New Threat W32/Conficker.worm.gen.d

Home Company Services Case Studies Contact Us

Why Our Clients Choose Binary Networks

• We've been helping our clients in the Houston area succeed with technology for over 12 years. Read real sucess stories from some of our clients. >>

New Threat W32/Conficker.worm.gen.d

Written by Hank Lehmann

Monday, March 08 2010

This detection is for a worm, which exploits the MS08-067 vulnerability in Microsoft Windows Server Service which may allow for remote code execution. This flaw lies in the improper handling of specially-crafted (malicious) RPC requests and was patched on October 23, 2008.

Aliases

Net-Worm.Win32.Kido.js [Kaspersky]

W32.Downadup.E [Symantec)]

W32/Confick-D [Sophos]

Worm:Win32/Conficker.D [Microsoft]

Worm:Win32/Conficker.gen [Ikarus]

WORM_DOWNAD.E [Trend]

Removal

A combination of the latest DATs and the Engine will be able to detect and remove this threat. We recommend users not to trust seemingly familiar or safe file icons, particularly when received via P2P clients, IRC, email or other media where users can share files.

Additional Windows ME/XP removal considerations

Stinger - A standalone removal tool has been released to assist in detecting and repairing this threat.

Security Center

Binary Networks utilizing Mikogo for remote support sessions
03.17.10 Tools
Binary Networks is now utilizing Mikogo for remote support sessions.…
Microsoft Releases Security Essentials
03.09.10 Tools
Microsoft Security Essentials provides real-time protection for your home PC…
New Threat W32/Conficker.worm.gen.d
03.08.10 Virus Bulletins
This detection is for a worm, which exploits the