1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
  2. Greetings Guest!!

    In order to combat SPAM on the forums, all users are required to have a minimum of 2 posts before they can submit links in any post or thread.

    Dismiss Notice

Headsup - Cornficker (virus) is activating

Discussion in 'UHall' started by Harlequin, Apr 28, 2009.

  1. Harlequin

    Harlequin Babbling Loonie
    Stratics Veteran

    Joined:
    Jun 11, 2008
    Messages:
    2,716
    Likes Received:
    32
  2. I read a story on yahoo the other day about this. Some of the infected machines were networked, commercial computers. I think there's probably going to be some job openings for network engineers at quite a few businesses in the near future...
     
  3. RichDC

    RichDC Guest

    I just read through that article and im at a loss...wtf does it do??

    Im not computer literate btw so in laments terms would be nice, also...how am i meant to stop it?
     
  4. Crysta

    Crysta Babbling Loonie
    Stratics Veteran Alumni

    Joined:
    May 12, 2008
    Messages:
    2,418
    Likes Received:
    73
    Pretty sure the only known way to stop the version being talked about is a complete system reset to factory default... but as to DETECTING it... THAT i'm not sure of.
     
  5. The top antivirus companies all released updates designed specifically to search out and remove any traces of this virus. I posted a link to an article that had the links to each company's web page that contained them in the last thread that brought this subject up.
     
  6. debii

    debii Journeyman
    Stratics Veteran Stratics Legend

    Joined:
    Jun 14, 2003
    Messages:
    162
    Likes Received:
    0
    thanks for the info :)
     
  7. Crysta

    Crysta Babbling Loonie
    Stratics Veteran Alumni

    Joined:
    May 12, 2008
    Messages:
    2,418
    Likes Received:
    73
    Care to link it again?
     
  8. MorganaLeFey

    MorganaLeFey Guest

    My cable techie (who happens to be my brother lol) said that even though Conflicker didn't devastate like it had anticipated on April 1st, that we should continue to update our virus software as much as possible. This is because they were seeing signs that the virus continues to "develop" over each system or network it infects and will continue to do so well into May.

    The first sign of an infection is that you wouldn't be able to access your virus checker's website, nor would you be able to access the windows update sight. Only way to fix it is to run a fix that you download on another computer that isn't infected.

    Anyway, it's more a pain in the ass than it is complicated. I have 5 computers I'm troubleshooting everyday (3 at home and 2 at work). Every morning I update all of them, whether they need it or not. No problem so far. Knock on wood.
     
  9. Harlequin

    Harlequin Babbling Loonie
    Stratics Veteran

    Joined:
    Jun 11, 2008
    Messages:
    2,716
    Likes Received:
    32
    It's a computer worm that gains admin access to your PC and then lies in wait to download further instructions from the people that made the virus.

    Virus and worms normally just carry a set of fixed instructions (payload) to perform specific tasks - eg wipe your bios, delete your files, keylogs, sends your personal info out etc etc. Think of these like a DF in Doom. It's AI is determined by how well the devs have initially written it. Because it follows a known and predictable AI script, players can lure it near the exit gates to better defeat it.

    Cornficker is made so that besides the preset intructions on disabling your virus programs/auto update/system restore etc, the programmers can later give it different instructions anytime they want. Eg, the virus makers monitor what anti virus companies are doing to detect it, then give it instructions to adapt. Think of this like having a dev online and changing the DF's AI on the fly depending on how many people are fighting it, whether most are warriors or mages, whether people are luring it to a doorway etc. Makes it alot harder to defeat. Plus, instead of attacking tanks, the DF's AI can be commanded on the fly to deal with the healers first.

    This makes it alot more dangerous because it's AI is boosted by humans.

    Post DS made in UHall previously -
    http://vboards.stratics.com/showthread.php?t=135532&highlight=conficker

    Wiki info -
    http://en.wikipedia.org/wiki/Conficker

    MS info -
    http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx

    Patch instructions is in the last link (the Microsoft one)
     
  10. MalagAste

    MalagAste Belaern d'Zhaunil
    Reporter Professional Governor Stratics Veteran Stratics Legend Campaign Supporter Royal Knight

    Joined:
    Aug 21, 2000
    Messages:
    18,957
    Likes Received:
    5,449
    Thankfully my anti-virus program has been known to defeat this threat.... one of the few who have.... and I keep it up to date daily making sure everything is happy and wonderful before I log onto the WWW....

    Not saying I'm immune to everything but I try very hard to keep my system running smoothly....
     
  11. MorganaLeFey

    MorganaLeFey Guest

    Ditto. And just to make sure, we've stop using AI for the time being. That is, I only open it to updating if I must and that's it. Otherwise, it's FF or Chrome which is updated daily as well.
     
  12. GarthGrey

    GarthGrey Crazed Zealot
    Stratics Veteran Stratics Legend GoT

    Joined:
    Mar 18, 2003
    Messages:
    3,628
    Likes Received:
    1,390
    I can't wait till they catch the person that created this, so they can publicly slap them on the wrist like they do every time.
     
  13. Harlequin

    Harlequin Babbling Loonie
    Stratics Veteran

    Joined:
    Jun 11, 2008
    Messages:
    2,716
    Likes Received:
    32
    Microsoft has offered a 250k bounty, but I bet a lot more "organizations" are interested in this person(or group of people) for various reasons.