Conflicker.C

Discussion in 'ESET NOD32 Antivirus' started by CrunchieBite, Mar 30, 2009.

Thread Status:
Not open for further replies.
  1. CrunchieBite

    CrunchieBite Guest

    Anyone know if EAV is capable of handling Conflicker.C? I had a quick look on the virus encyclopedia and on this very forum but, could only find references to Conflicker.A

    ~M
     
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    Since every AV company uses its own nomenclature for naming threats, I cannot answer your question. What one detects as Conficker.A or C, it can be detected as a variant of Conficker.X by ESET which is the case I assume, as probably all new variants are detected under that name.
     
  3. CrunchieBite

    CrunchieBite Guest

  4. YeOldeStonecat

    YeOldeStonecat Registered Member

    Joined:
    Apr 25, 2005
    Posts:
    2,345
    Location:
    Along the Shorelines somewhere in New England
    Wow I'd certainly hope so. Everyone knows Conflicker currently has 3x variants..A, which came out last fall, B, which came out this past Feb, and the current and vastly improved variant..C.

    This one isn't being treated as "generic" by anyone else....nor lightly.
     
  5. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,736
    Location:
    New York City
    We'll know in a couple of days, won't we?
     
  6. YeOldeStonecat

    YeOldeStonecat Registered Member

    Joined:
    Apr 25, 2005
    Posts:
    2,345
    Location:
    Along the Shorelines somewhere in New England
    Yup..countdown.

    Good little article....

    http://windowssecrets.com/2009/03/30/01-Run-a-Conficker-removal-tool-before-April-1

    Like most big prior worms....maintaining your Microsoft updates helps your PC shrug it off.

    Also using OpenDNS as your opendns servers..interesting good perc..I've been using them for years for clients as an added layer of protection.
     
  7. tanstaafl

    tanstaafl Registered Member

    Joined:
    Apr 8, 2005
    Posts:
    207
    Not a very impressive response, considering all the press this bugger has gotten in the last week - hell, it made 60 Minutes last night...

    Please answer the question, Marcos...

    Does NOD32, in all its different versions (2.7 thru 4.0), with up to date sigs, detect AND STOP this bugger?

    Thanks for not being so flippant this time.
     
  8. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,755
    Location:
    Texas
    http://www.eset.eu/press-conficker-x-removal
     
  9. ATC

    ATC Registered Member

    Joined:
    Mar 30, 2009
    Posts:
    12
    Location:
    Great white north
    I watched that 60 minutes episode and boy did Symantec ever take the opportunity for some serious PR work on that one. I bet a lot of people went out and bought Norton Internet Security 2009 today.
     
  10. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,012
    Location:
    Ontario, Canada
  11. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,145
    on the eset homepage http://www.eset.com/

    there is a warning in red

    i have a question , i have xp pro sp2 with tha last patches hotfix , update with xp update feature

    and nod32 2.7 updated

    should i be safe?
    or should i do something else?

    thanks
     
  12. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    V2 ain't good at cleaning Conficker once you've got your computer infected.
     
  13. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,145
    thanks Marcos

    bye the way in my desktop i have nod32 V3 last built
    and in my laptop nod32 2.7

    at last are able to detect it and stop it
     
  14. CrunchieBite

    CrunchieBite Guest

    Ron thanks for the link very informative.

    Marcos - out of interest, how does your statement about cleaning fit in with XMON which is limited to NOD32 v2.7? If the mail server got infected, could there be problems cleaning it?

    ~M
     
  15. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,145
    but should i download further fixes or windows update built in in xp does it dowload automatically ?
     
  16. YeOldeStonecat

    YeOldeStonecat Registered Member

    Joined:
    Apr 25, 2005
    Posts:
    2,345
    Location:
    Along the Shorelines somewhere in New England
  17. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,853
  18. CrunchieBite

    CrunchieBite Guest

    Now I am confused!

    If v2/v3 & v4 all already detection conficker then why does the changelog for the new v4.0.417 say :
    ■Fixed several issues in firewall module:
    ■Detection for Conficker added"

    ~M
     
  19. Geosoft

    Geosoft Registered Member

    Joined:
    Jan 7, 2009
    Posts:
    270
    Location:
    Toronto, Ontario, Canada
    Like it says... improvement on the firewall module has detection for conficker...

    The antivirus module had it for a long time, but since there has been improvement of research, ESET can now detect the traffic signature RPC requests that are happening to or from your machine now, which means the firewall module will be able to detect conficker too. :)
     
  20. Rmuffler

    Rmuffler Former Eset Moderator

    Joined:
    Jun 26, 2008
    Posts:
    995
    Location:
    San Diego, CA USA
Thread Status:
Not open for further replies.