Conficker Worm Update

The Conficker worm has created a new variant of itself. It is called WORM_DOWNAD.E and it is stored in the Windows Temp folder of infected computers. It is made from an encrypted 134,880-byte TCP response from a known Conficker node.

This will stop on the first week next month according to Trend Micro.

It uses the MS08-067 vulnerability to spread and it runs random file name and random service name.

The other things that this worm does is open port 5114 tries to connect to popular sites such as Myspace and eBay.

Source: TG Daily

Join 16,500+ other happy readers and subscribe to Technibbles Email Digest and receive new posts sent directly to your inbox. All new signups get a copy of our Computer Technicians Quick Reference Guide free. Signup Now!

Your Blogmaster is Lee
Lee is a computer enthusiast and technology writer.

Other Blog posts by Lee