23 replies to this topic

[RnROutl@w]

Hey folks anyone now anything about this badboy? The conficker worm/virus?? Suppose to wreck havoc on April 1st. I just heard about it but I figure someone here must now more about it. Should we be worried? and is it one of those you have to DL it or open an attachment to get infected?


Cheers

[RockyTop]

April Fools?

[Sylvannerese]

Yes you should be worried. Conficker has infected about 20 million computers and it can steal passwords and personal information. Also, the virus, when activated (April 1st) will search for updates (instructions) from 50,000 different websites. Once it has these updates it will mess with your computer at which point normal anti virus may not work.

You would probably have to download it somehow (it is spreading quickly through USB drives) but it's hard to tell because it doesn't show the normal systems of a virus. i.e I't doesn't really slow down your computer but instead is blocking security features such as your anti virus, safe mode, windows restore points, and firewalls.

Before midnight, download and run this tool http://www.symantec....-011316-0247-99
A quick way to check if you have it is to try booting your computer in safe mode, because the virus won't allow it.

Here's some more info.
http://tech.yahoo.co...ogs/null/132464

http://www.tgdaily.c...-41883-108.html

This is a very dangerous virus, it's not an April's Fool joke. However, the remote user who activates the virus could decide not to do anything, but if he went through the time to program the thing and have it be able to search 50,000 sites for updates, I'm pretty sure I'd take actions.

-Matt

[RnROutl@w]

Yes you should be worried. Conficker has infected about 20 million computers and it can steal passwords and personal information. Also, the virus, when activated (April 1st) will search for updates (instructions) from 50,000 different websites. Once it has these updates it will mess with your computer at which point normal anti virus may not work.

You would probably have to download it somehow (it is spreading quickly through USB drives) but it's hard to tell because it doesn't show the normal systems of a virus. i.e I't doesn't really slow down your computer but instead is blocking security features such as your anti virus, safe mode, windows restore points, and firewalls.

Before midnight, download and run this tool http://www.symantec....-011316-0247-99
A quick way to check if you have it is to try booting your computer in safe mode, because the virus won't allow it.

Here's some more info.
http://tech.yahoo.co...ogs/null/132464

http://www.tgdaily.c...-41883-108.html

This is a very dangerous virus, it's not an April's Fool joke. However, the remote user who activates the virus could decide not to do anything, but if he went through the time to program the thing and have it be able to search 50,000 sites for updates, I'm pretty sure I'd take actions.

-Matt

So if you by chance have it already will your computer not boot in safe mode today? or after april 1?

[Sylvannerese]

If you have the virus it will prevent you from starting in safe mode. I could on my computer but I ran the checker just to be safe.

If it is already on your computer and you don't do anything about it then you could lose personal info, passwords, etc...

Also be sure to scan USB drives because the virus hides itself on those and then infects other computers. Whoever wrote it is really good at programming. Microsoft is offering $250,000 to whoever can supply info leading to their arrest.

[Scoop1967 - Dan]

Symantec (Norton) Removal Tool
Click Here to Download

Symantec Article
Click Here

[RockyTop]

This is not good news. My computer wouldn't boot up yesterday at all. I couldn't fix it, and I had to send it in to get checked out.

[RnROutl@w]

So technically the only way to fix if the removal tool doesn't work would be a complete format and reinstall

[Sylvannerese]

I wouldn't go to those extreme measures unless absolutely necessary. If you have it, run the removal tool scanner and it should eliminate the threat. Remember, it isn't going active until after midnight so if you feel that you might have the virus, run the tool and try to get rid of it that way. Then try your system restore points with combinations of anti virus software. If nothing works, try to back up what you can and reformat.

[mexican eskimo]

guess im going to have to set my computer clock back so it doesnt hit april, back to winter.

[Rick]

I am taking this seriously as well,
but anyone suspect another Y2K? Well, Rocky I dont think the virus would have done that, however I am not positive.
Best of luck all...few hours

[Base Ball Bear]

guess im going to have to set my computer clock back so it doesnt hit april, back to winter.

Don't bother, man. They're saying it won't have an effect. The guy controlling the virus can choose to set it off whenever, not relying on the infected system's clock.

Thanks for the links guys.

[bogeydeadsix]

The log data and network captures from the honey pot machines at the lab so far have done nothing but add a bunch of places it can get updates from.

[Colonel_Flagg]

The log data and network captures from the honey pot machines at the lab so far have done nothing but add a bunch of places it can get updates from.

Then anyone that set up a honet-net/pot with accurate data contained therein is a moron. Honey pots/nets don't allow access in nor allow access to, legitimate files. They may contain a filename looked for by the malicious software, but that filename doesn't contain the data it needs to do "X".




/CF

[Sylvannerese]

My shop teacher recorded something from 60 minutes last night about the Conficker virus. Apparently it is also a keylogger so if your computer is infected it sends your usernames and passwords back to the remote computer. I doubt they will activate the virus April 1st, he'll probably do it when there's less pressure. Also everyone's guard will be down because a lot of people will be thinking "Oh, I survived April Fools, I don't have to worry anymore."

I've heard rumors, not confirmed though, that Verizon got hit and you should be careful checking your email if you have Verizon. However I haven't found anything to back this up so it could very well just be talk.

However from the 60 minutes episode, CBS had the Conficker virus on their network.

[RnROutl@w]

My shop teacher recorded something from 60 minutes last night about the Conficker virus. Apparently it is also a keylogger so if your computer is infected it sends your usernames and passwords back to the remote computer. I doubt they will activate the virus April 1st, he'll probably do it when there's less pressure. Also everyone's guard will be down because a lot of people will be thinking "Oh, I survived April Fools, I don't have to worry anymore."

I've heard rumors, not confirmed though, that Verizon got hit and you should be careful checking your email if you have Verizon. However I haven't found anything to back this up so it could very well just be talk.

However from the 60 minutes episode, CBS had the Conficker virus on their network.

I ran that tool you had the link for and everything came back clean!!! Hopefully it stays that way! My question now is why do people create things like this? I mean will they use the info collected to empty people bank accounts and whatnot?? Or is it more of because they can type of thing?

[Sylvannerese]

It depends. There's multiple reasons.

Some people do it just because they want to see if they can.
Others try to do it because they want to gain money.
Some people do it just because they hate other people. On the 60 minutes episode there was one hacking group that was anti-American and their homepage was a burning American flag which made me sick.
Then there's a few people that think they will get hired by a good company if they see their skills in programming by making these viruses, which as of lately, has instead been getting them arrested.

Anyway, glad your computer is clean. I ran mine again today just to be sure that nothing came through.

[RnROutl@w]

It depends. There's multiple reasons.

Some people do it just because they want to see if they can.
Others try to do it because they want to gain money.
Some people do it just because they hate other people. On the 60 minutes episode there was one hacking group that was anti-American and their homepage was a burning American flag which made me sick.
Then there's a few people that think they will get hired by a good company if they see their skills in programming by making these viruses, which as of lately, has instead been getting them arrested.

Anyway, glad your computer is clean. I ran mine again today just to be sure that nothing came through.

Thats crazy!! Anyway thanks again for the info

[No_Nickname]

Checked mine the night before and then again on April 1st, both came back clean on the laptop, now I just have to check the PC

[HARRY TRIGGER]

No problems with mine so far. But on the morning of April 1st, I was looking outside the house where my internet cable is buried and enters my home, when I spotted this.

A worm, and I knew he was heading for my internet connection, so I took care of that worm/virus. All is well as of now.
Keeping an eye out still