Trend Micro has a post about the issue, pointing to several search engine results for Nmap, one of the tools I highlighted earlier (and free, open source) which are poisoned.
The key: go directly to the domain of the sites, such as Qualys, Nmap, or any other tool you are looking for.
At the same time, F-Secure has a post on poisoned removal tools.
It makes sense that hackers would take these steps; stories like the 60 Minutes report on Sunday have some in a frenzy. If you are looking for a removal tool, go directly to a reputable vendor's site. Many of them have released free tools for consumers to use, even if you haven’t purchased their own software.
- F-Secure Malware Removal Tool
- Sunbelt Software
- Symantec FixDownadup.exe
- Trend Micro (look for the Sysclean package at the bottom of their page)
To be honest, many of these sites are quite busy right now, and if your PC is compromised, you may not be able to reach a site, because Conficker blocks access to a number of security-related websites.
You may have to use the IP address of the website, or use a different PC to download a tool.
Oh, and of course, patch the hole that Microsoft patched last October!
All you have to do is use Windows Update, or use the individually downloaded patches from the bulletin page that Microsoft has created.