Pages

Wednesday, April 1, 2009

What to do if you are infected with Confiker

Just to share waht I found:

1. Point your browser to Symantec.com or McAfee.com

If you are able to access the web site, your computer is probably not infected with Conficker as the worm blocks access to most security web sites. One symptom that may indicate you are infected is finding that your computer is blocked from accessing the web sites of most security companies.

2. If you have a computer that is infected, you will need to use an uninfected computer to download a specialized Conficker removal tool from. The tool is available here: http://www.800-security.com/tech/FixConfiker.exe

Advice to Stay Safe from the Worm:

1. Run a good security suite (I just began using VIPRE from Sunbelt software, and very pleased with it).
2. Keep your computer updated with the latest patches. If you don’t know how to do this, have someone help you set your system to update itself.
3. Don’t use “free” security scans that pop up on many web sites. Many of them are fake. In addition, some of them are using scare tactics to try to get you to purchase their “full” service. In many cases these are actually infecting you while they run. In accordance to some security pros, there is reason to believe that the creators of the Conficker worm are associated with some of these fake security products.
4. Turn off the “autorun” feature that will automatically run programs found on memory sticks and other USB devices.
5. Be smarter with your passwords:

1. Change your passwords periodically
2. Use complex passwords – no simple names or words, use special characters and numbers
3. Using a separate, longer password for each site that has sensitive personal information or access to your bank accounts or credit cards.


4. Use fingerprint readers (buy from Digital Persona - I love them). You can avoid typing (and any keylog software won't be able to capture it)


5. Use the multi-word passwords (for instance: "my buddies use rtek2000" or "security is not a measure but process"


No comments: