ARP virus prevents your computer from surfing the Internet.

Since the school's fiber-optic broadband access to home users, our school has been frequently attacked by ARP virus, which has caused the campus network to be intermittent and unable to access the Internet.

First, ARP virus introduction:

The principle of ARP spoofing is to forge a gateway. Its principle is to establish a fake gateway, so that the PC cheated by it can not access the Internet through the normal router, but send data to the fake gateway. In the PC's view, I just can't get online, "I'm disconnected."

At present, there are dozens of variants of "ARP spoofing" series viruses infected by computers in campus networks. According to their working characteristics and external characteristics, these variants can be roughly divided into three categories, among which "ARP spoofing" and "malicious eavesdropping" pose the greatest threat to the normal operation of the school LAN and the information security of network users.

"ARP spoofing" virus will cause computers in the local area network to be unable to communicate with other computers, and the network has no tolerance for this virus. As long as one computer in the LAN is infected with ARP spoofing virus, it will cause communication failure of the whole LAN. "Malicious eavesdropping" virus is the worst one in the ARP spoofing virus series. It will not cause the interruption of the local area network, but will only cause a large delay in the network. The poisoned host will intercept all communication data in the LAN and send the intercepted data to specific external users, which will have a very serious impact on the network use of LAN users and directly threaten their own information security.

Second, the "ARP spoofing" series of virus prevention methods

At present, there are various ways and means to spread ARP spoofing series viruses, so there is no absolutely comprehensive and effective prevention method. From practical experience, the most effective prevention methods are patching windows, correctly configuring and using network firewalls, installing antivirus software and updating virus database in time. For Windows patches, not only SP2(XP) or SP4(2000), all subsequent security updates must be completed in time to prevent attacks from viruses and Trojans to the maximum extent.

In addition, you can download and install Qihoo 360 security guards, often scan Trojans, remove malicious plug-ins, fix system vulnerabilities, and start ARP virus interception. You can also see in the ARP firewall whether your PC was attacked and which MAC address PC attacked your PC. If your computer is attacked by ARP, please post the source MAC address of your computer to the school website forum or send it to the school mailbox gdmjzx @ 163.com, and please reinstall and disinfect the poisoned computer as soon as possible.

In order to better master ARP attacks, users are advised to rename their computer names to their own names (Pinyin). Right-click My Computer, Properties, Computer Name, and then change.

Users who have not reported their MAC address should report your computer MAC address to the school computer room as soon as possible, and send your name and computer MAC address to the school mailbox gdmjzx@ 163.com before June 6, 2008. Otherwise, your computer will not be able to access the Internet. Please refer to the school website /article.asp for computer MAC address query method. id=779 .