What Is the Conficker Virus and Should You Be Worried?

by Terrence O'Brien — Jan 28th 2009 at 12:01AM

Everything You Wanted to Know About Confiker, But Were Afraid to Ask

What is Conficker?
Conficker, also known as Downadup or Kido, is the latest super virus to spread around the Internet and has security experts in a panic. When last we checked, about a week ago, Conficker had already spread to 9 million PCs, with little sign of slowing. Now it has infected at least 10 million PCs and experts believe there may be up to 350 million vulnerable computers out there.

The worm isn't just exploiting a networking hole, however; it features a sophisticated method of cracking administrator passwords, making it difficult to remove, and also copies itself to USB drives so that it can spread even when the online flaw is plugged.

What havoc has it wreaked so far?
So far this schizophrenic virus hasn't caused any serious damage. Its primary effect has been to prevent people from installing Windows updates and anti-virus software that could potentially thwart the malware. What worries security experts, though, is Conficker's ability to launch a second stage, downloading additional code that could hijack computers completely, steal personal information, or commit basic extortion -- demanding money for fake anti-virus software claiming to remove the infection.

How do you know you have it? What are the symptoms?
Since it is currently sitting dormant, possibly awaiting further instructions, Conficker is very difficult to detect without running an up-to-date virus and malware scanner. However, if your Internet connection is running abnormally slowly, if services such as Windows Defender is disabled, or if you are unable to access some security-related Web sites (like those for anti-virus programs), then you may be infected and should certainly follow the removal directions included below.

Is it the biggest virus ever?
Conficker has certainly spread far and wide, and gathered its fair share of media attention, but is it the biggest virus ever? That remains to be seen. It is certainly the biggest threat to personal computer security to come along in the last few years and would easily claim a spot on our list of the 15 Sneakiest Computer Viruses.

What can you do to stay safe?
Microsoft has already issued a fix for defeating the worm, but a full 30-percent of Windows PCs have yet to download the security update. So make sure you run Windows update and download the latest fixes. The latest versions of Norton, Kaspersky, McAfee, and the Switched-endorsed AVG are all capable of detecting and blocking Conficker, so make sure you have downloaded all updates to your anti-virus software.

Experts also suggest disabling autorun to prevent yourself from becoming infected via USB drive. Turning off autorun isn't easily done, so follow these directions:

Go to the Start Menu and select 'Run'
Run the following command: gpedit.msc
In the Group Policy window go to Computer Configuration -> Administrative Templates -> System
Under 'System,' double-click the 'Turn Off AutoPlay' option from the right hand pane
Select 'Enable' and choose 'All drives' from the drop down menu

Does getting infected mean you have to get a new computer entirely?

No. There's no need to buy a new computer, as most security programs offer ways to remove the worm.

If you think you're infected, download and run Microsoft's Malicious Software Removal Tool, or follow the directions found here to manually remove the worm.

Will it strike again? If so, where and how?
It's impossible to know if and when Conficker will strike again, especially since it is still running free and has yet to reveal its true purpose. Since Conficker is capable of downloading additional malicious code, it is also capable of self-updating. This function allows the worm to take advantage of other security holes once the ones it currently exploits are closed.

Potentially, Conficker could hang around for a very long time, or resurface in a slightly different form down the road. Knowing exactly when or where Conficker will rear its ugly head is simply impossible, but you can keep yourself safe by making sure your PC and security software (that includes anti-virus, spyware tools, and firewall) are up-to-date. Also, be sure to practice good browsing habits: avoid opening e-mail attachments from unknown addresses, don't download software from questionable sources, and stay away from sites whose security and legitimacy are uncertain.

Next >> 15 More Sneaky Computer Viruses

from switched

17-Year-Old Windows Bug Surfaces, Squashed by Microsoft
4 days ago
McAfee Offers Free Security Software to Facebook Users
27 days ago
5 Essential Tips to Keep Your PC Safe
125 days ago

Related From Our Partners

System Security Virus the Latest Cyber Threat
4 days ago

Reader Comments (Page 1 of 4)

Willy said 3:18PM on 1-28-2009

"Buy a new computer"?
Wow! Can you make this headline just a LITTLE bit more sensationalistic? At worst, you'll have to reload Windows. There is NO need to replace your computer. What idiocy...

spikedcrazy300 said 3:25PM on 1-28-2009

LOL, they say its better to buy a new comp rather than format your HDD and re install windows...HAHAHAHA!!! Wow, and i bet there are a bunch of people who believe this crap too. Well for starters. its always a good idea to have a extra HDD installed. Mainly for storing IMPORTANT stuff. You can safeguard a backup HDD. Its simple to do. There is no need to go out and buy a new comp just cuz of some virus. Hello, thats what they make Anti-virus for. But in this case i guess the virus is smarter than 70% of the population.
But there are tons of ways you can safeguard your comp against viruses, spamware, maulware. Get on the internet and search, thats what its there for.

what2do said 3:36PM on 1-28-2009

My pc says it can't find gpedit.msc.... What else should I do?

Michael Cox said 4:07PM on 1-28-2009

I had to reformat and reload windows. I couldn't run any antivirus software or malware. I also couldn't get any windows update. Reformatted C drive after putting all documents on D drive. Reformatted and reinstalled windows and antivirus and malware before accessing D drive. Then cleaned D drive so I would not become reinfected and have to do the same thing again.

pushka said 1:08PM on 2-01-2009

I actually downloaded and ran windows defender because we were having issues with the virus protection not being recognized as well as it wasn't uploading the current database for viruses or windows update. There were a couple of other things it was doing as well. As soon as I ran it, and it didn't say it found anything either everything corrected itself I was able to run windows update, run the anti-virus as well and is updating that. Unless something gets into the mother board and totally fries something there is no need to go out and get a new computer. I agree keep extra portable memory storage for things you don't want to loose, back up, back up, back up anytime you have something new you want to save. We had just gotten done in Dec putting a new copy of windows on so I was not happy about the prospect of reformatting everything again!

DoctorBob said 3:38PM on 1-28-2009

"Buy a new computer???" Yeah, and you'd better get rid of all your old underwear, dig up your garden, and change the oil on your car. This is ridiculous. Even if they don't have a "fix" for it today, you can be sure that antivirus companies are working overtime to come up with a cleaner. If it's not ready today, it'll be ready tomorrow or the next. Just keep those antivirus and anti-malware detection files updated, and run them regularly. Of course, you DO have a router (hardware firewall), don't you? And you DO run AVG or something similar in the background, and scan every night - right? And you DO scan with Malwarebytes every few days... correct? And you DO regularly update Windows... n'cest pas? And you DON'T go blindly downloading pictures and files from porn sites... of course not. So, go back to sleep. You're fine.

peppie said 4:01PM on 1-28-2009

yep got my desktop like 3-4 months ago cant download any fixes cause it prevents me from going to the microsoft website cant download antivirus or security either it blocks and it took full control of my firewall disabling all my antivirus and secruity

clinton said 6:35PM on 1-28-2009

Peppie,

Things nowadays are really weird so, go to mcafee.com. That is where I got mine friend.

God bless You,

Clinton H.

costa said 4:13PM on 1-28-2009

whjat kind of sick &^%$# person does this.Jail time with a bunch of horny prisioners when they find the bugger.

mikey said 5:19PM on 1-28-2009

this virus scan is not free as aol says it is it will cost you 49.99 as always aol lies to you thank you aol keep up the good work.

just me said 4:42PM on 1-28-2009

It would be nice if someone tells you where some of the people were getting it. What web sites?

martjewell said 4:46PM on 1-28-2009

If you're going to relaod your operating system then use Freespire (which is a Linux flavour) rather than MS Windows as a) it is FREE (yes, really), b) it DOES NOT SUFFER from these stupid Windows security problems, and c) it will run FAST on even older PCs so YOU DON'T NEED TO BUY A NEW ONE.

This is real - I use it at home and other linux variants on my work machine. Big companies (like IBM) are behind Linux - it's not just teenagers in their bedrooms creating this stuff.

Keith said 5:54PM on 1-28-2009

Buy an Apple and you wouldnt have to worry about this kind of stuff...haha

Noah said 2:09PM on 3-27-2009

It costs quite a bit to buy one of those. As much as i want one.

mamie greene said 7:39PM on 1-28-2009

I have lost count of the number of pages I have visited looking for the software. I have YET TO FIND IT. SOME PAGES I HAVE VISITED MORE THAN ONCE. I NEVER FOUND IT SO FORGET IT.

Charles Norrie said 10:08PM on 1-28-2009

Simply install Ubuntu Intrepid Ibex as your operating system and you will never suffer from malware again

ronald said 5:58PM on 1-28-2009

i have the worm virus it says security system found 300 viruses on your computer pay 45 dollars for full scan. keeps popping up
and nothing i can do its mall ware is fake no viruses all malware protection is a scam as long as its about this

annie said 6:15PM on 1-28-2009

You have propably got antivirus 2008 or antivirus 2009. It is a malware that installs itself when you try to click it off. It will rename all your files and prevent you from opening them. You will need help from a professional to get rid of it because you will not be able to go online and download the fix.

dslyohio44439 said 2:03AM on 2-25-2009

As Annie said, you probably have the Antivirus 2008 or 2009. I used Malwarebytes Anti Malware to remove this from the computer, and it saved my system. Search for it at download.com. This program is freeware, but it does not self update or do real time scans... Definitely not to be used as a primary program.

Debra said 10:30PM on 3-28-2009

Go to download.com or just go to the AVG.com website and download avg8.0. it's free and it WORKS.

| 1 | 2 | 3 | 4 | Most Recent | Next 20 Comments

Add your comments

Your comments:

Remember me

E-Mail me when someone replies to this comment

Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.

When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.

To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.

Switched Video

For more videos, click here.

Most Emailed Stories

Editors' Picks

Deals of the Day

http://xml.channel.aol.com/xmlpublisher/fetch.v2.xml?option=expand_relative_urls&dataUrlNodes=uiConfig,feedConfig,entry&id=786664&pid=786663&uts=1259957822

http://cdn.channel.aol.com/cs_feed_v1_6/csfeedwrapper.swf

Facebook's Most Annoying Things

Getty Images

Black Friday' Deals to Watch For

Traditionalists might balk, but the holiday shopping season is already underway. Skeptical? Head to your local department store and you'll be inundated by Christmas trees and ornaments. Bargain hunters, though, know that the real deals are more than a month away.

Black Friday, traditionally, is when retailers truly slash prices. Early birds can save hundreds, if not thousands, of dollars off of their holiday bills. Switched.com checked with a few elves, who gave a sneak peek at what you can expect deal-wise this year.

Blu-ray Players and Movies: Blu-ray is shaping up to be the biggest door buster of this year's Black Friday. de Grandpre expects at least one retailer will offer a Blu-ray player for just $49. Look for bargains on Blu-ray films as well, with last year's hit titles (such as "Iron Man") to fall as low as $5.

Laptops: With the proliferation of Netbooks this year, it's never been easier to find affordable portable computing, but Dan de Grandpre, CEO of DealNews.com says it will get even cheaper on Black Friday. Look for well-equipped Netbooks to sell for $199 – and basic 15" laptops to go for as little as $249.

HDTVs (Pretty big): The holidays are typically the best time to buy a new TV – and Black Friday is the time to do it. If you're looking for a normal sized set, you're in luck. Piper Jaffrey analyst Mitch Kaiser says he expects to see 32-inch LCD sets for as low as $299. GottaDeal.com is estimating 37-inch plasma and LCD sets will fall to $399 or less.

HDTVs (Really big): Need something bigger? How about a 46-47 inch LCD set for $599 – a 25 percent savings? Or a 52-inch LCD for $999? Dealnews says you can expect both. Plasma deals will be a little harder to come by, but a 50-inch set should run roughly $899.

HD Camcorders: You've wanted to shoot your child's school play in HD for a while, but haven't been able to spring for the pricey camcorder. This might be the year. Low-end, flash-based 720p models could drop as low as $60 (though you won't be able to zoom with those). Expect a high quality 1080p HD camcorder for $349.

GPS: While navigation systems have dramatically expanded their reach this year – even making it onto the iPhone – there's still a market for car-based systems. Dealnews predicts you'll be able to find a no-name entry-level system for $49, while a Garmin or Tom-Tom brand will be as low as $69.

Digital Picture Frames: Showcasing your digital pictures consistently gets cheaper. This year, skip the 7-inch screens and focus on the 8- or 9-inch ones, which should be available on Black Friday for as little as $30.

Monitors: Computer monitors might not be the sexiest of gifts, but they're usually welcomed with open arms – and they'll be cheap this year. Name brand 22-inch LCD models may go for as low as $99, while 24-inch models will drop below $150.

Memory: Don't know anyone who needs a monitor? External hard drives are always popular, since they're an easy way to back-up data. Dealnews expects a 1TB drive to fall as low as $49 this year. Gottadeal is looking for 8GB flash drives to hit $15.

Latest Reviews from CNET.com

CNET provides the latest tech news, unbiased reviews, videos, podcasts, software, and downloads, making tech products easy to find, understand and use.

Top Product Reviews

Home Audio Reviews
9.0 out of 10
Definitive Technology BPX
Works great with Dolby Pro Logic and Dolby Digital. Full Review
8.8 out of 10
KEF KHT3005 (silver)
The KEF KHT-3005 is one compact, beautifully designed speaker package with solid aluminum satellites that feature unique driver technology to produce incredible clarity. Meanwhile, the equally astounding dual 10-inch, 250-watt powered subwoofer delivers ultradeep bass. Full Review
8.8 out of 10
Aperion Intimus 4T Hybrid SD (cherry)
Six-piece home theater speaker package with slender towers; compact center and surround speakers; remote controlled subwoofer with adjustable equalization; gorgeous furniture grade real cherry wood or black gloss finishes; 10 year warranty; 30 day in-home trial; free shipping. Full Review
Cell Phone Reviews

8.7 out of 10
SignalBoost Mobile Professional Amplifier Kit
The Mobile Professional Amplifier delivers a powerful signal boost to your cell phone. Also, it offers a compact design and easy setup. Full Review
8.6 out of 10
Wi-Ex zBoost YX510-PCS-CEL cell phone signal extender
The Wi-Ex zBoost YX510-PCS-CEL significantly boosts your cell phone reception and is easy to operate. Also, it uses a wireless connection to your phone. Full Review
8.3 out of 10
Sanyo SCP-5300 (Sprint)
Vibrant color display; built-in camera with flash; compatible with Sprint PCS Business Connection software; comes with extended battery; solid call quality. Full Review
Digital Camera Reviews

9.3 out of 10
Canon EOS 1D Mark III
Extremely fast, 10-megapixel continuous shooting; very low noise; highly customizable; well-designed body with weather sealing; 3-inch LCD; abundant optional accessories. Full Review
9.0 out of 10
Canon EOS-1Ds Mark III
Very low noise, high quality images; 21.1 megapixels; live view shooting; pro-level build-quality and performance. Full Review
8.9 out of 10
Canon EOS 1Ds Mark II (body only)
Tremendous resolution; professional body; many improvements over original EOS 1Ds; superior handling; optional wireless photo transfer. Full Review
Desktop Reviews