Welcome to WebmasterWorld Guest from 18.104.22.168
Forum Moderators: buckworks
Our online sales started January strong but have slowed in the past week, perhaps due to MLK Day on Monday and the inauguration yesterday. But 9 million dead machines must play some role in the recent weakness.
Is your business seeing any ramifications from this epidemic?
Mod note: Added link to earlier discussion [webmasterworld.com...]
[edited by: engine at 7:04 pm (utc) on Jan. 26, 2009]
e.g. corporate machines.
In searching for a cure (there isn't an easy one), I see that the web is teeming with individuals who are shut down. Most don't have the option I used of buying a new machine and using several older ones while waiting for it to arrive.
Victims include savvy computer users who have no idea how they were infected. Unless some time delay is built into the worm, no one says "I plugged in a stick from the kid next door and all hell broke loose." Prudent people are getting this bug.
It's amazing to me how little real research goes into articles about Conficker. Most articles only quote other articles. You have to wonder where these estimates of infected machines come from.
How likely is it that Microsoft, Firefox, security software companies and others will admit culpability to an event --traceable in its earliest form to October-- that may ultimately cost billions.
I'm not seeing a connection to how it would affect [shopping]
While there are different and ever-more virulent strains of the worm, in most cases infected machines are useless for ordering and even for browsing. I certainly wouldn't enter confidential info into one.
BTW, the stock market is way off today after Microsoft announced layoffs and said they'd no longer provide financial guidance to investors. I wouldn't trust them to be truthful about this worm.
I did see that about Microsoft...hard times for everyone it seems (except Google, of course). They certainly weren't too keen about broadcasting the IE7 vulnerability last fall until they had a fix for it...
A local TV station did a investigative report on Conficker last night. No question the popular media has often gone overboard in alarming people about insignificant computer issues over the years. But this appears to be a genuine problem for many. Panda software has reported that 6% of the 2 million machines they've scanned are infected.
OTOH, we too have received no reports for example of customers ordering by phone because their machine is down.
1)(fake) popups purporting to be from users computer saying machine is infected and urging the purchase of antivirus software
2) Google searches to (legit) antivirus sites are hijacked
3) Inability to access antivirus software thru usb ports
4) Machine runs erratically and very slowly. Sometimes won't boot at all
5) System restore shows no date before infection date
All in all, very nasty.
all my attempts to remove it failed and he ended up having to do a full re-installation of windows.
i have a feeling he was running a non-legit version of windows which obviously wasnt auto updating the security settings but he claimed he didnt click anything stupid.
it was one nasty worm/virus. Wouldnt let you update anti-virus software, the microsoft online scan didnt remove it, hijacked any search on every website that could / would possibly help, if i could manage to get to a website to download any virus removal tool it would not let you download it.
Re-installing windows was the only cure i could do. Im no genius but its the 1st virus i couldnt remove for someone.
What is bound to be slowing internet sales are the 300 some odd million Americans not accruring credit card debt at record levels!
As a side note, I've heard you can stem some of the Conflicker virus damage by turning off all browser add-ons or even uninstalling IE and reinstalling/only using other browsers like FireFox or Opera, etc. I cannot verify as I've yet to encounter this nasty beast. Gimme a few weeks, though, as I'm bound to be hitting the StumbleUpon button and wind up with a horrid cold.
A troubling aspect of Conficker is that it harnesses computing power of a botnet to crack passwords.
Repeated "guesses" at passwords by a botnet have caused some computer users to be locked out of files or machines that automatically disable access after certain numbers of failed tries.
"Downadup uses brute force from the infected network of botnets to break the password of the machine being attacked," Perry said. "That is something never seen before and I find it disturbing."
I forgot to mention that this worm seems to be evolving...learning. The blocking of system restore wasn't a feature of early (October) infections which some reported could be cured simply by turning back the date. Even recent strains can be disinfected but the methods announced so far have been complex.
Another odd feature is that those infected rarely have any idea how or where they contracted it. Perhaps there is a time delay. It's not like when a newbie clicks on an email attachment and all hell breaks loose.
What I did was to mothball the 2 1/2 year old machine and buy a pricey new unit from Dell which I'm using now with a full arsenal of malware protection. Eventually I'll probably wipe the old one clean. I needed a new computer anyway, plus this forced me to upgrade security on all our units. So-- for me -- there was perhaps a net benefit.
But in these tough times this epidemic is going to cause serious problems for most victims in the form of time offline (no shopping) and financial loss.
Um, why would anyone ever, in this day and age, ever run a computer online without anti virus software?
Does anti-virus software actually prevent Conflicker? They can tell me whatever they want about running the most up to date patch, keeping up with the newest definitions, poor user habits, etc., but the velocity of this one is too fast for it to be pure user error. I feel the anti-virus community has been beaten on this one, pure and simple.
Lessons learned: Any computer not operating as a stand-alone, dvd viewing, math machine is at risk.
I had Nortons which expired and keeps popping up "Activate Now" windows every few days, a common Nortons bug. The software itself is a kind of virus. I have a different brand on the new machine.
Does anti-virus software actually prevent Conflicker?Well I guess it does now but its hard to get a firm answer about when that protection started.
Who to point the finger at? I'm starting with Microsoft. This thing is exploiting lots of weaknesses (such as auto-start on USB drives). No one wants to be blamed for a billion dollars (what I figure) in worldwide losses. If this were a conventional disaster Washington would be demanding answers. But I don't see that happening.
Does anti-virus software actually prevent Conflicker?
This was a couple of months ago. I would have thought they would have had the problem solved by now.
1) Firewall (AVG/AVAST)
2) Abandon IE for FF. Most hacks are directed toward MS products.
3) Disable scripting/cookies for browsing unless you trust the site.
4) Use a browser add-on like NoScript to protect you from malicious websites and exploited websites.
5) Manage you HOSTS file with a freeware like HOSTSMAN to block knows spyware,virus,exploit domains.
6) Keep you Windows up to date with auto Windows Update.