If your computer system encounter below symptoms, then you may suspicious being infected by the most wide-spread virus in year 2009/Conflicker:
-Account lockout policies being reset automatically.
-Certain Microsoft Windows services such as Automatic Updates, BITS, Windows Defender, and Error Reporting Services are automatically disabled.
-Domain controllers respond slowly to client requests.
-System network gets unusually congested. This can be checked with network traffic chart on Windows Task Manager.
-On websites related to antivirus software, Windows system updates cannot be accessed.
-Launches a brute force attack against administrator passwords to help it spread through ADMIN$ shares, making choice of sensible passwords advisable.
-High-port TCP and UDP P2P Activity
-Abnormal DNS lookup activity
But where I got infected?
This virus can spread via USB drives that trigger AutoRun, so be aware when insert un-trusted USB drive! Also may be infected, when visiting malicious web sites.
Then, how to remediate it?
Select which vendor you prefer, such as:
McAfee
Trend Micro
Find more info Conflicker infection by country:
Source
Join Conflicker Work Group:
Conflicker Work Group
No comments:
Post a Comment