Microsoft Windows Server Service and Win32/Conficker.B

February 2, 2009

Onsite Computer Services in New Orleans recently had its first encounter with the dastardly Win32/Conficker.B malware variant that targets a flaw in the ubiquitous Windows Server Service found in a plethora of Microsoft products.  Win32/Conficker.b is also known as Troj/Agent-IMK (Sophos), INF/Conficker, Worm: Win32/Conficker.B (MS OneCare), W32.Downadup.B (Symantec).

Win32/Conficker.B apparently propagates by removable drives and network shares, and by exploiting vulnerability in the Windows Server Service, known as MS08-067. The worm attacks and disables security services, blocks access to several security websites and provides back-door openings for future outside attacks on infected systems. Win32/Conficker.B apparently challenges its removal by using the access control list (ACL) to fasten its .exe file to the infected system.

The Onsite Microsoft business client with Win32/Conficker.B has a small network with five users and their passwords are quite week – their password is the first letter of their user name.  Several network shares have no password so Win32/Conficker.B spread with impunity on his network.

Removal of this piece of malware is discussed at http://support.microsoft.com/kb/962007.  If your systems are experiencing the symptoms in this kb article, then pay close attention to Win32/Conficker.B’s propagation methods.  Microsoft also provides a Malicious Software Removal Tool to assist in removal of Win32/Conficker.B.  If you require assistance with eradication of this piece of malware, contact Onsite Computer Services in New Orleans.

If you’re searching for New Orleans computer service or repair of your Microsoft based system or network, then call the Microsoft specialists at 504-469-6991. Onsite Computer Services, Inc. in New Orleans

You may also be interested in Onsite Computer’s Blog.

This New Orleans On-Site Computer Service post was provided by Eli Lucas. Eli can be reached at eli@onsitenola.com. Onsite Computer serves the Microsoft computing needs of small businesses throughout the Greater New Orleans area including Uptown, Lakeview, Broadmoor, Mid-City, Metairie, Jefferson, Kenner, Westbank, French Quarter, and the Warehouse District. Please visit our website for New Orleans Computer Service

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: