enforced.

Bandwidth Consumption Page
top
Symantec Antivirus Info

Most new computers arrive pre-loaded with Anti-virus software, such as Norton Antivirus or McAfee Antivirus, however, Penn State offers FREE NORTON ANTIVIRUS Corporate Edition to all registered Penn State Students (ITS UserID required for download). During the Fall Arrival weekend, ResCom tackles an enormous workload for the students, primarily handling only Ethernet connectivity service calls

However, if the technician has time, he or she will be glad to remove your computer's current Anti-virus and install Penn State's free Norton Antivirus. While your current software may function well, the Norton Corporate edition available to students has proven itself time and again as a very reliable, easy-to-use product. The Corporate Edition does not expire every year like the other packages do; NAV Corporate has free updates year after year. The ResCom staff highly recommends your taking advantage of this software.
top
W32.Welchia.Worm - 8/18/03
Specifically targeting computers running Windows XP (but also affecting those running Windows NT and 2000), this worm uses an RPC vulnerability to infect a computer remotely. The vulnerability has been addressed by this Microsoft Knowledge Base article (KB824146). That link will also allow you to download the current patch available from Microsoft or you can check for new WindowsUpdates.

Windows 95/98/ME are NOT affected.

Once infected, the worm tries to do the following:

  • Attempts to download the DCOM RPC patch from Microsoft's Windows Update Web site, install it, and then reboot the computer.
  • Checks for active machines to infect by sending an ICMP echo request, or PING, which will result in increased ICMP traffic.
  • Attempts to remove W32.Blaster.Worm.
top
W32.Dumaru - 8/16/03
There is an email circulating that appears to be from "support/security@microsoft.com" and asks the recipient to apply a patch. This is NOT a legitimate Windows patch and should NOT be opened for any reason. The email will appear like this:

From: "Microsoft" <security@microsoft.com>
Subject: Use this patch immediately !
Message:
Dear friend , use this Internet Explorer patch now!
There are dangerous virus in the Internet now!
More than 500.000 already infected!
Attachment: patch.exe
top
W32.Blaster.Worm - 8/11/03
Using the same vulnerability exploited by W32.Welchia, this virus also attempts to infect machines running Windows NT, 2000, and XP (Home and Professional). Windows 95/98/ME users are NOT affected.

The virus was originally created to initiate DDOS attacks on windowsupdate.com (which has recently been taken offline) and other large corporate websites. It can also attribute to general system instability and can compromise some security settings on your machine.

This Microsoft Knowledge Base article address and will provide links to fix the vulnerability within Windows.
top
W32.Mimail - 8/1/03
This is a virus spreading through email that appears to be sent from "admin@ -domain-" where -domain- is the domain of your email address that is receiving it. In most cases here at PSU, it would apprear like this:

From: admin@psu.edu
Subject: your account      [random characters]

Body:
Hello there,
I would like to inform you about important information regarding your
email address. This email address will be expiring.
Please read attachment for details.
---
Best regards, Administrator
[random letters]

This is NOT a valid email. No one at PSU would send you an email advising that your account will expire. The attachment included is a virus. The vulnerability it is commonly using is found in Outlook Express and has been address by Microsoft in this cumulative patch.
top
W32.Bugbear - 10/1/02
W32.Bugbear@mm is a mass-mailing worm that can also spread through Network shares. It has backdoor capabilities.

The worm will also attempt to terminate the processes of various antivirus and firewall programs. The worm propagates itself to different filenames.
top
jdbgmgr.exe - 9/25/02
There is a HOAX email going around. It instructs the user to delete jdbgmgr.exe, claiming it is a virus. This file is a valid Windows file and should not be deleted.
top
W32.Klez - 3/22/02
The subject line, message bodies, and attachment file names are random.

NOTE: There have been reports, that, some cases, if you receive a message that the virus has sent using its own SMTP engine, the message will appear to be a "postmaster bounce message" from your own domain. For example, if your email address is jsmith@anyplace.com, you could receive a message that appears to be from postmaster@anyplace.com, indicating that you attempted to send email and the attempt failed. If this is the false message that is sent by the virus, the attachment will include the virus itself. Of course, such attachments should not be opened.
top
W32.Nimda - 9/18/01

Nimda spreads through email and open network shares. This virus has been given an assessment of Extremely High Risk Nimda infects Internet Information Services (IIS) which installed by default on Windows 2000 Advanced Server.  If Windows 2000 or Windows XP is preinstalled on your computer, IIS may also be installed, leaving your computer at high risk for the Nimda virus.

What you should know: The Norton Antivirus protection against this virus was added on September 18, 2001 and all systems with Norton updated since that time and Realtime Protection running are safe from this worm.

As always, if you have any reason to believe your computer has been infected, you may contact your local ResCom desk to schedule an appointment with a technician.
top
Network Connection Update - 5/13/02
The current network registration process is being completely changed. There will be times during the summer sessions, beginning 5/13/02, that the connection page will not work. As we are testing the new software, there might be times that connections can be shut off. This is all in the testing phases, and we hope to not have these problems often. If your connection goes out, we will do our best to get it turned back on, but it might take some time because we are moving quite a bit of data to get all of this working. We apologize for any inconvenience that this mightcause you.
top
Photos of your Residence Hall Networks
top
Penn State Auxiliary and Business Services

For information about The Pennsylvania State University Ethernet Request Form,
please contact: rescom@psu.edu.
Design is provided by the Marketing and Communications Office
for Auxiliary and Business Services (absmarketing@psu.edu).
This page was last updated on Wednesday, April 25, 2007.
Nondiscrimination Statement | Equal Opportunity Policy| Copyright | Privacy