Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Urgent - please help! (Conflicker.C?)


  • Please log in to reply
10 replies to this topic

#1 mike310x

mike310x

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 16 October 2009 - 06:20 PM

Any response is GREATLY appreciated;

Hello all I just got my new computer today! I have the Windows Vista Home Premium 64-bit and I set up the windows firewall and everything then installed my wireless desktop card and got the internet working. I was on the net for no longer than 15 minutes when I get this message saying that "Win32.Conflicker.C" is running with a high risk level and "The worm exploits a known vulnerability (MS08-067) in the Windows service and can be commanded remotely by its authors" it said that I should protect myself - I click on the protect thing that looks like windows but turns out to be Proof Defender - which I uninstall because it obviously is some fake antispyware program. Whenever I try to run IE or Firefox it says that I need to protect myself again and if I click protect it does the Proof Defender installation thing again. I uninstalled it again and disconnected the internet and now I'm on my laptop trying to get help!
I have looked some stuff up and have no idea what to do to get rid of this horrible worm which may ruin my new computer!

Please help me!!!

BC AdBot (Login to Remove)

 


#2 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 16 October 2009 - 06:51 PM

What AntiVirus and AntiMalware have you installed, Mike?

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 


#3 mike310x

mike310x
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 16 October 2009 - 07:00 PM

This new comp came with a clean install of Vista 64-bit and did not have any antimalware or antivirus software installed and I don't have anything which I installed to it.

#4 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 16 October 2009 - 08:04 PM

Oh dear. You must protect your machine or it will not last long, as you have found out already.

I would recommend that you immediately download and install the free version of Avast AntiVirus-
http://www.avast.com/eng/download-avast-home.html

And also MalwareBytes antimalware
http://www.malwarebytes.org/

Once you register your Avast and enter the free licence code, you will be automatically protected and updated.

If you choose the free version of MBAM, you will need to manually update the program and run a scan regularly. The paid version will run automatic scans daily for you.

Do these 2 things, run the scans, and you should be OK.

Let us know how you get on, and don't hesitate to ask further questions if need be.

Good luck.

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 


#5 mike310x

mike310x
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 16 October 2009 - 08:16 PM

Awesome I will DEFINITELY try those and hopefully everything will work
Thanks Rowal!!!

#6 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 16 October 2009 - 08:44 PM

Good as, Mike.

I use those 2 on most of my machines together with ThreatFire as an added layer of protection and find they work very well.
http://www.threatfire.com/download/

The important things to remember are-
1. Only use one Firewall (I just stick to Windows, but some will argue that you need a 3rd Party program).
2. Only use one AntiVirus. More than that will fight.
3. You can use more layers of AntiMalware.

The main thing is to try various options and stick with what works for you.

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 


#7 mike310x

mike310x
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 16 October 2009 - 10:32 PM

Hmm for some reason while installing Avast Home Edition I got an error prohibiting me from the installation..Any ideas???


16.10.2009 21:30:34 general: Started: 16.10.2009, 21:30:34
16.10.2009 21:30:34 system: Operating system: Windows Vista ver 6.0, build 6001, sp 1.0 [Service Pack 1] AMD64
16.10.2009 21:30:34 system: Memory: 20% load. Phys:4194303/4194303K free, Page:4194303/4194303K free, Virt:2022112/2097024K free
16.10.2009 21:30:34 system: Computer WinName: MIKE-PC
16.10.2009 21:30:34 system: Windows Net User: Mike-PC\Administrator
16.10.2009 21:30:34 general: Old version: ffffffff (-1)
16.10.2009 21:30:34 system: Using temp: C:\Users\ADMINI~1\AppData\Local\Temp\_av_inet.tm~a03184 (432217M free)
16.10.2009 21:30:34 internet: SYNCER: Type: use IE settings
16.10.2009 21:30:34 internet: SYNCER: Auth: another authentication, use WinInet
16.10.2009 21:30:34 general: Install check: Program folder does NOT exist in registry
16.10.2009 21:30:34 general: SGW32P::CheckIfInstalled set m_bAlreadyInstalled to 0
16.10.2009 21:30:36 general: progress thread start
16.10.2009 21:30:36 general: Destination: C:\Users\ADMINI~1\AppData\Local\Temp\_av_inet.tm~a03184
16.10.2009 21:30:36 general: Starting download: http://www.avast.com/go.php?verb=get-avast...&langid=eng
16.10.2009 21:30:36 general: Download finished from server www.avast.com, result: 0x20000006, server response: 301
16.10.2009 21:30:36 general: Stats www.avast.com, server response: 536870918
16.10.2009 21:30:36 general: POST result: 0x00000000, server response: 20

#8 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 17 October 2009 - 05:25 AM

Sorry Mike. I have never had any trouble installing Avast.

I couldn't find any system requirements but it could possibly be a 64bit issue.

Did you get it from here - http://download.cnet.com/Avast-Home-Editio...l?tag=mncol;pop

Let's see if anyone else has an idea why this will not work for you.

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 


#9 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 17 October 2009 - 05:41 AM

It is possible that the malware already on your system is preventing the install.

I would try an online scan. Here is one

http://housecall.trendmicro.com/uk/

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 


#10 mike310x

mike310x
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 17 October 2009 - 02:32 PM

Yeah that is where I downloaded it from and I tried again and it still brings up an error:

17.10.2009 13:29:44 general: Started: 17.10.2009, 13:29:44
17.10.2009 13:29:44 system: Operating system: Windows Vista ver 6.0, build 6001, sp 1.0 [Service Pack 1] AMD64
17.10.2009 13:29:44 system: Memory: 22% load. Phys:4194303/4194303K free, Page:4194303/4194303K free, Virt:2018844/2097024K free
17.10.2009 13:29:44 system: Computer WinName: MIKE-PC
17.10.2009 13:29:44 system: Windows Net User: Mike-PC\Administrator
17.10.2009 13:29:44 general: Old version: ffffffff (-1)
17.10.2009 13:29:44 system: Using temp: C:\Users\ADMINI~1\AppData\Local\Temp\_av_inet.tm~a03692 (417792M free)
17.10.2009 13:29:44 internet: SYNCER: Type: use IE settings
17.10.2009 13:29:44 internet: SYNCER: Auth: another authentication, use WinInet
17.10.2009 13:29:44 general: Install check: Program folder does NOT exist in registry
17.10.2009 13:29:44 general: SGW32P::CheckIfInstalled set m_bAlreadyInstalled to 0
17.10.2009 13:29:45 general: progress thread start
17.10.2009 13:29:45 general: Destination: C:\Users\ADMINI~1\AppData\Local\Temp\_av_inet.tm~a03692
17.10.2009 13:29:45 general: Starting download: http://www.avast.com/go.php?verb=get-avast...&langid=eng
17.10.2009 13:29:46 general: Download finished from server www.avast.com, result: 0x20000006, server response: 301
17.10.2009 13:29:46 general: Stats www.avast.com, server response: 536870918
17.10.2009 13:29:47 general: POST result: 0x00000000, server response: 20







I will try that scan right now to see if there is any malware.
I managed to get rid of the conflicker.c cause I found some weird process running which I removed completely and now it is fine! It was called msvtime.exe or something of the likes...not familiar with that but getting rid of it fixed the conflicker.c problem but Threatfire and the other programs (minus Avast due to it not installing) are working great!

#11 rowal5555

rowal5555

    Just enough info to be armed & dangerous...


  • Members
  • 2,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:St Kilda, Dunedin. South Island. NZ
  • Local time:09:51 PM

Posted 17 October 2009 - 05:36 PM

Hi Mike.

There are 9 tabs at the top of every page here which contain swags of useful information. Check them out for suspicious files and HowTo's.

Cheers.

rowal5555 (Rob )                                                             

Avid supporter of Bleeping Computer's
Team 38444

You can help find a cure


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users