print friendly version

Questions and answers

1537
What is the Conficker Downadup Worm?


The Conficker (other aliases: Downadup/Kido) computer Network Worm is due to "phone home" on April 1st 2009.

Conficker exploits a critical vulnerability (MS08-067) in Microsoft Windows to spread via local networks and removable storage media. Mac OSX is not at risk.

The worm disables Windows system restore, blocks access to security websites, and downloads additional malware to infected machines.

Users are strongly recommended to ensure their antivirus databases are up to date. The MS08-067 patch for the vulnerability is available from Microsoft.

Q. How do I know if I have been infected?

A rather basic test is to try and log onto an anti-virus website. Conficker blocks many of these sites in an attempt to keep users in the dark.

If you believe you may be infected, Kaspersky has a free removal tool for the worm.

Download the zip file and extract its contents. Run KKiller.exe from a command line to scan for and clean [if infected] the Conficker/Kido worm.

Further information:

 

Help us to improve this answer

Please suggest an improvement
(login needed, link opens in new window)

Your views are welcome and will help other readers of this page.

Categories

This is question number 1537, which appears in the following categories:

Created by Neale Type on 31 March 2009 and last updated by Richard Byrom-Colburn on 31 October 2016