Corvus of the Black Night

Wild Duck Pokémon

Age 30
Non-binary
With the Birds
Seen January 9th, 2015
Posted January 9th, 2015
3,416 posts
14.3 Years
Or... how about a better idea? Use your computer, but don't connect to the internet.

And what's so bad about AVG? I'm just curious...

Capt. Couch

Wake me... When you need me...

Age 30
United States of America
Seen May 30th, 2009
Posted May 30th, 2009
331 posts
14.4 Years
I'm set. I have Windows 7 and am fully updated.

I'm thinking that this is just a hoax, more or less. I guess we'll find out soon enough.

If idiots could fly, Yahoo Answers would be an airport.
~~~
I've found a good way to get games and game accessories for free! It's called Prize Rebel, and it's completely free to sign up and do it. Click here to sign up. If you have any questions about it, don't hesitate to send me a PM or VM!

Zet

Age 33
Male
Brisbane, Australia
Seen September 29th, 2021
Posted May 16th, 2020
7,687 posts
15.7 Years
Or... how about a better idea? Use your computer, but don't connect to the internet.

And what's so bad about AVG? I'm just curious...
just go over old threads and google search

twocows

The not-so-black cat of ill omen

Age 32
Male
Michigan
Seen February 19th, 2023
Posted April 30th, 2021
4,307 posts
14.2 Years
Or... how about a better idea? Use your computer, but don't connect to the internet.

And what's so bad about AVG? I'm just curious...
It's not bad, it's just not great. Avast! and Avira are both free as well, and they do a better job while using fewer resources. As for paid stuff, Kaspersky and NOD32 outpace all three of them.

twocows

The not-so-black cat of ill omen

Age 32
Male
Michigan
Seen February 19th, 2023
Posted April 30th, 2021
4,307 posts
14.2 Years
They don't know yet. It's a worm that's said to activate on the first.
This is a misconception. April 1st is a trigger date, in which the worm will switch the way it looks for updates. The worm has already experienced numerous such dates, none of which have severely impacted IT functions. Source

a virus you say? hmm i have never heard of it.... well now im kinda discouraged from using my Windows on the 1st.... i probably sound like a total idiot right now but what does this virus do to your PC anyway? delete info? or just damage your computer?
Conficker saves a randomly named dll file to your computer, and loads itself upon startup as a service. Once in memory, it checks for updates daily, slowing your connection and allowing it to potentially cause more damage at any point in the future if left alone. Currently, it disables numerous Windows processes, such as Windows Automatic Update, Windows Security Center, Windows Defender, and Windows Error Reporting, and it resets all system restore points. It also watches for a list of antiviral or system restoring programs, and if one is executed, it immediately terminates it, making removal a problem. Furthering this, it blocks the infected computer from accessing websites related to anti virus software or manual removal of the worm. It also brute-forces administrator passwords so it can gain further access to the infected system.

Conficker initially spread through an already-patched vulnerability in the Server service which many computers have not patched. Updates have allowed it to spread to patched or unpatched computers through removable media, such as USB flash drives, by exploiting the autorun feature in Windows. It can also spread through shared folders enabled on a network.

There are a number of ways you can tell if you have been infected with Conficker. If you truly are infected, you will be unable to access most antivirus vendor websites. Your internet connection will be slightly slower than normal, and various Windows services, such as Automatic Updates, Background Intelligent Transfer Service (BITS), and Windows Defender and Error Reporting Services will be disabled.


If you are extremely worried about infection, I recommend you apply all relevant updates at http://update.microsoft.com/ or through the Windows Update function built into Vista. Note that if you are using anything earlier than Windows XP, or Windows XP without a service pack or with only service pack 1 installed, there is no patch available to fix the vulnerability, and it is advised that you upgrade your OS to a version that is currently supported. If that is impossible, I recommend getting a good anti-virus program, such as Kaspersky, NOD32, Avast!, AVG, or Avira (the last three are free for personal use).

Also avoid using a flash drive that has been in contact with any other computer, or disable Windows' autoplay and autorun features; these are detailed here and here, respectively (note that these are advanced fixes that require editing of the Windows registry; do not deviate from the steps outlined in these pages). Finally, I recommend allowing only read-only access to shared folders on your computer, as one of the ways the virus spreads is through shared folders on networked computers. For information on how to do this, refer to this document (Symantec).


If you are certain your computer is infected, assume that any removable media (such as flash drives) and any networked computers are also infected. Do not use your infected removable media with any uninfected computers, as this will spread the worm to them. Also, isolate any infected computers on a network and fix them at the same time.

If you are not on a network, use either KKiller or EConfickerRemover (note that KKiller refers to Conficker as "Kido"), both of which I have attached to this post as you will be unable to access the removal tools on their respective websites (Kaspersky and Eset). I do not recommend using both unless one fails to work, as I have not tested using both of these tools on the same computer.

If you are on a small infected network, I recommend that you disconnect all computers from the network, and remove the virus using the above method for each individual computer.

If you are on a large network, I recommend that you have someone with sufficient tech experience use the Sophos Conficker Clean-up Tool (network version), which I have also attached (sconftool). They should be able to remove the worm from any affected systems.


Once you have run the respective tools, follow the above steps for preventing infection, especially disabling autorun and autoplay. Once these are disabled, insert any infected media into the computer, and delete "autorun.inf" from the base directory of the media, then navigate to the folder called "RECYCLER" and delete any directories labeled "S-". The RECYCLER folder may be hidden; if so, navigate to it through the run dialogue (windows key + R) or the address bar. If this doesn't work, follow the below steps, also unchecking "Hide protected operating system files." Be sure to recheck this box after removing the worm.

If the "S-" folder(s) is/are hidden, you will need to select the "Tools" menu on the window, select "Folder Options," and then select the "View" tab. There will be an option to allow you to view hidden files and folders; select it, and then click "OK." Then, simply delete any folders that begin with "S-".


If you have any more problems with Conficker, I recommend running a complete virus scan using your antivirus software. If that doesn't help, contact your antivirus vendor for solutions.

NOTE on attached files: if you don't trust that the files are safe, feel free to run them through VirusTotal's virus scanner, located here. Or, if you'd rather not, you can simply look at the scans I ran on them here, here, and here. Generally speaking, if only a few results are shown, it's assumed that they're false positives.

Legal Disclaimer:

This software is unavailable to its end users through its normal means of distribution, and no license agreement is provided for the software in question. As such, I believe the distribution of this possibly copyrighted software constitutes "fair use" under section 107 of US Copyright Law (Title 17 U.S.C. Section 107).

UPDATE:
A site has released an easy to use chart that lets you tell almost instantly if you have Conficker. Link here.

UPDATE 2:
http://it.slashdot.org/article.pl?sid=09/04/22/1243213
Nmap claims to have a better tool for detecting Conficker. Haven't tried it, but if you want to give it a go, feel free.

Mr. Epic

Lost
Seen June 21st, 2020
Posted December 22nd, 2010
1,023 posts
15 Years
also here's a thanks to Blazichu for giving me this link http://www.bdtools.net/ bitdefender has released a tool that will remove conficker
Ah thank god Blazichu/Zet for this link. I'm just so damn paranoid, I keep fearing one of my younger siblings messing this up.
Also thank you twocows equally.
M
r
.
E
p
i
c

PC Supporter 5
Age 26
<_< beating up Jack Surge
Seen January 8th, 2012
Posted September 17th, 2010
88 posts
15.4 Years
I don't think this is real you think there would be alot more warnings like on the news, msnbc, emails. But I am still kinda freaked out. :( I have a new vista so that should be safe, but I am not going to use my XP tomarrow.
Male
Fish Spaghetti Town
Seen May 18th, 2016
Posted September 17th, 2015
3,543 posts
17.6 Years
Microsoft has a bounty on whoever made this, dead or alive? Wow. I didn't know that they're this serious!

What is this Dark Google??

Oh yeah, does Mac get affected as well?
Yeah, something like...
25,000 bounty.

You know what's the sickening part?
There is this 14 year old kid in Russia that is an extreme hacker,
Who has stoen money from plenty of bank and etc. accounts.

The russian government is perfectly fine with this, and even some praise like "Yeah! You stole money from some greedy westerners!" has uproared.

I wonder is it has gotten through anyones head that Robbery is more severe than greed.

Anyway, I believe I saw something on 60 minutes that said he might be the creator.
Collection DeviantART Pokemon

super epic credit to Cilerba and Calis for OW Bases,
make sure you check them out as well!

twocows

The not-so-black cat of ill omen

Age 32
Male
Michigan
Seen February 19th, 2023
Posted April 30th, 2021
4,307 posts
14.2 Years
I don't think this is real you think there would be alot more warnings like on the news, msnbc, emails. But I am still kinda freaked out. :( I have a new vista so that should be safe, but I am not going to use my XP tomarrow.
It's not a question of if it's real or not; April 1st is a confirmed trigger date for Conficker. What this means is less clear, however many tech analysts suggest that much of the extra concern is undue. This doesn't mean, however, that you should not worry about the worm at all; it is already extremely dangerous, and it will remain so on and after April 1st.

BHwolfgang

kamikorosu

Age 28
Male
Virginia
Seen February 24th, 2014
Posted May 9th, 2013
3,905 posts
14.2 Years
Yeah, something like...
25,000 bounty.

You know what's the sickening part?
There is this 14 year old kid in Russia that is an extreme hacker,
Who has stoen money from plenty of bank and etc. accounts.

The russian government is perfectly fine with this, and even some praise like "Yeah! You stole money from some greedy westerners!" has uproared.

I wonder is it has gotten through anyones head that Robbery is more severe than greed.

Anyway, I believe I saw something on 60 minutes that said he might be the creator.
Hmm... I see.

How much did he stole? Isn't the US concerned about this at all? I never heard this in the news.

Some foreigners just doesn't like the US. It's simple as that.

There's a possible chance that he could be, but I think that the Russian government should put their foot down when one of their citizen is plannin' on destroyin' about 1k PCs out there.
Age 26
<_< beating up Jack Surge
Seen January 8th, 2012
Posted September 17th, 2010
88 posts
15.4 Years
It's not a question of if it's real or not; April 1st is a confirmed trigger date for Conficker. What this means is less clear, however many tech analysts suggest that much of the extra concern is undue. This doesn't mean, however, that you should not worry about the worm at all; it is already extremely dangerous, and it will remain so on and after April 1st.
How long do you think it will last?

Spinor

&lt;i&gt;&lt;font color=&quot;b1373f&quot;&gt;The Lonely Physicist&lt;/font&gt;&lt;/i&gt;

Age 27
Male
Seen February 13th, 2019
Posted October 4th, 2015
5,175 posts
17.3 Years
hey guys, just want to let all you mac users know, I heard a rumor going around that there's a mac version of this
I hope that is an April Fools Joke in China at the moment... :(

I guess I'll disconnect my modem and advance my date in 20 hours. This virus going on is just a big bundle of... well...wtfjellyblobs.

Lucy Lu

Keep On Moving Foward...

Female
Seen March 5th, 2014
Posted November 28th, 2012
6,192 posts
18.7 Years
I think I will be alright. My anti-virus is updated. Yes I have Norton, but I also have Windows XP Service Pack 3. So I should be safe. But just the same, I won't be online tomorrow and Wednesday. I will have my cable modem unplugged and it is away from my computer.

I guess I do something else with my time.

pairbloginactive

"There is no such thing as joy without pain. How can you advance yourself without pain." - Frankie Beverly

Ayano Katagiri

♥ 陳意涵 - 痞子英雄

Age 31
Male
New Zealand
Seen July 8th, 2010
Posted June 16th, 2010
8,399 posts
16.9 Years
I'm very interested to see what this Conflicker will actually do.. my school's entire network is effected with it and tomorrow should be quite an interesting day if Conflicker does have some sort of very negative influence.
My personal laptop should hopefully be safe enough. I have the most recent Vista updates and 3 anti-virus programs running: avast!, Avira Free and Norton (but I'm getting rid of Norton once the trial expires). I probably won't come online tomorrow just in case, until after I find out what this virus will actually do. I am actually slightly worried, I've caught practically all of the larger worms and viruses in the past few years before but I hope this time will be an exception.

★ Theme features 陳琳 from 痞子英雄 played by
陳意涵 (Ivy Chen), who is just ♥ awesome

Paired with May~ <3

I'm currently studying at university and so
I have more or less left PC and probably
won't be back much if ever at all.

Formerly Misaka Mikoto and Saya★eternity