«
»

NOD32 – Conficker/downadup, variants abound

Someone asked me if NOD32 can successfully detect and remove Conficker. I was certain it can from what I have been told (as mentioned in my previous post), I use NOD32 at home but I have not been affected so could not say so myself. I decided to look it up anyway and scarily there seems to be ALOT of variations, judging by the different names ESET have given in their list of database updates. It was first mentioned in database version 3638 (25th November 2008) and goes from Win32/Conficker.A to .Z, they ran out of letters in the alphabet and started to name them Win32/Conficker.AA etc. This just demonstrates the polymorphic capabilities of this worm, if you haven’t security patched your machine by now then good luck to you.

The last mention on ESET’s database search is Win32/Conficker.AK, database update version 3772 released on 16th January 2009. I have used NOD32 for many years and I have to say it is one of the best AV products on the market, and the support for different OS platforms is a plus. You can look for viruses that are included in all their database releases on the ThreatSense Updates search.

Facebook facebook   Twitter twitter   Email email  

Tags: , , ,

This entry was posted on Saturday, January 17th, 2009 at 6:07 pm and is filed under Tech. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

5 Responses to “NOD32 – Conficker/downadup, variants abound”

  1. checkoff Says:
    January 19th, 2009 at 3:00 pm

    yes. i agree. nod32 is the best !
    –> http://www.av-comparatives.org <–

  2. moto Says:
    January 21st, 2009 at 10:30 am

    Finding the best AV is difficult, you walk into PC World and what do you get? The red box (McAfee) or the yellow box (Symantec). Although there is the other box now which is Kaspersky. I do wish NOD32 is more buyable off the shelf so that the consumer has more choice.

  3. SEXTON Says:
    March 25th, 2009 at 1:14 pm

    Hi, I own a similar website of yours. I was just wondering if you get a loads of spam? If so how do you control it, any plugin or something you can suggest? I get so much it’s driving me nuts so any help is very appreciated.

  4. moto Says:
    March 25th, 2009 at 1:29 pm

    Hi there :}

    I know what you mean, WordPress comment spam runs rampant on a lot of blogs, including my own. I highly recommend installing Akismet WP plugin, it catches pretty much 100% of spam and once installed you just leave it. After awhile, it will auto-delete all the spam comments for you. You need a WordPress key, but it’s fairly straight forward to setup and there are instructions if you do a Google for Akismet. I used to get hundreds daily and I had email alerts setup so you can imagine. Now I don’t get any apart from legitimate ones :}

    Good luck!

  5. Jinlye Says:
    March 30th, 2009 at 6:36 pm

    The ESET blog says that they are well on top of it: “Well, in terms of detection, we have very decent generic detection for Conficker and all the latest variants have been detected generically without our needing to add specific signatures or further generic detection.” i.e. they detect the variants that haven’t even been thought of yet. See http://www.eset.com/threat-center/blog/?p=835

Leave a Reply