Webmail | my.MegaGate.com | MegaGate.com
  Support > Conficker/Downup/Downadup/Kido Worm

Conficker, Downup, Downadup, Kido Worm Information

What is it?

From BDTools.net:

"Downadup (or Conficker) is a network worm that takes advantage of vulnerabilities in Windows to spread. Its removal is complicated by the fact that it blocks many known antivirus software and associated websites."

From Wikipedia:

"Conficker, also known as Downup, Downadup and Kido, is a computer worm that surfaced in October 2008 and targets the Microsoft Windows operating system.[1] The worm exploits a known vulnerability in the Windows Server service used by Windows 2000, Windows XP, Windows Vista, Windows Server 2003, Windows Server 2008, and the Windows 7 Beta."

How do I know that i'm infected?

From Wikipedia:

Symptoms of infection
  • Account lockout policies being reset automatically.
  • Certain Microsoft Windows services such as Automatic Updates, Background Intelligent Transfer Service (BITS), Windows Defender and Error Reporting Services are automatically disabled.
  • Domain controllers respond slowly to client requests.
  • System network gets unusually congested. This can be checked with network traffic chart on Windows Task Manager.
  • On websites related to antivirus software, Windows system updates cannot be accessed.[10]
  • Launches a brute force dictionary attack against administrator passwords to help it spread through ADMIN$ shares, making choice of sensible passwords advisable.[11]

How do I scan/clean the infection?

Aliases of the Worm

Sources and Additional Information

*Note: MegaGate Broadband is not affiliated with any companies, websites, or downloads listed above. MegaGate Broadband cannot offer support for any products listed above; Please see the manufacturer for more details. MegaGate Broadband has published this information for the knowledge and assistance of our customers.