VIRUS Alert

Levers, pulleys, wedges, computers and all manner of gearhead talk.

Moderators: happywaffle, arclight

VIRUS Alert

Postby spantell » January 21st, 2009, 3:14 pm

Downandup/Conficker worm infects 9 million PCs
Wed Jan 21, 2009 11:33AM EST
See Comments (0)

Buzz up!on Yahoo!Judging from the complaints and questions filling my inbox, Windows security looks like it's already on track for its worst year this decade. The latest attack is a worm called Downandup, Downadup, Kido!, or Conficker (all the same thing), and it primarily seems to be being delivered via infected USB drives.

How's it work? By tricking you into running the virus by modifying the way "autorun" works when you plug in a drive. Look closely at the screenshot above and you'll see two entries for "Open folder to view files." The one at the top is a phony entry that actually installs the virus on your machine... but of course it's the default selection that pops up when you plug in a drive. Once installed, the virus spreads like crazy via a separate flaw in Windows networking system (now patched, so be sure to run Windows Update if you haven't lately) and can quickly infect a whole office. F-Secure has more analysis on the clever way it tricks you into installing the malware yourself.

How bad has it gotten? Estimates range from 3.5 million infected in the first four days after it bean spreading to 9 million impacted... and gettng worse. By now I figure the numbers could top 15 or 20 million.

From an antivirus standpoint, fixing Downandup isn't easy. The worm is particularly problematic because of the tricky way it involves the user in installing the software, bypassing auto-installation safeguards, plus its sophisticated way of avoiding detection, as it morphs its code constantly (using randomized elements) to make traditional, signature-based detection almost impossible.

Your best strategy for avoiding Downandup? Turn off AutoPlay/AutoRun on your computer (with Windows XP, TweakUI is the easiest way to do it). If you do see an AutoPlay dialog box like the one above, just close it and eject the disc or thumbdrive; browsing the drive manually for individual files should keep you uninfected, but you're best off not using the drive at all. And of course, make sure your system is fully patched via Windows Update.

What if you already have Downandup infecting your machine? Try your standard antivirus utility as a fix. If that doesn't work, F-Secure has a removal tool that should get rid of it. Good luck out there.
spantell
 
Posts: 121
Joined: December 26th, 2007, 1:09 pm

Postby allenborder » July 30th, 2009, 2:36 am

Hi..
According to me, AVG Antivirus is the best because it detects mostly all the Virus and delete that virus.
AVG AntiVirus is really a nice antivirus i using it from last 2 years and because of that my PC run speedily....
"success is not the same for everybody."
allenborder
 
Posts: 3
Joined: July 30th, 2009, 2:17 am

Postby Matt » July 30th, 2009, 9:31 am

allenborder wrote:Hi..
According to me, AVG Antivirus is the best because it detects mostly all the Virus and delete that virus.
AVG AntiVirus is really a nice antivirus i using it from last 2 years and because of that my PC run speedily....


Unless this is an actual human, I would distrust this suggestion mightily.
The Quiet One
Improv For Evil
User avatar
Matt
 
Posts: 1551
Joined: December 30th, 2005, 12:17 pm

Postby Justin D. » July 30th, 2009, 11:24 am

Matt wrote:
allenborder wrote:Hi..
According to me, AVG Antivirus is the best because it detects mostly all the Virus and delete that virus.
AVG AntiVirus is really a nice antivirus i using it from last 2 years and because of that my PC run speedily....


Unless this is an actual human, I would distrust this suggestion mightily.


But he said, "According to me". Is there a more reliable source? I think not.
User avatar
Justin D.
 
Posts: 1521
Joined: March 1st, 2007, 12:33 pm
Location: The Land of Morlocks and Elois

Postby York99 » July 30th, 2009, 2:33 pm

Hi Allen
"Every cat dies 9 times, but every cat does not truly live 9 lives."
-Bravecat

Image
User avatar
York99
 
Posts: 1998
Joined: April 12th, 2006, 8:47 am
Location: There


Return to Tech Talk

Who is online

Users browsing this forum: No registered users and 1 guest

cron