NeuroTalk Support Groups

NeuroTalk Support Groups (https://www.neurotalk.org/)
-   Computers and Technology (https://www.neurotalk.org/computers-and-technology/)
-   -   Learned this from my computer tech guy! -fast-moving Conficker computer worm (https://www.neurotalk.org/computers-and-technology/82637-learned-computer-tech-guy-fast-moving-conficker-computer-worm.html)

CoolAngel26 03-28-2009 01:59 PM

Learned this from my computer tech guy! -fast-moving Conficker computer worm
 
http://tech.yahoo.com/news/ap/200903...cker_countdown

who moi 03-28-2009 02:29 PM

My friend who works for a very high tech company that tests out the latest high speed and future speed phone company---one of the employee got infected. From there, it infected all the computers.

after trouble shooting, resintalling OS on all their puters and server. They are still having problems.

this is pretty big.

The biggest thing is to update all the security patches if one is using MicroSoft.

click here to check for security updates and download patches

although no one is sure how exactly it works.

I would suggest a few protocols:

1) do not download or view any attachments starting fro March 31-April 2nd. Even from someone you know. Especially if someone just sent you a LINK to somewhere.

2) try not to browse anywhere that you are not familiar with. Try not to click on anything/links that you are not sure of.

watch out for those fake links.

3) the past couple of versions of the worm will try to make you buy things by scaring you into thinking that your puter has been infected.

if you get that pop up. Immediately get away from that site. Run your anti-virus and anti-spyware.

although the only recourse might end up just reinstalling your OS.

4) if you haven't done so yet, back up everything.

5) update all your anti-virus and anti-spyware EVERYDAY.

~~~~~~~~~~~~~~~~~~~~

supplementary article to this worm from CNN

~~~~~~~~~~~~~~~~~~~~

mrsD 03-29-2009 11:06 AM

We have been contacted by Avast...
They say as long as all updates are accurate, risk is very low.
They also say the risk is higher if you have NOT done the SP3 for
Windows.

I am going to turn off our two computers Mar 31 PM.
Just in case.

Jomar 03-29-2009 11:28 AM

The fast-moving Conficker computer worm, a scourge of the Internet that has infected at least 3 million PCs, is set to spring to life in a new way on Wednesday -- April Fools' Day.


http://www.snopes.com/computer/virus/conficker.asp
http://www.technologyreview.com/wire/22364/?a=f

Am I at risk of having the Conficker worm?

Most antivirus software could detect and block the Conficker worm, so if you have updated antivirus software on your computer, you are at a much lower risk of being infected by the Conficker worm.

If you or your network administrator have not installed the latest security updates from Microsoft and your antivirus provider, and if you have file-sharing turned on, the Conficker worm could allow remote code execution. Remote code execution allows an attacker to take control of your computer and use it for malicious purposes.

http://www.microsoft.com/protect/com...conficker.mspx

who moi 03-29-2009 03:12 PM

I would add caution that while MicroSoft is very sure of its patch files will block the worm. That it is still only 98% fool proof.

The truth is with April Fools worm (the 3rd version), nobody really knows what it is going to be like until April Fool's day.

but the best defense it to make sure everything is updated and don't visit sites unknown, download files unknown, turn off all file sharings, turn off remote access.

those that use file sharing sites such as limewire would be very susceptible to attacks.

fastest way to check to see if your remote access is on:

right click on MY COMPUTER>>>> Properties>>> click on REMOTE Tab>>> make sure the check is OFF

and always click on "APPLY"

the anti-virus/spyware can detect the first two versions. But the third version is what will happen on April 1st. And it is still an unknown.

*while the worm is classified as a "virus" it is more than that. Malware, spyware, greyware, rogueware can be added to this particular worm. That is why nobody truly has a TOTAL defense against it.

Jomar 03-29-2009 11:36 PM

Other names for it and more info-

[ + Alias:
# W32.Downadup.C [Symantec]
# Trojan.Win32.Pakes.ngs [Kaspersky Lab]
# W32/Confick-G [Sophos]
# Worm:Win32/Conficker.D [Microsoft]
# Worm.Win32.Conficker [Ikarus]
# Win32/Conficker.worm.88064 [AhnLab]

* Summary of the findings:

What's been found
Capability to block security-related software by modifying firewall settings and by disabling security services, such as Windows Update, Norton Autoprotect, Kaspersky Anti-Virus, etc.

Contains characteristics of an identified security risk. ]
http://www.threatexpert.com/report.a...3303a68368e116

Jomar 03-29-2009 11:51 PM

[If you’ve got it on your machine, only way you might know is if your computer suddenly accesses one of several popular sites like Ask.com, Baidu, Facebook, Google, Imageshack.us, rapidshare.com, W3.org, or Yahoo!. This is how the worm tests for Internet connectivity. (SecurityProNews)]

http://businessmirror.com.ph/adverti...n-april-1.html

Jomar 03-30-2009 12:00 AM

more at Cnet.com -
http://news.cnet.com/8301-1009_3-102...CmoreStories.0

mrsD 03-30-2009 01:43 AM

Well, what would we do without Jo?

The bottom line? Should we disable the auto function?
We do all the updates, so that should be covered.

Should I close Evernote? this has been giving me trouble this week. It runs on my bottom tray/panel. I am getting the feeling this should be closed.

Curious 03-30-2009 08:33 AM

Quote:

Originally Posted by who moi (Post 488369)
I would add caution that while MicroSoft is very sure of its patch files will block the worm. That it is still only 98% fool proof.

The truth is with April Fools worm (the 3rd version), nobody really knows what it is going to be like until April Fool's day.

but the best defense it to make sure everything is updated and don't visit sites unknown, download files unknown, turn off all file sharings, turn off remote access.

those that use file sharing sites such as limewire would be very susceptible to attacks.

fastest way to check to see if your remote access is on:

right click on MY COMPUTER>>>> Properties>>> click on REMOTE Tab>>> make sure the check is OFF

and always click on "APPLY"

the anti-virus/spyware can detect the first two versions. But the third version is what will happen on April 1st. And it is still an unknown.

*while the worm is classified as a "virus" it is more than that. Malware, spyware, greyware, rogueware can be added to this particular worm. That is why nobody truly has a TOTAL defense against it.

Thank you for that remider!

If anyone has had internet problems "fixed" by making phone calls and them doing a "test"..yep..they are remotely going into your computer.

:o I just had to unclick mine again.


All times are GMT -5. The time now is 06:49 PM.

Powered by vBulletin • Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.

vBulletin Optimisation provided by vB Optimise v2.7.1 (Lite) - vBulletin Mods & Addons Copyright © 2024 DragonByte Technologies Ltd.