Got this from Microsoft and decided would be good to share this with you
Based on feedback from
MVPs and other sources, we are concerned about the rise in reported
infections due to the worm Win32/Conficker.B also known as
“Downadup.” Though systems which have already applied the
out-of-band released MS08-067 in October 2008 are protected,
unpatched system users have experienced system lockout and other
problems.
Last week, we released a version of the Malicious Software Removal tool (MSRT) that
can help remove variants of Win32/Conficker and other resources. Please
share this information in your communities to help address this threat.
Win32/Conficker.B
exploits a vulnerability in the Windows Server service (SVCHOST.EXE) for
Windows 2000, Windows XP, Windows Vista, Windows Server 2003, and Windows 2008.
While Microsoft addressed this issue in October with Microsoft Security
Bulletin MS08-067,
and Forefront antivirus and OneCare (as well as other vendor's anit-virus
products) helped protect against infections, many systems that have not been
patched manually through Server Update Services and Microsoft/Windows Update or
through Automatic Updates have recently come under attack by this worm.
Attacked systems may lock out users, disable our update services and block
access to security-related Web sites:
In response to this
threat, Microsoft has:
·
Updated the January version of the MSRT to
detect and remove variants of Win32/Conficker.B. You can download this
version from the MSRT from either the Microsoft
Update site or through its associated Knowledge Base article.
·
Created the KB article 962007 “Virus alert about the
Win32/Conficker.B worm” to provide public details on the symptoms and
removal methods available to address this issue.
·
Announced the release of the items and the virus threat itself on the Microsoft
Malware Protection Center blog.
It is our hope that these
resources can assist you in resolving issues with unpatched, infected systems
and that you can apply MS08-067
to any other unpatched systems as soon as possible to avoid this threat.
Denis has been working with SQL Server since version 6.5. Although he worked as an ASP/JSP/ColdFusion developer before the dot com bust, he has been working exclusively as a database developer/architect since 2002. In addition to English, Denis is also fluent in Croatian and Dutch, but he can curse in many other languages and dialects (just ask the SQL optimizer) He lives in Princeton, NJ with his wife and three kids.
