Conficker Eye Chart

April 4th, 2009EthelInternet, Technology

Wondering if you’re infected with the much-hyped Conficker worm?

Conficker interferes with the Domain Name System (DNS) that resolves a domain like “www.ethelthefrog.com” into an IP address. In particular, if Conficker is present, your browser won’t be able to resolve domains containing almost a hundred specific text strings. These include the names of just about every major security vendor, as well as strings like “anti-”, “malware”, “removal”, “rootkit”, “spyware”, “threat”, and “virus”. (It also blocks the Windows Update web site. So a system infected with Conficker won’t actually be able to download removal tools, update security software, or run Windows Update).

Joe Stewart

Armed with this knowledge, a smart fellow named Joe Stewart, who is the Director of Malware Research with SecureWorks, and who maintains a blog called ACATTAG, devised the Conficker Eye Chart. This clever web page includes links to images from several security companies. If they all show up, you’re clean. If not, you can even determine which Conficker variant is present based on which ones don’t appear.

Due to it’s brilliant simplicity, I have been able to reproduce the Eye Chart below. (I hope you don’t mind, Joe).

Conficker Eye Chart

How to interpret:

Explanation:

Conficker (aka Downadup, Kido) is known to block access to over 100 anti-virus and security websites.

If you are blocked from loading the remote images in the first row of the top table above (AV/security sites) but not blocked from loading the remote images in the second row (websites of alternative operating systems) then your Windows PC may be infected by Conficker (or some other malicious software).

If you can see all six images in both rows of the top table, you are either not infected by Conficker, or you may be using a proxy server, in which case you will not be able to use this test to make an accurate determination, since Conficker will be unable to block you from viewing the AV/security sites.

F-Secure and the F-Secure Logo are trademarks of F-Secure Corporation.

SecureWorks and the SecureWorks Logo are registered trademarks of SecureWorks Inc.

Trend Micro and the T-Ball logo are trademarks or registered trademarks of Trend Micro Inc.

The Conficker Eye Chart is a concept by Joe Stewart.

Your Quick Guide to the Conficker Worm (shankrila.com)

Did you know this: Budweiser is the best-selling beer in the world. . . .Now you do!

Related posts:
Are You Ready for April 1?

Top Ten Ways to Know If You Have the Conficker Virus

Is Microsoft Crazy?

Eye-Catching Ads!

Follow My Blog On Facebook

Tags: Conficker, Conficker Eye Chart

5 Trackbacks / Pingbacks

Conficker Eye Chart | Real Rumors April 4th, 2009 at 10:32

[...] Conficker Eye Chart 04.04.2009 | Posted in Computer World Wondering if you’re infected with the much-hyped Conficker worm? Conficker interferes with the Domain Name System (DNS) that resolves a domain like “www.ethelthefrog.com” into an IP address. In particular, if Conficker is present, your browser won’t be able to resolve domains containing almost a hundred specific text strings. These include the names of just about every major security vendor, as well as strings like “anti-”, “malware”, “removal”, “rootkit”, “spyware”, “threat”, and “virus”. ( More here: Conficker Eye Chart [...]

Topics about Technology » Conficker Eye Chart April 4th, 2009 at 11:23

[...] Ethel The Frog added an interesting post on Conficker Eye ChartHere’s a small excerptWondering if you’re infected with the much-hyped Conficker worm? Conficker interferes with the Domain Name System (DNS) that resolves a domain like “www.ethelthefrog.com” into an IP address. In particular, if Conficker is present, your browser won’t be able to resolve domains containing almost a hundred specific text strings. These include the names of just about every major security vendor, as well as strings like “anti-”, “malware”, “removal”, “rootkit”, “spyware”, “threat”, and “virus”. ( [...]

Registry Errors | Computer Tech Blog April 10th, 2009 at 16:12

[...] Conficker Eye Chart (ethelthefrog.com) [...]

Conflicker Eye Chart | Are We Connected.com April 14th, 2009 at 09:11

[...] Conficker Eye Chart (ethelthefrog.com) [...]

Twitter Links Infecting Both Macs and PCs With Virus? | My Philly Network June 24th, 2009 at 15:08

[...] Conficker Eye Chart (ethelthefrog.com) [...]

Leave a reply

Click here to cancel reply.

Name

Mail (will not be published)

Website

Recent Posts

An Apology From Dr. Fegg . . . And More!

Iceland Football Celebration

Gender Reassignment

64 Years Later . . .

“Off Menu” Starbucks™ Items

Tags
Arizona Barack Obama Canada Canadian Football League Chicago Blackhawks Costa Rica e-mail Facebook FIFA World Cup free Futbol Games Grey Cup Guanacaste H1N1 virus Health Hockey Humor I'm A Celebrity . . . Get Me Out Of Here! Influenza Influenza A virus subtype H1N1 Montreal Alouettes Music NBA NHL Phoenix Coyotes Phoenix Suns Photos Pilot Season Pittsburgh Penguins Playa Flamingo real estate Saskatchewan Roughriders Soccer software Stanley Cup Super Bowl Swine Flu Swine influenza Travel Twitter United States USA Vancouver Canucks Winter Olympics

Categories

Books

Canada

Careers and Occupations

Costa Rica

Current Affairs

E-mail

Entertainment

Food and Drink

Games

Health and Wellness

History

Humor

Internet

Latin America

Movies

Music

News

Politics

Real Estate

Software

Sports

Technology

Travel

Uncategorized

Resources

Costa Rica Swap Meet

EGF Archery

EGF Baby Store

EGF Costa Rica Community

EGF Costa Rica Real Estate

EGF Golf Store

EGF Info Search and Database

EGF Tennis Store

Ethel The Nurse

Latin Foo

RoomieWorld

The Barristers Lounge

Tweet Costa Rica

Twitter Toad

Recent Comments
dr laura schlessinger – YouTube – Dr Laura on KFWB News Talk 980 AM in Los Angeles on Dr. Laura
Jaime on Copyright Violations or Coincidence?
Another Empty Talking Head that ruins America’s airwaves « Miscellany101′s Weblog on Dr. Laura
store clerk on Dr. Laura
dayspring50 on A Message from Pamela Geller
Archives

August 2010

July 2010

June 2010

May 2010

April 2010

March 2010

February 2010

January 2010

December 2009

November 2009

October 2009

September 2009

August 2009

July 2009

June 2009

May 2009

April 2009

March 2009

February 2009

January 2009

Meta

Register

Log in

Entries RSS

Comments RSS

WordPress.org

Enter your email address:
Delivered by FeedBurner

This offer will disappear in 30 seconds

Designed by Mind Crotch

A Member of The EGF International Group