Sci/Tech Conficker worm believed to have originated from China

sqrage

sqrage

Mega Super Ultra Cool Member
Reaction score
514
Chicago (IL) - The Conficker worm has been widely discussed in recent weeks, and the $250,000 bounty has had many on the hunt for the virus's origination. Microsoft offered the $250,000 for anyone who could provide information which leads to an arrest in the Conficker case.


On Monday, individuals at BKIS -- a Vietnamese security firm which makes the BKAV antivirus software -- announced that they had uncovered clues which lead to the belief that the virus originated in China. Previously, it was believed that the origination of the virus was either Europe or Russia (due to certain IP address ranges which trace back to Russia being ignored by the virus).

Following further analysis of the virus's coding style however, the firm discovered that Conficker's code is eerily similar to that of the Nimda virus, which seriously infected e-mail and the Web in 2001. It was during that time period BKIS determined the Nimda virus had its roots in China -- though this belief was never verified.

www.cnet.com

Conficker worm might originate in China

A Vietnamese security firm concludes that the Conficker worm has the same root as the Nimda, which the firm believes originated in China.
www.cnet.com www.cnet.com

___________

This is a good article, it provides a lot of information and ways to avoid being infected. I think anyone that is worried about Conficker should read this.
 
Last edited by a moderator:
UndeadDragon

UndeadDragon

Super Moderator
Reaction score
447
Is there actually any way to detect whether your computer is infected?

I think I should be safe, because none of my security settings have been altered and I can still use the process explorer (because the article said that the virus disables that).
 
Whitesock

Whitesock

Graphics Help Zone Moderator
Reaction score
358
From what I hear the virus is also coded to recieve new instructions on April 1st.

I would recommend backing your important files up soon. =/

Above Source said:
The worm is programmed and set up to update itself from randomly generated domains. The third variant of the Conficker is expected to be spreading beginning on April 1. According to security software companies, the worm will send hundreds or thousands of update requests to its 50,000 domains. The result will be forced downloads of malicious code and potentially an increased rise in spam email. The owner of the virus only has to utilize one of the domains to host the update, making it nearly impossible for authorities to track the update source.
Click to expand...
 
DDRtists

DDRtists

ɹoʇɐɹǝpoɯ ɹǝdns
Reaction score
415
Not to say this isn't serious, because it is, but I just wanted to point out one thing. The April 1st scare is ONLY if you already have the older versions of the virus, then it will download the newest version ( Conficker.C ).

I'd still watch out and also back up your files still in case they updated the spreading code, but it's not like they're going to push a button and everyone will have it. You have to already have the Conficker.B or Conficker.A version to get it right away on April 1st, though I'm sure it will try to spread much more now.
 
undeadorcjerk

undeadorcjerk

The Ulitimate TheHelper.net Lurker
Reaction score
223
weird. I've never heard of this virus until today in school and now its on here... weird...
 
DDRtists

DDRtists

ɹoʇɐɹǝpoɯ ɹǝdns
Reaction score
415
I've been following it for awhile now. :D

It's going to turn all our computers into Zombies! :nuts:
 
xxxtrickyxxx

xxxtrickyxxx

(o Y o)
Reaction score
64
wont bother me much, my pc already runs slower than my grandma from viruses anyway. key logging and information theft sucks tho.
 
DDRtists

DDRtists

ɹoʇɐɹǝpoɯ ɹǝdns
Reaction score
415
It's a botnet, if you read the article it will tell you this. ;)

Meaning the "herder", the person who made it, can control every computer thats infected. It can be used to take down sites, servers, and lots of things.

http://en.wikipedia.org/wiki/Botnet
Zombie Computers! Oh noes! :D
 
13lade619

13lade619

is now a game developer :)
Reaction score
398
* Denial-of-service attacks where multiple systems autonomously access a single Internet system or service in a way that appears legitimate, but much more frequently than normal use and cause the system to become busy.
* Adware exists to advertise some commercial entity actively and without the user's permission or awareness.
* Spyware is software which sends information to its creators about a user's activities.
* E-mail spam are e-mail messages disguised as messages from people, but are either advertising, annoying, or malicious in nature.
* Click fraud is the user's computer visiting websites without the user's awareness to create false web traffic for the purpose of personal or commercial gain.
* Access number replacements are where the botnet operator replaces the access numbers of a group of dial-up bots to that of a victim's phone number. Given enough bots partake in this attack, the victim is consistently bombarded with phone calls attempting to connect to the internet. Having very little to defend against this attack, most are forced into changing their phone numbers (land line, cell phone, etc).
* Fast flux is a DNS technique used by botnets to hide phishing and malware delivery sites behind an ever-changing network of compromised hosts acting as proxies.
Click to expand...
ah.. ok..
 
B

black.sheep

Active Member
Reaction score
24
I'm not turning on my laptop(I've removed the battery from it) untill i see what this does.
Also ive been telling people at school this, that the internet is going to die on april the first, I've also backed up a map ive been working on for the last year onto my mothers Ipod because I cant find anywhere else.
I belive this viruis shows how much we rely on computers these days, when I end up making enough money to buy things I want in life, I belive I might start keeping it underneath my floorboards, or atleast out of the great, faceless void known as the internet.
 
Jindo

Jindo

Self
Reaction score
460
None of the recommended updates at the bottom of the article worked for me, one of the Vista updates should have worked D: (They all said my system was incompatible, oh noez)
 
B

BlackRose

Forum User
Reaction score
239
Err.... how will it spread? If I do not go to any external links other than TheHelper.net or ones I usually go to... will I be fine? Do not open emails? ........

Is this a hoax :))
Retarded computer freaks who have nothing else better to do than destroy other peoples comps :S

**Read article**
It does remind me a bit of Terminator movies, where there is some internet / computer virus trying to destroy the world, or internet world.
 
B

BlackRose

Forum User
Reaction score
239
Haha..... April Fools must be so fun for them. How can you tell if your computer is infected.... HOW will get infected?
 
Varine

Varine

And as the moon rises, we shall prepare for war
Reaction score
808
Do the people that make this get excited about weird shit like this? YEAH LETS KILL THE INTERNET!!! Then realize that they just shut down like half of the websites they use?
 
You must log in or register to reply here.
General chit-chat
Help Users
  • No one is chatting at the moment.
  • Ghan Ghan:
    Howdy
  • Ghan Ghan:
    Still lurking
     +3
  • The Helper The Helper:
    I am great and it is fantastic to see you my friend!
     +1
  • The Helper The Helper:
    Here is a great appetizer recipe Texas style! https://www.thehelper.net/threads/recipe-chicken-stuffed-poblano-peppers.194086/
  • The Helper The Helper:
    If you are new to the site please check out the Recipe and Food Forum https://www.thehelper.net/forums/recipes-and-food.220/
  • Monovertex Monovertex:
    How come you're so into recipes lately? Never saw this much interest in this topic in the old days of TH.net
  • Monovertex Monovertex:
    Hmm, how do I change my signature?
  • tom_mai78101 tom_mai78101:
    Signatures can be edit in your account profile. As for the old stuffs, I'm thinking it's because Blizzard is now under Microsoft, and because of Microsoft Xbox going the way it is, it's dreadful.
  • The Helper The Helper:
    I am not big on the recipes I am just promoting them - I use the site as a practice place promoting stuff
     +2
  • Monovertex Monovertex:
    @tom_mai78101 I must be blind. If I go on my profile I don't see any area to edit the signature; If I go to account details (settings) I don't see any signature area either.
  • The Helper The Helper:
    You can get there if you click the bell icon (alerts) and choose preferences from the bottom, signature will be in the menu on the left there https://www.thehelper.net/account/preferences
  • The Helper The Helper:
    I think I need to split the Sci/Tech news forum into 2 one for Science and one for Tech but I am hating all the moving of posts I would have to do
  • The Helper The Helper:
    New dessert for Summer - https://www.thehelper.net/threads/recipe-lemon-blueberry-layer-cheesecake.194113/
  • The Helper The Helper:
    What is up Old Mountain Shadow?
  • The Helper The Helper:
    Happy Thursday!
     +1
  • Varine Varine:
    Crazy how much 3d printing has come in the last few years. Sad that it's not as easily modifiable though
  • Varine Varine:
    I bought an Ender 3 during the pandemic and tinkered with it all the time. Just bought a Sovol, not as easy. I'm trying to make it use a different nozzle because I have a fuck ton of Volcanos, and they use what is basically a modified volcano that is just a smidge longer, and almost every part on this thing needs to be redone to make it work
  • Varine Varine:
    Luckily I have a 3d printer for that, I guess. But it's ridiculous. The regular volcanos are 21mm, these Sovol versions are about 23.5mm
  • Varine Varine:
    So, 2.5mm longer. But the thing that measures the bed is about 1.5mm above the nozzle, so if I swap it with a volcano then I'm 1mm behind it. So cool, new bracket to swap that, but THEN the fan shroud to direct air at the part is ALSO going to be .5mm to low, and so I need to redo that, but by doing that it is a little bit off where it should be blowing and it's throwing it at the heating block instead of the part, and fuck man
  • Varine Varine:
    I didn't realize they designed this entire thing to NOT be modded. I would have just got a fucking Bambu if I knew that, the whole point was I could fuck with this. And no one else makes shit for Sovol so I have to go through them, and they have... interesting pricing models. So I have a new extruder altogether that I'm taking apart and going to just design a whole new one to use my nozzles. Dumb design.
  • Varine Varine:
    Can't just buy a new heatblock, you need to get a whole hotend - so block, heater cartridge, thermistor, heatbreak, and nozzle. And they put this fucking paste in there so I can't take the thermistor or cartridge out with any ease, that's 30 dollars. Or you can get the whole extrudor with the direct driver AND that heatblock for like 50, but you still can't get any of it to come apart
  • Varine Varine:
    Partsbuilt has individual parts I found but they're expensive. I think I can get bits swapped around and make this work with generic shit though
  • Ghan Ghan:
    Heard Houston got hit pretty bad by storms last night. Hope all is well with TH.
  • The Helper The Helper:
    Power back on finally - all is good here no damage
     +2
  • V-SNES V-SNES:
    Happy Friday!
     +1

      The Helper Discord

      Staff online

      Members online

      Online now:
      88 (members: 1, guests: 87)

      Share this page

      Affiliates

      Hive Workshop NUON Dome World Editor Tutorials

      Network Sponsors

      Apex Steel Pipe - Buys and sells Steel Pipe.
      Top