PDA

View Full Version : The Conficker Worm: What Happens Next?



BAMAPHIN 22
03-30-2009, 09:57 AM
The Internet is infected. Malicious computer hackers have been creating more and more weapons that they plant on the Internet. They call their weapons viruses and worms - they're creepy, crawly toxic software that contaminate our computers without our ever knowing it. You can be infected by simply visiting your favorite Web site, or just by leaving your computer on, overnight while you're asleep.

And the problem is growing, exponentially. Last year the number of infections tripled. And an entire industry of computer security professionals is in a race to keep the hackers from their goal, which is usually to steal your money.



http://www.cbsnews.com/stories/2009/03/27/60minutes/main4897053.shtml?tag=topHome;topStories

ih8brady
03-31-2009, 09:35 AM
I saw this on the news, would be awful to see this become an issue in already conflicted times. We'll see tomorrow though.

Dolphan5876
03-31-2009, 01:09 PM
If you can't access Microsoft automatic updates, you probably have it. Then it leaves a back door so that even if you get rid of it, it comes back through the back door and your infected again. The worm is scheduled to Update on 4-1. And whatever it was that hit finheaven before threw my PC for a loop and it took days to get that wiped clean. Hope this helps some of my Fin Fans

Microsoft Malicious Software Removal Tool: http://www.microsoft.com/downloads/details.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en (http://www.microsoft.com/downloads/details.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en)
F-Secure removal utility: ftp://193.110.109.53/anti-virus/tools/beta/f-downadup.zip (ftp://193.110.109.53/anti-virus/tools/beta/f-downadup.zip)
McAfee's removal tool: http://67.97.80.71/vil/conficker_stinger/Stinger_Coficker.exe (http://67.97.80.71/vil/conficker_stinger/Stinger_Coficker.exe)
McAfee just released this Stinger build on Monday, March 30, and says it will update it on a daily basis (http://www.avertlabs.com/research/blog/index.php/2009/03/27/w32conficker-much-ado-about-nothing/) to include new Conficker variants.

LouPhinFan
03-31-2009, 07:02 PM
As long as you keep your Microsoft updates current and your anti-virus definitions up-to-date then most home user will be fine. Its corporate networks that need to be careful...

Dolphan7
04-09-2009, 06:35 PM
UPDATE on Conficker Worm

http://tech.yahoo.com/blogs/null/137609


Here's the scoop: On April 8, Conficker began updating itself via Internet download, a process which became possible on the April 1 launch date. Before April 8, Conficker had been searching for updates but hadn't found any such instructions. Now they are finally being delivered.
What's in those instructions, though, remains a bit of a mystery: The downloaded programs are heavily encrypted, so they can't be analyzed in detail. We do know that, after installation, the instructions we can see are relatively benign: They tell the computer to check one of five random websites -- MySpace, eBay, AOL, CNN, and MSN -- in order to verify the computer has internet access. It then confirms the date and time.
After this, the downloaded software seemingly deletes itself, along with every trace that it had ever been installed (right down to the registry keys).