版主學長如晤:
據新聞云:
四月一日愚人節電腦駭客將大肆發送病毒
相信不是危言聳聽吧?
不知如何是好?
我們又該如何因應?
難不成都關機以對?
知道您與傑克學長均是高手
特代表豬(諸)學友一群 提問
請開示以造福眾生
感恩!
四月一日愚人節之電腦駭客
-
nicholas
- 系主任
- 文章: 2879
- 註冊時間: 週日 3月 15日, 2009年 9:28 am
- 來自: 義大利
-
蔡自富
- 系統管理員
- 文章: 951
- 註冊時間: 週五 3月 6日, 2009年 11:05 am
- 來自: 美國麻州
- 聯繫:
Re: 四月一日愚人節之電腦駭客
首先,我是搞研發的,不是系統管理,所以對這種事沒有專業上的優勢,只能就一個普通電腦使用者的角度來發言。
我們接觸的大部分電腦病毒傳播方式,幾乎都是因為使用者執行了不該執行的程式,這包括在網上或者EMAIL裡點了不該點的LINK、下載了不該跑的程式。所以我習慣上在EMAIL裡看到不熟悉的發文者、不合理內容、甚至只要是無關的轉帖,一概砍掉。在網上,尤其是有牽扯到情色的網頁,一概提高警覺,如果某個網頁點了以後半天不出來,甚至還讓硬碟很忙的話,馬上到TASK MANAGER去把瀏覽器(BROWSER)砍掉。
常常看到中毒的朋友EMAIL被利用來發垃圾信,尤其是情色信,心理就有三分同情:「下次偷看美眉時有點警覺性!」
另外七分:「老小子,看色情被逮了吧?」或者是「哈哈,原來你是。。。」
我們接觸的大部分電腦病毒傳播方式,幾乎都是因為使用者執行了不該執行的程式,這包括在網上或者EMAIL裡點了不該點的LINK、下載了不該跑的程式。所以我習慣上在EMAIL裡看到不熟悉的發文者、不合理內容、甚至只要是無關的轉帖,一概砍掉。在網上,尤其是有牽扯到情色的網頁,一概提高警覺,如果某個網頁點了以後半天不出來,甚至還讓硬碟很忙的話,馬上到TASK MANAGER去把瀏覽器(BROWSER)砍掉。
常常看到中毒的朋友EMAIL被利用來發垃圾信,尤其是情色信,心理就有三分同情:「下次偷看美眉時有點警覺性!」
另外七分:「老小子,看色情被逮了吧?」或者是「哈哈,原來你是。。。」
65372 輪義 麻州獵鹿人 Karl Tsai
Line/WeChat: karltsai1961
Line/WeChat: karltsai1961
-
蔡自富
- 系統管理員
- 文章: 951
- 註冊時間: 週五 3月 6日, 2009年 11:05 am
- 來自: 美國麻州
- 聯繫:
Re: 四月一日愚人節之電腦駭客
還有就是防毒軟體一定要裝,定期更新
裝了防毒軟體以後,如果記憶體(DRAM)不夠,那電腦會變得很慢,開機時間會很久,這是因為防毒軟體跑的時候需要用許多DRAM
現在DRAM非常便宜,電腦裡建議至少裝一到兩個GB的DRAM,這樣用起來才會順暢
裝了防毒軟體以後,如果記憶體(DRAM)不夠,那電腦會變得很慢,開機時間會很久,這是因為防毒軟體跑的時候需要用許多DRAM
現在DRAM非常便宜,電腦裡建議至少裝一到兩個GB的DRAM,這樣用起來才會順暢
65372 輪義 麻州獵鹿人 Karl Tsai
Line/WeChat: karltsai1961
Line/WeChat: karltsai1961
-
張紹康
- 召集人
- 文章: 4427
- 註冊時間: 週六 3月 7日, 2009年 5:09 pm
Re: 四月一日愚人節之電腦駭客
一聽學長解說就是副總級的身份
條理分明 實務與原理兼顧 治標還不忘治本
(其實只要用此論壇就知 實用而不贅飾 夠用且不鋪張 好用但不容濫用)
原來如此!難怪我老接到一些單身女同事的來信 說她新裝了攝影機 或已搬到我家十分鐘之內 或她好寂陌好無聊
或賣威而剛云云 見怪不怪了! 哈!原來是這樣ㄜ (回想起來 真的耶!另有一些女同事卻從不給我這些郵件)
學長放心 我決不會告訴她們的(也許她們都比我明白?) 都相處多年 感情很好!
謝謝學長的提點!
條理分明 實務與原理兼顧 治標還不忘治本
(其實只要用此論壇就知 實用而不贅飾 夠用且不鋪張 好用但不容濫用)
原來如此!難怪我老接到一些單身女同事的來信 說她新裝了攝影機 或已搬到我家十分鐘之內 或她好寂陌好無聊
或賣威而剛云云 見怪不怪了! 哈!原來是這樣ㄜ (回想起來 真的耶!另有一些女同事卻從不給我這些郵件)
學長放心 我決不會告訴她們的(也許她們都比我明白?) 都相處多年 感情很好!
謝謝學長的提點!
68航禮
張紹康
張紹康
-
蔡自富
- 系統管理員
- 文章: 951
- 註冊時間: 週五 3月 6日, 2009年 11:05 am
- 來自: 美國麻州
- 聯繫:
Re: 四月一日愚人節之電腦駭客
我也偶而會接到熟識女性朋友的色情EMAIL,有時真想寄個回信 「喂,管管你老公吧?」或者「難道是你自己。。。?」
不過到目前為止都還能忍住
不過到目前為止都還能忍住
65372 輪義 麻州獵鹿人 Karl Tsai
Line/WeChat: karltsai1961
Line/WeChat: karltsai1961
-
張紹康
- 召集人
- 文章: 4427
- 註冊時間: 週六 3月 7日, 2009年 5:09 pm
Re: 四月一日愚人節之電腦駭客
To share some information regarding the April 1 worm, Conficker:
(I dig out this article from Microsoft site.)
Sorry, the web page was written in English!
Protect yourself from the Conficker computer worm:
http://www.microsoft.com/protect/comput ... icker.mspx
Seems like PC is the main target! (Thank God I have a Mac!)
Good Luck, my friends!
(I dig out this article from Microsoft site.)
Sorry, the web page was written in English!
Protect yourself from the Conficker computer worm:
http://www.microsoft.com/protect/comput ... icker.mspx
Seems like PC is the main target! (Thank God I have a Mac!)
Good Luck, my friends!
68航禮
張紹康
張紹康
-
張紹康
- 召集人
- 文章: 4427
- 註冊時間: 週六 3月 7日, 2009年 5:09 pm
Re: 四月一日愚人節之電腦駭客
Most updated and very useful information PC users might want to know from Yahoo.
And yes, Macs are immune this time out!!! Apple is sweeeeet!
Tomorrow -- April 1 -- is D-Day for Conficker, as whatever nasty payload it's packing is currently set to activate. What happens come midnight is a mystery: Will it turn the millions of infected computers into spam-sending zombie robots? Or will it start capturing everything you type -- passwords, credit card numbers, etc. -- and send that information back to its masters?
No one knows, but we'll probably find out soon.
Or not. As Slate notes, Conficker is scheduled to go "live" on April 1, but whoever's controlling it could choose not to wreak havoc but instead do absolutely nothing, waiting for a time when there's less heat. They can do this because the way Conficker is designed is extremely clever: Rather than containing a list of specific, static instructions, Conficker reaches out to the web to receive updated marching orders via a huge list of websites it creates. Conficker.C -- the latest bad boy -- will start checking 50,000 different semi-randomly-generated sites a day looking for instructions, so there's no way to shut down all of them. If just one of those sites goes live with legitimate instructions, Conficker keeps on trucking.
Conficker's a nasty little worm that takes serious efforts to bypass your security defenses, but you aren't without some tools in your arsenal to protect yourself.
Your first step should be the tools you already have: Windows Update, to make sure your computer is fully patched, and your current antivirus software, to make sure anything that slips through the cracks is caught.
But if Conficker's already on your machine, it may bypass certain subsystems and updating Windows and your antivirus at this point may not work. If you are worried about anything being amiss -- try booting into Safe Mode, which Conficker prevents, to check -- you should run a specialized tool to get rid of Conficker.
Microsoft offers a web-based scanner (note that some users have reported it crashed their machines; I had no trouble with it), so you might try one of these downloadable options instead: Symantec's Conficker (aka Downadup) tool, Trend Micro's Cleanup Engine, or Malwarebytes. Conficker may prevent your machine from accessing any of these websites, so you may have to download these tools from a known non-infected computer if you need them. Follow the instructions given on each site to run them successfully. (Also note: None of these tools should harm your computer if you don't have Conficker.)
As a final safety note, all users -- whether they're worried about an infection or know for sure they're clean -- are also wise to make a full data backup today.
What won't work? Turning your PC off tonight and back on on April 2 will not protect you from the worm (sorry to the dozens of people who wrote me asking if this would do the trick). Temporarily disconnecting your computer from the web won't help if the malware is already on your machine -- it will simply activate once you connect again. Changing the date on your PC will likely have no helpful effect, either. And yes, Macs are immune this time out. Follow the above instructions to detect and remove the worm.
And yes, Macs are immune this time out!!! Apple is sweeeeet!
Tomorrow -- April 1 -- is D-Day for Conficker, as whatever nasty payload it's packing is currently set to activate. What happens come midnight is a mystery: Will it turn the millions of infected computers into spam-sending zombie robots? Or will it start capturing everything you type -- passwords, credit card numbers, etc. -- and send that information back to its masters?
No one knows, but we'll probably find out soon.
Or not. As Slate notes, Conficker is scheduled to go "live" on April 1, but whoever's controlling it could choose not to wreak havoc but instead do absolutely nothing, waiting for a time when there's less heat. They can do this because the way Conficker is designed is extremely clever: Rather than containing a list of specific, static instructions, Conficker reaches out to the web to receive updated marching orders via a huge list of websites it creates. Conficker.C -- the latest bad boy -- will start checking 50,000 different semi-randomly-generated sites a day looking for instructions, so there's no way to shut down all of them. If just one of those sites goes live with legitimate instructions, Conficker keeps on trucking.
Conficker's a nasty little worm that takes serious efforts to bypass your security defenses, but you aren't without some tools in your arsenal to protect yourself.
Your first step should be the tools you already have: Windows Update, to make sure your computer is fully patched, and your current antivirus software, to make sure anything that slips through the cracks is caught.
But if Conficker's already on your machine, it may bypass certain subsystems and updating Windows and your antivirus at this point may not work. If you are worried about anything being amiss -- try booting into Safe Mode, which Conficker prevents, to check -- you should run a specialized tool to get rid of Conficker.
Microsoft offers a web-based scanner (note that some users have reported it crashed their machines; I had no trouble with it), so you might try one of these downloadable options instead: Symantec's Conficker (aka Downadup) tool, Trend Micro's Cleanup Engine, or Malwarebytes. Conficker may prevent your machine from accessing any of these websites, so you may have to download these tools from a known non-infected computer if you need them. Follow the instructions given on each site to run them successfully. (Also note: None of these tools should harm your computer if you don't have Conficker.)
As a final safety note, all users -- whether they're worried about an infection or know for sure they're clean -- are also wise to make a full data backup today.
What won't work? Turning your PC off tonight and back on on April 2 will not protect you from the worm (sorry to the dozens of people who wrote me asking if this would do the trick). Temporarily disconnecting your computer from the web won't help if the malware is already on your machine -- it will simply activate once you connect again. Changing the date on your PC will likely have no helpful effect, either. And yes, Macs are immune this time out. Follow the above instructions to detect and remove the worm.
68航禮
張紹康
張紹康
-
jk738
- 召集人
- 文章: 61
- 註冊時間: 週三 3月 25日, 2009年 9:01 am
-
張紹康
- 召集人
- 文章: 4427
- 註冊時間: 週六 3月 7日, 2009年 5:09 pm
Re: 四月一日愚人節之電腦駭客
那爛梨子假蘋果呢?
好冷!我是來亂的啦!
因為工作 一直用蘋果 不但是習慣而且喜歡蘋果的產品 適合電腦白丁如我者
有創意 有質感 有人性 就是有點貴!
好冷!我是來亂的啦!
因為工作 一直用蘋果 不但是習慣而且喜歡蘋果的產品 適合電腦白丁如我者
有創意 有質感 有人性 就是有點貴!
68航禮
張紹康
張紹康
誰在線上
正在瀏覽這個版面的使用者:沒有註冊會員 和 8 位訪客