A new worm spreads rapidly (disables important Windows services and blocks antivirus packages)

Recently security companies like Kaspersky, Symantec, PandaLabs, F-Secure, Bitdefender, etc have discovered a new worm known as Win32/Conficker worm which propagates rapidly by exploiting a critical vulnerability (MS08-067 ) in Microsoft Windows (See details here). The threat is considered to be critical and it disables several important system services and prevent Anti-virus package from functional mode work.

This worm has some other variants also such as W32.Downadup, Win32.Conficker.A, W32.Downadup.A, Conficker.A, Net-Worm.Win32.Kido, etc. It infects other computers across a network by exploiting the Windows Server service (SVCHOST.EXE) vulnerability and also spreads through USB Drives, external hard drives and MP3 players. Moreover this worm constantly updates by downloading new versions of it onto infected machines and keeps itself memory resident and is difficult to cleanup.

The worm infects - in computer that has no latest security updates, in shared systems with weak passwords, use of removable devices such as flash drive or external hard disk, in computers with open shares (e.g. corporate networks), etc.

To prevent the infection download and install urgent Security Update from Microsoft. If already have infected or not sure, download, scan and remove using any of the free tools described below.
1. Symantec
2. Kaspersky
3. F-Secure
4. Bitdefender
5. Microsoft MSRT
6. Panda Security

3 comments

Please leave your valuable comment below

 
© 2013 Jkwebtalks
Copyright Do not copy the content without written permission
Posts RSS Comments RSS
Back to top