Conficker(Computer Associates,McAfee,Panda), also known as Downup or Downadup(F-secure,Symantec,BitDefender) or Kido (Kaspersky), is a worm that surfaced in October 2008 and targets the Windows OS .The worm exploits a known vulnerability in the Windows Server service used by Windows 2000,XP,and Vista .
Operation & Infected
* Conficker uses a specially crafted RPC request to execute code on the target computer.
* Conficker disables a number of system services such as Windows Automatic Update, Windows Security Center, Windows Defender and Windows Error Reporting.
* Conficker attaches itself to certain Windows processes such as svchost.exe, explorer.exe and services.exe.
* Conficker will create an HTTP server and open a random port between 1024 and 10000.
* Account lockout policies being reset automatically.
* Domain controllers respond slowly to client requests.
* System network gets unusually congested.
* On websites related with anti-virus software, Windows system updates cannot be accessed.
* Launches a brute force dictionary attack against administrator passwords.
Download Removal
windows-kb890830-v2.8.exe [9.77MB]
BD-Rem-Tool.zip [2.50 MB]
FixDownadup.exe [2.16 MB]
KidoKiller [150.89KB]
Please PATCH your Windows from :
MS08-067
Windows XP SP 2/3 [634KB]
Windows Vista [417 KB]
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment