Fix Tool

Fix Tool is a fake registry cleaner that wants to part your from your money. Fix Tool was most likely put on your computer by a Trojan..

Fix Tool is obviously a scam, even on it’s website. When you first load the page it says it has found problems on your computer, even though it hasn’t done a scan of your computer. Fix Tool must be one of those psychic programs that are being released. The “registry errors” Fix Tool says it has found in it’s constant pop ups are fake and is trying to trick you into buying the “full” version of Fix Tool.

Fix Tool is known to generate the following error:

Warning! Your computer is in critical condition, we suggest you repair ASAP! One-Click operation is specially designed for time-saving and life-enjoying to not only easily scan, repair and optimize computer system in the simplest way, but also improve PC overall performance from hardware to software. There are different malicious errors found on your system according to the scan which will result in the system collapse. With One-Click function can let these errors be ZERO and your PC will be like a brand-new.

You can try to manualy remove Fix Tool with these instructions.

Before you do that, Click Start > Run: Type MSCONFIG, Click OK, Uncheck “Load Startup Items“, click OK and restart your computer when prompted. This should stop those annoying popups and make removing Fix Tool a little easier.

Now click Start > Search, in “What do you want to search for?” Click “All files and folders.” Do a search for Fix Tool and delete any folder using this name.

(FYI: for some links to software we receive a commission. This is one of them. But we wouldn’t recommend Spyware Doctor if we didn’t think it would help.)

Popularity: 3% [?]

Recovering Files From a Badly Infected Computer

Here’s the sad truth. If you don’t have a decent antivirus/antispyware program running, your computer is going to get infected and it may come to the point where the infection is too hard to remove and your operating system is beyond repair.

If you are reinstalling the operating system, either from a Windows CD or a factory image, you are going to loose the infection. You are also going to lose all your photo’s, music etc. So you do get your data without bringing the infection along with it?
Read more

Popularity: 3% [?]

CONFICKER VARIANT DISPENSES WITH NEED TO PHONE HOME

Stealth variant Sidesteps MS-led takedown effort

Virus authors have released a new variant of the infamous Conficker (Downadup) worm with enhanced auto-update features.

The changes in the new strain of the malware, dubbed Conficker B++, make it possible for malware authors to push out new code without publishing it on pre-programmed sites, as with earlier variants. The earlier approach has been frustrated by the recent formation of an alliance led by Microsoft geared up to block and take down sites associated with the worm.

Keep reading “Conficker variant dispenses with need to phone home” »

Popularity: 2% [?]

HOUSTON JUSTICE SYSTEM LAID LOW BY CONFICKER WORM

They have a problem

The justice system in Houston was thrown into disarray late last week after the infamous Conficker (Downadup) worm infected key systems.

The infection forced municipal courts in the Texan city to shut down on Friday, and police had to temporarily stop making arrests for minor offences, such as those for outstanding traffic warrants or minor drug possession. “The people we pull over with outstanding traffic warrants will be issued a citation rather than being taken to jail,” explained Houston Police Department spokesman John Cannon. “Anyone suspected of a violent crime will be taken to jail. We’re not cutting back on that.”

Keep reading “Houston justice system laid low by Conficker worm” »

Popularity: 2% [?]

OPENDNS ROLLS OUT CONFICKER TRACKING, BLOCKING

Downadup on notice

With an estimated 10 million PCs infected by the stealthy worm known as Conficker, it’s a good bet that plenty of administrators are blissfully unaware that their networks are playing host to the pest. Now, a free service called OpenDNS is offering a new feature designed to alert administrators to the damage and help them contain it.

The company on Monday plans to introduce an addition to its offerings that makes it easy for admins to know if even a single machine has been infected by Conficker. The service will also automatically protect infected machines by preventing them from connecting to rogue servers controlled by the malware authors.

Keep reading “OpenDNS rolls out Conficker tracking, blocking” »

Popularity: 2% [?]

ASPROX BOTNET DIALS INTO CONFICKER DOMAINS

Collusion or collision?

The zombie network created by the Conficker worm is yet to go “live”, but it’s displaying curious behaviour that yields potential clues to its origins and purpose.

Variants of the Conficker (Downadup) worm spread by exploiting a vulnerability in the Microsoft Windows server service patched by Redmond in October. It spreads across network shares and via infected USB sticks. The combined approach, allied with social engineering trickery, have made the worm the biggest problem of its kind for years, since the default activation of the Windows firewall put the brakes on the like of Nimda and Sasser.

Keep reading “ASProx botnet dials into Conficker domains” »

Popularity: 2% [?]

How I removed W32.Downadup.B/Conficker

I have just been infected by W32.Downadup.B – AKA Conficker and have spent all night removing it, so now I am going to share the quick way to remove W32.Downadup.B.

First make sure you are infected with W32.Downadup.B/Conficker. The biggest sign is going into My Computer and double clicking your hard drive. If you get an error message about “RECYCLER\S” then you are infected.

Be on the lookout for the “RECYCLER” folder as W32.Downadup.B/Conficker puts this on any drive on your computer. It is launched when autorun runs and is responsible for installing the infection. If your computer is infected with W32.Downadup.B/Conficker, you cant remove the RECYCLER folder as it is just put straight back on. RECYCLER is in the main directory “[YourDriveLetter]:\RECYCLER” so it is easy to find.

There are alot of sites out there showing you how to manually remove W32.Downadup.B/Conficker. Most of these files have the word [Random] in it meaning it could be anything. Don’t bother trying to manually remove it, it’s time consuming and you could do more harm than good.

To get rid of W32.Downadup.B/Conficker you have to use an antivirus/anti-spyware program, I just don’t see any other way around it. Microsoft recommends using their Malicious Software Removal tool. If you can’t access that link, it’s because W32.Downadup.B/Conficker is blocking it. Even if you were able to download it, W32.Downadup.B/Conficker stops the Malicious Software Removal tool from being executed.

I did have some limited success using Microsoft’s Conficker manual removal instructions.. Surprisingly W32.Downadup.B/Conficker allowed me to view the page however it didn’t allow me to download or even install the patches.

Although I used Spyware Doctor to remove W32.Downadup.B/Conficker, this post applies to all antivirus/anti-spyware programs. Even if you are able to download and purchase an antivirus/anti-spyware program, it is next to useless as Conficker will prevent it from downloading the necessary updates. Beceause of this, get whatever antivirus/anti-spyware program you want from an uninfected friends computer. When you have the program, manually download the updates from a website. Most antivirus/anti-spyware programs allow you to do this.

Now BURN THE ANTIVIRUS/ANTI-SPYWARE TO A CD. I cannot stress this enough. DO NOT USE A PENDRIVE/USB DEVICE. It will be infected as soon as you plug it into your computer. This is how I was infected in the first place.

Once on a CD/DVD, install the program onto your computer, put in your registation details and install the manual updates you downloaded. Now let it do a full scan and say goodbye to W32.Downadup.B/Conficker.

After you have removed W32.Downadup.B/Conficker, be sure to install this Microsoft patch. It prevents hackers from taking over your system using W32.Downadup.B/Conficker. Those of you are uninfected will want to install it anyway for safety.

Good luck.

UPDATE: Conficker B++ & Conficker C has recently been released. This is just Conficker that has been modified with different ways to communicate with hackers. It’s impact on your computer is the same as it’s twin brother. As before don’t bother trying to manually remove it but use Spyware Doctor to remove Conficker B++ and Conficker C instead.

Conficker is scheduled to start doing something on April 1st. No one is exactly sure what it will do the general consensus is that it will connect to a server and get further instructions like download a Trojan.

Popularity: 18% [?]

CONFICKER BOTNET GROWTH SLOWS AT 10M INFECTIONS

Diary of the Dead

Infections as a result of the infamous Conficker (Downadup) worm have peaked at around the 10m PC mark.

Variants of Conficker use a variety of methods to spread, including exploiting the MS08-067 vulnerability in the Microsoft Windows server service patched by Redmond in October. Once it gets a foothold within corporate networks, Conficker is programmed to spread across local area networks. The worm also spreads between infected USB sticks and Windows PCs.

Keep reading “Conficker botnet growth slows at 10m infections” »

Popularity: 2% [?]

CONFLICKER AUTOPLAY RUSE GETS TEETH INTI WINDOWS 7

VXers still ahead of the game

Social engineering autoplay tricks work on early versions of Windows 7 as well as Vista, according to tests by security researchers.

As well as spreading by exploiting a weeks-old Microsoft vulnerability, the Conficker (Downadup) worm attempts to spread across network shares and to infect removable drives, using a special malformed autorun.inf file.

Keep reading “Conficker Autoplay ruse gets teeth into Windows 7” »

Popularity: 5% [?]

CONFICKER SEIZES CITY’S HOSPITAL NETWORK

Network-wide update ban invites worm infection

Exclusive  Staff at hospitals across Sheffield are battling a major computer worm outbreak after managers turned off Windows security updates for all 8,000 PCs on the vital network, The Register has learned.

It’s been confirmed that more than 800 computers have been infected with self-replicating Conficker code. Insiders at Sheffield Teaching Hospitals Trust said they suspect many more machines are affected but have not been reported to IT.

Keep reading “Conficker seizes city’s hospital network” »

Popularity: 2% [?]

Next Page »