| Follow us on Twitter |
Trend Micro has a post about the issue, pointing to several search engine results for Nmap, one of the tools I highlighted earlier (and free, open source) which are poisoned.
The key: go directly to the domain of the sites, such as Qualys, Nmap, or any other tool you are looking for.
At the same time, F-Secure has a post on poisoned removal tools.
And, if you are looking for a removal tool, go to a reputable vendor. Many of them have released free tools for consumers to use, even if you haven’t purchased their own software.
Trend Micro (look for the Sysclean package at the bottom of their page)
Sophos
McAfee
BitDefender
There is also the Conficker Working Group’s list of tools, but that site seems inundated right now.
To be honest, many of these sites are quite busy right now, and if your PC is compromised, you may not be able to reach a site, because Conficker blocks access to a number of security-related websites.
You may have to use the IP address of the website, or use a different PC to download a tool.
Oh, and of course, patch the hole that Microsoft patched last October!
All you have to do is use Windows Update, or use the individually downloaded patches from the bulletin page that Microsoft has created.
Posted March 31st, 2009 by Michael Santo
