Experts in network security while nothing can oppose invasion computer worm Downadup. The worm also has two other titles: Conficker and Kido. Currently, it has already infected more than 10 million computers worldwide.
The data provided by F-Secure, has already spent several years in the field of network security. Now 41 percent of infected PCs is in Russia, Brazil and China. In the U.S., apparently, people are more cautious, because there is infected with only one hundred computers.
Some experts believe that the risk of further transformation of the epidemic in the pandemic has passed: from 14 to 16 January was infected with more than six million PCs, and from 16 to 23 - "only" a million. It appears that the peak of the epidemic virus Downadup in the past.
Reported that exposure to the PC user attackers used the vulnerability of MS08-067 (OS Windows). This "hole" allows you to perform a third-party code on a user's computer. The virus uses the vulnerability to upload their own code.
The data provided by F-Secure, has already spent several years in the field of network security. Now 41 percent of infected PCs is in Russia, Brazil and China. In the U.S., apparently, people are more cautious, because there is infected with only one hundred computers.
Some experts believe that the risk of further transformation of the epidemic in the pandemic has passed: from 14 to 16 January was infected with more than six million PCs, and from 16 to 23 - "only" a million. It appears that the peak of the epidemic virus Downadup in the past.
Reported that exposure to the PC user attackers used the vulnerability of MS08-067 (OS Windows). This "hole" allows you to perform a third-party code on a user's computer. The virus uses the vulnerability to upload their own code.
1. Temporarily Disable System Restore (Windows Me/XP). [how to]
2. Update the virus definitions.
3. Reboot computer in SafeMode [how to]
4. Run a full system scan and clean/delete all infected file(s)
5. Delete/Modify any values added to the registry. [how to edit registry]
Navigate to and delete the following registry entry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\netsvcs\Parameters \”ServiceDll” = “[PATH OF WORM EXECUTABLE]”
6. Exit registry editor and restart the computer.
7. In order to make sure that threat is completely eliminated from your computer, carry out a full scan of your computer using AntiVirus and Antispyware Software. Another way to delete the virus using various Antivirus Program without the need to install can be done with Online Virus Scanner.