It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Originally posted by tristar
reply to post by makeitso
No that is not correct.
I may provide you with a video showing you the methods used and implemented.
On that note, if you could allow me 48hrs to alter the video file showing methods used, i would be great full.
Originally posted by Pondering Soul
i am having problems loading images from websites, even this one, but all the test i do show i dont have conflicker, is anyone else having this problem? is it some how related to conflicker?
Originally posted by ModernAcademia
I told everyone, even here on ATS
The worst thing that the virus can do is nothing
Originally posted by intelinside451
I've personally cleaned about 3 PCs with this malware on it. Supposedly Windows update covers it but only the forms that it has recognized, that the forms that it has been changed to recently. This software is mutating to survive and is ran by individuals from China and South Amer. to basically scam people with anything from stealing bank info to charging for bogus anti-virus. The last computer I cleaned was acting as a spammer and wasn't picked up by any anti-virus or anti-spyware and had all of its Windows updates.
reply to post by tristar
Originally posted by Kandinsky
reply to post by makeitso
I chose my words carefully and made no claims in that sentence. At this moment in time, I haven't read a single experts testimony that explains the motivations behind Conficker. The updates it downloads are encrypted beyond any immediate resolution using brute force or Ophcrack. I was speculating from a pragmatic perspective. The admirable planning that the creators have applied to Conficker in terms of concealing intent implies illegal activity.
The best minds in IT security haven't figured it out and I find that telling. Strictly speaking, it isn't even a botnet yet as the infected PCs have not been coordinated towards a definable end. As of now, Conficker has the potential for anonymous crime on a grand scale. Each infected PC/laptop is it's own server via P2P. Spam, bank and retail details, along with passwords are there to be exploited behind the current anonymity of the Conficker backers. There's no indication that they'll use it to sell rogue anti-malware (antivirus 2009?).
Time will tell what the plans are. The caution and ingenuity demonstrated so far suggests there is a business plan. I'm fascinated to find out what that plan will be.
EDIT to add this Know Your Enemy: Containing Conficker, it's a PDF document from Honeynet and contains everything known about Conficker up to early April.
[edit on 26-4-2009 by Kandinsky]
Originally posted by maus80
reply to post by tristar
Ummm, noot he's not wrong, he was exactly right. I think you are a little confused maybe? Possibly you should read current news stories on this virus/trojan/backdoor/whatever. Reading comprehension is your friend!
You need to understand its not only your computer that is infected, if you have emailed anyone while you were infected then THAT data (username/password) has been logged and sent, so in actual fact your doing nothing apart from just dusting the surface. If you were using a company email then that email server is also at risk and everyone who has an account within that particular mail server.
Originally posted by fleabit
reply to post by Dutty_Rag
It's a virus that takes advantage of a security hole. Norton is not any better (and is worse than others) than any anti-virus program.
The best steps to protect is: Get all security updates for your computer. Security update 958644 (MS08-067) is the one that prevents the security hole that this code is taking advantage of. If you have this, and are not currently infected, you will not GET infected.
Turn on system restore. This allows your computer to take a snapshot of all system files, and restore them based on restore points created (at set times, and another version is created before a new item is installed). If you get this, and then run a system restore prior to the date you received it, it will be as if you never had it.
Norton is so-so. Not bad, but not great, either. Malwarebytes.com is better. It actually removes stuff like antivirus 2008 (and its variants), vundo, and the other really nasty ones, that usually confuses mcafee and norton products. And it's free! Norton's active protection is pretty solid. Others (like Trend) are fairly horrid. Usually a Trend protected computer says "Yo! I am now detecting this specific virus that I inexplicably allowed to get on your computer in the first place.. my bad!"
[edit on 26-4-2009 by fleabit]
[edit on 26-4-2009 by fleabit]
Keep in mind, this worm CANNOT BE STOPPED.