Slashdot Mirror

← Back to Stories (view on slashdot.org)

Diagnose Conficker With Web-Based Eye Chart

Posted by timothy on from the smoke-test-sanity-check-trial-balloon dept.

thomsomc writes "Joe Stewart from the Conficker Working Group has created an eye chart that allows for online identification of Conficker B and C infections. Using basic knowledge of the blacklisting that Conficker employs to avoid attempting to infect IPs that belong to popular Anti-Virus and security firms (including Microsoft), the group whipped up this very simple test to see if you can load content from the various pages. If you can see all of the images, you're more than likely Conficker-free. According to Honeynet, 'This detection method should be more reliable than network scanning based tests. Happy scanning!'" Related: Tech Fragments notes in passing that nothing much seems to have come of conficker's dreaded April 1 deadline.

28 of 180 comments (clear)

  1. Jon Stewart? by ender1598 · · Score: 5, Funny

    Am I the only one that read it as Jon Stewart and then spent a few minutes trying to figure out the joke on the page?

    --
    There are 10 kinds of people in the world; those that understand binary and those that do not.
    1. Re:Jon Stewart? by Anonymous Coward · · Score: 3, Funny

      Haha, me too. Give this a !jonstewart tag.

    2. Re:Jon Stewart? by RevRagnarok · · Score: 5, Funny

      Just another flaw in the system.

      Come and see the flaws inherent in the system! Help! Help! I'm being modded down!

      --
      I should put something clever here. Maybe someday.
    3. Re:Jon Stewart? by Bootarn · · Score: 3, Funny

      I love the sweet irony of including links to alternate OSes in the test. If those dissapear, is it possible that you're infected with a Microsoft made worm?

    4. Re:Jon Stewart? by moxley · · Score: 4, Funny

      This perfectly illustrates one of the unspoken rules of Slashdot culture:

      *If the sole point of your post is to either complain, call a moderation unfair, or ask for an explanation about a moderation, be prepared for your post to be modded in exactly the same way.*

      It's really a wonderful cultural practice, and is preparing interworldnettubez denizens everywhere for what they can expect when asking similar questions of real world "moderators" like cops and politicians.

      Let's all keep up the good work!

       

  2. I see a dog. by memorycardfull · · Score: 5, Funny

    Dog with head split in half.

    1. Re:I see a dog. by interkin3tic · · Score: 4, Funny

      Funny, I see a penguin, a blowfish, the devil, and some boring corporate logos. No dogs. You must have Confiker R variant (Rorschach variant)

    2. Re:I see a dog. by agnosticanarch · · Score: 4, Funny

      I was going to explain it, but I got caught up looking at the pretty butterfly.

      --
      I contend that we are both atheists. I just believe in one fewer god than you do.
    3. Re:I see a dog. by JWSmythe · · Score: 3, Funny

          Well, there are only two kinds of people in the world. Those with ADD and ......

         

      --
      Serious? Seriousness is well above my pay grade.
  3. Lynx support? by MrEricSir · · Score: 4, Funny

    Come on, it doesn't work in Lynx? I want my money back.

    --
    There's no -1 for "I don't get it."
    1. Re:Lynx support? by MBCook · · Score: 5, Funny

      Works here.

      You must be infected.

      --
      Comment forecast: Bits of genius surrounded by a sea of mediocrity.
  4. Re:sweet by ShieldW0lf · · Score: 5, Funny

    a nice, easy, reliable way to detect a conficker infection.

    As long as it doesn't get slashdotted... that might cause a new panic :P

    --
    -1 Uncomfortable Truth
  5. Thank god by diablovision · · Score: 4, Funny

    Whew, I haven't had that much relief since I accidentally ate that whole jar of exlax....

    --
    120 characters isn't enough to explain it.
    1. Re:Thank god by iknowcss · · Score: 1, Funny

      I think it goes "since I accidentally the whole jar of exlax"

      --
      Life is rarely fair. Cherish the moments when there is a right answer.
  6. Re:Very nice & interesting technique by bhtooefr · · Score: 4, Funny

    My HOSTS file uses data from reputable sources like STOPBADWARE.ORG

    Sucks when / is blocked, now, isn't it? :)

  7. Slashdotted by 56 · · Score: 4, Funny

    Looks like it's slashdotted... or my ubuntu machine has Conficker!

  8. Mirror by Anonymous Coward · · Score: 5, Funny

    Conficker Eye Chart

    Conficker Eye Chart




    How to interpret:

    If you see this above:It probably means this:

    = Normal/Not Infected by Conficker (or using proxy)
    = Possibly Infected by Conficker (C variant or greater)
    = Possibly Infected by Conficker A/B variant
    = Image loading turned off in browser?
    Any other combination= Poor Internet connection?

    Explanation:

    Conficker (aka Downadup, Kido) is known to block access to over 100 anti-virus and security websites.

    If you are blocked from loading the remote images in the first row of the top table above (AV/security sites) but not blocked from loading the remote images in the second row (websites of alternative operating systems) then your Windows PC may be infected by Conficker (or some other malicious software).

    If you can see all six images in both rows of the top table, you are either not infected by Conficker, or you may be using a proxy server, in which case you will not be able to use this test to make an accurate determination, since Conficker will be unable to block you from viewing the AV/security sites.

    F-Secure and the F-Secure Logo are trademarks of F-Secure Corporation.

    SecureWorks and the SecureWorks Logo are registered trademarks of SecureWorks Inc.

    Trend Micro and the T-Ball logo are trademarks or registered trademarks of Trend Micro Inc.

  9. Re:sweet by RiotingPacifist · · Score: 4, Funny

    i panicked for a sec, im on linux but thanks to virgin media the bottom two images didn't load. thankfully the chart said: any other combo = shite internet!

    --
    IranAir Flight 655 never forget!
  10. Oh shit by atomicthumbs · · Score: 4, Funny

    I can't see the chart at all! Shit shit shit!

    --
    http://pinopsida.com
  11. Pick your punchline by Comboman · · Score: 4, Funny

    Am I the only one that read it as Jon Stewart and then spent a few minutes trying to figure out the joke on the page?

    Pick your "Daily Show"-style punchline for this story:

    • If we can diagnose computer viruses with an eye-chart, does that mean McAffee can tell me if I need glasses?
    • Users of dual-boot computers should consult the bifocal eye-chart.
    • Your mother was right! If your computer visits those nasty virus-infected pron sites, you WILL go blind.
    --
    Support Right To Repair Legislation.
    1. Re:Pick your punchline by drik00 · · Score: 1, Funny

      I say this with love... keep your day job.

      --
      Beer, now there's a temporary solution -- Homer Jay S.
  12. Re:sweet by Chabil+Ha' · · Score: 5, Funny

    The chart or the virus?

    --
    We're all hypocrites. We all have hidden parts, it's the contrast between them that make us more a hypocrite than others
  13. Oops by Wilson_6500 · · Score: 4, Funny

    Considering how quickly and effectively we managed to slashdot this helpful site, It's pretty obvious that we are the worms.

  14. Re:sweet by supernova_hq · · Score: 3, Funny

    Considering he is hot-linking images to 3 other servers, he is potentially slashdotting 4 servers with 1 link!!!

  15. Another option for the eye chart by fava · · Score: 5, Funny

    And if you can see the top row and not the bottom one it means you work at Microsoft.

  16. Re:sweet by Matt+Perry · · Score: 4, Funny

    shite internet!

    Just be glad you aren't using Sunni internet.

    --
    Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
  17. Re:How long before... by Ian+Alexander · · Score: 2, Funny

    Maybe I shouldn't give them ideas. I bet the author of Confickr reads slashdot.

    Considering that s/he actually gets shit done I highly doubt it.

  18. Re:sweet by hawk · · Score: 2, Funny

    *shudder*

    That's totally out of control. Page after page of shameless hussies lifting their burkas to flash their ankles!

    hask