Last-minute Conficker survival guide
Tue Mar 31, 2009 1:42PM EDT
See Comments (3068)
Tomorrow -- April 1 -- is D-Day for Conficker, as whatever nasty payload it's packing is currently set to activate. What happens come midnight is a mystery: Will it turn the millions of infected computers into spam-sending zombie robots? Or will it start capturing everything you type -- passwords, credit card numbers, etc. -- and send that information back to its masters?
No one knows, but we'll probably find out soon.
Or not. As Slate notes, Conficker is scheduled to go "live" on April 1, but whoever's controlling it could choose not to wreak havoc but instead do absolutely nothing, waiting for a time when there's less heat. They can do this because the way Conficker is designed is extremely clever: Rather than containing a list of specific, static instructions, Conficker reaches out to the web to receive updated marching orders via a huge list of websites it creates. Conficker.C -- the latest bad boy -- will start checking 50,000 different semi-randomly-generated sites a day looking for instructions, so there's no way to shut down all of them. If just one of those sites goes live with legitimate instructions, Conficker keeps on trucking.
Conficker's a nasty little worm that takes serious efforts to bypass your security defenses, but you aren't without some tools in your arsenal to protect yourself.
Your first step should be the tools you already have: Windows Update, to make sure your computer is fully patched, and your current antivirus software, to make sure anything that slips through the cracks is caught.
But if Conficker's already on your machine, it may bypass certain subsystems and updating Windows and your antivirus at this point may not work. If you are worried about anything being amiss -- try booting into Safe Mode, which Conficker prevents, to check -- you should run a specialized tool to get rid of Conficker.
Microsoft offers a web-based scanner (note that some users have reported it crashed their machines; I had no trouble with it), so you might try one of these downloadable options instead: Symantec's Conficker (aka Downadup) tool, Trend Micro's Cleanup Engine, or Malwarebytes. Conficker may prevent your machine from accessing any of these websites, so you may have to download these tools from a known non-infected computer if you need them. Follow the instructions given on each site to run them successfully. (Also note: None of these tools should harm your computer if you don't have Conficker.)
As a final safety note, all users -- whether they're worried about an infection or know for sure they're clean -- are also wise to make a full data backup today.
What won't work? Turning your PC off tonight and back on on April 2 will not protect you from the worm (sorry to the dozens of people who wrote me asking if this would do the trick). Temporarily disconnecting your computer from the web won't help if the malware is already on your machine -- it will simply activate once you connect again. Changing the date on your PC will likely have no helpful effect, either. And yes, Macs are immune this time out. Follow the above instructions to detect and remove the worm.
Top 5 Posts
More About Software
Comments on Last-minute Conficker survival guide
Post a Comment
Join in the discussion. Here you'll see the comments in the order they were posted.
-
47 Posted by computer_guy_2k on Thu Sep 3, 2009 3:28PM EDT Report Abuse
AVG & Avast are good, I personally use Avira Antivirus Personal Edition from www.free-av.com
-
48 Posted by gears2you on Thu Sep 3, 2009 4:07PM EDT Report Abuse
My solution: Every high school girl should have sex with at least one geek at their school. That way they wouldnt wind up being frustrated, angry losers that shoot up their schools or sit around on Friday nights taking their revenge on the world by writing these internet worms.
-
49 Posted by coolsaxman@sbcglobal.net on Thu Sep 3, 2009 3:29PM EDT Report Abuse
For people who don't have antivirus, AVG Free will remove the Conficker virus. I've been using AVG Free for a couple years, and I'm my professional opinion, it works just as good as Norton or McAfee. http://free.avg.com/
-
50 Posted by bhodie1 on Thu Sep 3, 2009 3:06PM EDT Report Abuse
Why wouldn't it help to shut off my computer on April 1? If something happens, I will know before my computer does it. When I do boot up, I can do so without internet access. So no instruction can reach the worm. Of course I will need instructions on how to find and delete the appropriate file. I could get this from a clean computer on the internet. Also i did have it and I think some scan cleaned it, but I don't know for sure. It may have went underground.
-
51 Posted by gyperusse on Thu Sep 3, 2009 4:15PM EDT Report Abuse
Conflicker D day lol i have mcafee so hopefully ill be good Mcafee has helped so far i recommend it!=p
-
52 Posted by lcc_357 on Thu Sep 3, 2009 4:57PM EDT Report Abuse
Okay. See, unfortunately some of us out there aren't able to do something such as back up out computer. Which sucks.
-
53 Posted by punky625 on Thu Sep 3, 2009 8:22PM EDT Report Abuse
what if you have a mac? will it effect macs?
-
54 Posted by darrenlooker on Thu Sep 3, 2009 3:36PM EDT Report Abuse
Buy a Mac and stop worrying.
-
55 Posted by pecador_sinner on Thu Sep 3, 2009 8:05PM EDT Report Abuse
will this affect Macintosh computers? I just bought a macbook and I don't want all this to happen.
-
56 Posted by jlm72947 on Thu Sep 3, 2009 4:36PM EDT Report Abuse
AVG 8.0 is free and I have it scan my computer every morning
-
57 Posted by devksen on Thu Sep 3, 2009 3:42PM EDT Report Abuse
Get a Mac!!!
-
58 Posted by da_gordon on Thu Sep 3, 2009 3:38PM EDT Report Abuse
Avast, Antivir and AVG all have free and solid antivirus software for personal use. Malwarebytes and Superantispyware are free and powerful antimalware apps. The Malwarebytes free product must be run manually but is very good at what it does.
-
59 Posted by sjoy1975 on Thu Sep 3, 2009 9:25PM EDT Report Abuse
I have been using the free edition of AVIRA for a few years and have had no problems. It will automatically update every day, though you will need to do your own system scans. I recommend doing them every week for the first month then every few weeks after that. The scans take about 30 minutes but you can't walk away while it runs. It will advise you right away if anything (ie. trojans, viruses and malware) has been located and ask you if you want to quarantine, deny access or remove thr program. Hopefully (big-time fingers crossed on this) it has been successful in keeping this Conficker C from infecting my PC. Good luck everyone!
-
60 Posted by bbcl714 on Thu Sep 3, 2009 3:03PM EDT Report Abuse
@ beershrine Riiight. How's that tin foil hat coming along?
-
61 Posted by smuinkc on Thu Sep 3, 2009 9:30PM EDT Report Abuse
To those of you who asked if turning off your computer until April 2 will work - please re-read the last paragraph of the article. NO!
-
62 Posted by alasia26 on Thu Sep 3, 2009 2:49PM EDT Report Abuse
I have AVG also I just hope it will work.
-
63 Posted by ihab.asad on Thu Sep 3, 2009 4:23PM EDT Report Abuse
What my computer might die i just got this yesterday.
-
64 Posted by maranello551 on Thu Sep 3, 2009 7:05PM EDT Report Abuse
um im pretty sure ur computer cant be infected when its off
-
65 Posted by maranello551 on Thu Sep 3, 2009 7:05PM EDT Report Abuse
um im pretty sure ur computer cant be infected when its off
Sponsored Links
My Tech
Please enable your browser's cookies to activate the My Tech column.
Also on Yahoo! Tech
| Computers | Home Office | Wi-Fi & Networking | Phones & PDAs | Cameras & Camcorders | TV & Home Theater | Portable Audio |
|---|---|---|---|---|---|---|
46 Posted by jorge3019 on Thu Sep 3, 2009 4:41PM EDT Report Abuse
Avg free edition is not the best try kaspersky 30 day trial it works great.