virus logo Intrusion Prevention

Conficker.Botnet

description-logoDescription

This indicates detection of network traffic outbound originating from a computer infected with the W32/Conficker worm, also known as W32.Downadup and W32.Conficker.
To spread, this worm exploits the Server Service Vulnerability (CVE-2008-4250), as written in the Microsoft Security Bulletin MS08-067.

affected-products-logoAffected Products

Any unprotected Windows system is vulnerable.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

If required, the signature's action can be set to "Block".
Please use Anti-Virus software to scan and clean the infected computer.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 17201
Created Jul 08, 2014
Updated May 03, 2016
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action pass
Active
Affected OS Windows
Affected App Other