Chennai, India – (The Hosting News) – January 27, 2009 – Information security software company, K7 Computing, has developed a solution for Internet worm ”Downadup” (also known as Conficker) which exploits the Microsoft Windows Server Service.
The vulnerability could allow remote code execution, which may result in easy exploitation of the Windows computers by the attacker without authentication. To counter this latest security threat K7 Antivirus Experts have developed ”K7Downadup Remover Tool” – a solution that neutralizes this family of threats.
Andrew Lee, Chief Technology Officer at K7 Computing remarked, ”This worm is a salutary reminder to all users not to be complacent about patching operating systems and to use and keep their anti-virus products updated. The fix has been available from Microsoft for some three months now, and would have prevented much of this current chaos caused by the Conficker worm, disabling Auto-run is also an extremely good idea.”
On analysing this worm, K7 Virus Experts have found that the worm may hook the system start up and would be present in the Windows Registry in several random names such as boot, center, config, driver, installer, image, universal etc. Also, the worm is smart enough to attempt to abort any security protection by searching for process strings including Symantec, ESET, Kaspersky, K7 and many more.