Now what the kinks have been [mostly] worked out of the latest
version of VIPRE, I love it again. I replaced NOD32 with it last year and
with the recent engine update and the new general agent update, it also does an
excellent job of removing Virtumonde. Fortunately I have yet to witness
its effectiveness on Conficker, but from your comment, as well as others on the
VIPRE forums, it does a great job there too. Anyone looking for a
replacement AV/AM solution should look seriously at this product. And
Sunbelt cuts a mean deal on price too.
A note about the PC Rescue—don’t download it until
you need it since it contains the most recent definitions as part of the
download and the program doesn’t have an update method, so downloading it
now for a rainy day will yield a very stale version when you go to run it.
Jon Galbreath
MCSE/Security+
Systems Administrator
International Studies and Programs
Ph: 517-884-2144
From: MSU Network
Administrators Group [mailto:[log in to unmask]] On Behalf Of Bosman,
Don
Sent: Monday, March 30, 2009 12:53 PM
To: [log in to unmask]
Subject: [MSUNAG] Quick checks for conflicker and a tool I like for
taking it out.
First,
don’t panic. If 60 Minutes is hyping something as life threatening, I’d run out
and buy it.
I used to
respect 60 Minutes until they gored one of my oxen and I found what they will do to
build a story. And
I do mean story.
I’ve
seen conflicker
in action and
cleared it from several machines for relatives in the last couple of weeks.
One I got
switched over to Linux.
I’ve
found Sunbelt
Software’s VIPRE
to work in removing Conflicker. On the whole I find a lot to like in VIPRE.
An immediate
download for every one –
now, really! –
is VIPRE Rescue Program. http://live.sunbeltsoftware.com/
Make a
Bart’s PE or other bootable CD so you can run this as a command line
tool. If
you put it on a USB thumb drive, set it to read only.
Ok, How do I
know I’m dealing with conflicker and not just a PITA virus?
First clue
is that you can’t get to several of the following sites. I’ve left off the http://www
and .com so I don’t have to type it so many times. ;-)
antivir
antivirus
ca
f-secure
kaspersky
mcafee
microsoft
norton
panda
symantec
technet
trendmicro
windowsupdate
Lots of PITA
virii or
malwares take
out some security sites, but this one takes out almost every security site.
n
CLAM AV seems
to work too, by the way but on a Windows box it takes sooooooooooooooooooo long
to run I haven’t tried it on more than one.
2nd
clue – services that should be on, are disabled.
[log in to unmask]"
alt="Picture (Device Independent Bitmap)">
Picture
blatantly stolen from web.
Just my
opinion and experience.
Don Bosman