Ever since I had a scare with the Windows Operating System some time back I am a little too cautious of the emerging threats. It was this that took me on a hunt for information about Win32/Conficker.B. This Conflicker thing was reported to have the capability to exploit vulnerability in the windows XP service pack 2 and naturally I was all alert.
I have the Windows XP service pack 2 and the worm was expected strike on the 1st of April 2009!
It goes deep into the system and would be hard to locate if it hides itself in deep. It might also lay low without causing any problems for some time in the affected computers and spread to others from it, unknown to both the systems. The worm has many variants and is could be creating newer ones as it spreads.
At least for this time the Microsoft guys were ahead of the threat and have done something to alleviate it. They have updated their January version of MSRT to locate and remove the worm. If you are one who regularly runs it you would not have any problems. Also they have provided patches to remove the vulnerability. If you are running XP Service pack 2 you might need the following patch:
http://www.microsoft.com/downloads/details.aspx?FamilyId=2996b9b6-03ff-4636-861a-46b3eac7a305&displaylang=en
You might also want to read up on the subject at this link.
http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx
Their MSRT may be downloaded at the following site.
It really has helped me once when I was in dire straits. But it can only find infections after they occur, that is, it can’t detect and remove threats at the moment they take place.
But it’s a useful tool to have. I run it regularly. The only hitch is you need to download it every month to run the new version.
http://www.microsoft.com/security/malwareremove/default.mspx
downadup removal tool also seems a good thing to have in the circumstances
ftp://ftp.f-secure.com/anti-virus/tools/beta/f-downadup.zip
You can run it after unzipping it to any of your local disks. The only thing is, read the read me file carefully before you do it. Also check whether new versions are available on the net for the worm could be transforming and modifying itself even as you read this.
It seems to be a mere scare after all.
No comments:
Post a Comment