Friday, March 27, 2009

Virus: Conficker

Radioactive

following the Blaster worm footstep that caused a huge havoc on 2003, now comes the Conficker worm. discovered since october 2008. once executed or triggered, Conficker disables certain system services: windows update, windows security, windows defender, windows error reporting, antivirus n anti-malware software, etc.
the latest news is "on the 1st of April, all infected computers will be controlled by a master machine located somewhere across the web". would it be denial of service? stealing of personal data? wiping out the hard drives? or malware pop-ups?

anything is possible at this point.
it is advised that genuine windows are patched, n make sure the antivirus n anti-malware software is actually running, since Conficker may have disabled it. better safe than sorry!

14 comments :

  1. Don't open your com on the 1st of April or just don't get online..then nothing will happen....

    Ahem....

    If you are scared that is../. =p

    ReplyDelete
  2. Wow, Conflicker can really cause a lot of damage to a computer. That really is a lethal one indeed.

    I really hope no one I know(or anyone for that matter) has to experience Conflicker.

    Thanks for posting my good friend.:)

    BTW, thanks for following my blog on FB. I'm following you on there, too.:)

    ReplyDelete
  3. It is very cruel to have this worm in this web! Hate it!

    ReplyDelete
  4. COMETH: n not going online for a whole day, maybe the next day too? i think it's not gonna happen to any of us here. XD

    DAVID: i sure hope no one has to go through it. there are so many pcs around me so far that is infected. but nothing happens for now since it isn't activated yet. it felt so threatening! n thanks for following as well. :)

    AKIRA: let's hope nothing deadly comes out of it. :)

    ReplyDelete
  5. Hopefully, dont come to us, that's for sure...

    ReplyDelete
  6. AKIRA: we are within the internet cycle, there is always this risk of being exposed to such dangerous "creatures". just walk by is fine. :p

    ReplyDelete
  7. how in the world might such a ridiculous worm get in my system in the first place, i wonder?

    ReplyDelete
  8. COFFEE: through downloads n sometimes certain "clicks" can triggered it. just make sure your pc is well patched n protected (antivirus). there is always a risk, but we can prevent it from happening by all possible forms. :)

    ReplyDelete
  9. Allow me to add some information. This worm does not only spread via internet, but also via local network and usb storage device. So even your PC is offline, it doesn't guarantee that you're protected as it also spreacd via local network & usb removable storage. Apart from updating your antivirus and anti malware tool with their latest definition, it's best to get it equipped with a firewall tool. Prepare to do data back up or system recovery backup before disaster strikes.

    For more information about Conflicker, go to http://en.wikipedia.org/wiki/Conficker#Initial_infection

    ReplyDelete
  10. ALEX: thanks for such useful information! i just get to know this morning that the virus can infect LAN as well. i am guessing the connection comes from removable storage? since the LAN isn't connected to the Internet in any ways, it seemed impossible to get infected.

    ReplyDelete
  11. Well, these virus/worm will spread through LAN if one of the connected PC has already being infected. And it'll spread through removable storage device if it has already being used on an infected PC. So it's best to equipped your PC with a firewall as it may be able to detect any suspicious activities & prompted you for further action. Also do scan your removable storage device each time prior to accessing it. Furthermore, do visit the Antivirus website from time to time, as they may have release the virus removable tool & instruction.

    ReplyDelete
  12. ALEX: that make sense, so the only possible way of infecting a LAN is through removable storage. no worries, the steps you mentioned is everything i had been practicing for all these while. n also instructed those around me to do the same thing. as for checking the antivirus website periodically, i will have to remind myself to make that a habit as well. thanks for the information again! :)

    ReplyDelete
  13. FYI, Conficker removal tools & intructions are now available at http://www.confickerworkinggroup.org/wiki/pmwiki.php/ANY/RepairTools.

    ReplyDelete
  14. ALEX: thank you so much for the information! :)

    ReplyDelete