Beware Conficker worm come April 1

people have misinterpreted it. no one is saying its going to do whatever it was meant to do on April 1st. it's just going to become more activee. what this means is, instead of updating to 250 domains like it has been, it's going to update to i think 50,000 domains.

the authors could have or could put any file on any one of those domains at any point in time, that has nothign to do with april 1st. if they wanted to activate the virus, they could have already at any time, it's just that it will be a lot easier on april 1st and after. to reiterate, the virus is not locked to april 1st. in fact, given how many people are being cautious on april 1st, it is likely that the virus authors will just wait a week or so, and then activate the virus.

when i say activate it, I mean they will upload whatever they decide to one or more of those 50000 domains, and when the virus checks that domain, it will take that file and execute whatever the file tells it to. it could be anything from data theft to destruction.

 

can I get infected if I were to play a multiplayer game like Call of Duty 4 online, or even log on to steam?

 

^^^

I think you have a small probability of getting infected by playing games online. I'm not exactly sure whether steam has security protocols for their system regarding the conficker.

However, I've been playing Battlefield 2 online the entire day, and so far, nothing has hit me. Given this, I have NIS2009 updated to the minute...

 

Wear latex gloves and a tinfoil hat and you'll be fine.

 

I did that, and I was just fine! I also wore some swimming goggles to be on the safe side!

Nah, I was safe! You just have to be careful ~ The more *paranoid* you get about these things, the worse you make it for yourself. Chill.

Cin

 

One of its common version (Win32/Conficker.B) might spread through file sharing and via removable drives, such as USB drives (also known as thumb drives). The worm adds a file to the removable drive so that when the drive is used, the AutoPlay dialog will show one additional option.

The Conficker worm can also disable important services on your computer.

 

I got this automated Email from Norton today:

The Conficker worm (also known as Downadup or Kido) has managed to infect a large number of computers worldwide.
This worm can do the following:
Steal your data from your PC including your keystrokes and
personal information
Attack other PCs or send out email
Prevent you from accessing security websites to get help or
update your virus definitions
Make sure you are protected by updating your Norton product

 

View attachment 32600

Just remember to double up on them latex gloves; don't rely on just one layer of latex alone!

 

Do you think conflicker could have anything to do with my recent event logs stopping?
I started getting a popup saying the microsoft event log has stopped working.

 

I think that the solution might be a bit too harsh...

[Link.]

Safe and Sound, no infections within the past year.

 

updated the installed anti virus software and scan the computer .
windows firewall should be enabled.
do not click on the pop ups.
download the internet from the good sites.

 

Can you make a list of good sites from where we can download the internet, Randdy?

 

You can download the internet from the link in my sig.
Join up and become an internet star.

 

Well on the intresting side it looks like conficker is finally downloading instructions from the net.

So far it hasnt really dont much but hit up a few web sites to check for net connection, checks the time, then deletes itself off the system.

Seems like alot of fuss over nothing, so there probably more to it than this.

I'm getting home tomorrow and ive got an old 60gb drive that i dotn do anything with i'm installing vista and intentionally infecting the drive with no protection just to see what all the instructions are doing (or wanting to do)

yay experimentation

 

Sounds cool I wonder how u are gonna get infected

 

This is will certainly be a very interesting *yay experimentation*....looking forward to your results!

Cin

 

Well, the instructions are all encrypted. Even the security companies couldn't figure out. Good luck with that though.

 

Sorry, i didnt mean to imply that i would be able to crack the instructions,(though that would be totally cool) i just want to give the virus a completely unprotected system and see what it does.
Kinda like the AV companies "honey pot" computers.

I'm curious if its an insideous bot net, or super cyber terrorism, or just a really big April Fools joke.

 

Would be cool, but I'm like 99% positive that you won't be able to get a hold of the the virus. ISP's have it on lock after the Honeynet Project and the Nmap exploit.... it would take a new variant for it to start spreading again, especially since the virus authors are deliberately instructing the virus to slow its spread.