W32.Downadup.E

• W32.Downadup Infection Statistics
• New Variants of W32.Downadup.B Find New Ways to Propagate
• W32.Downadup.A and W32.Downadup.B Statistics
• Downadup: Peer-to-Peer Payload Distribution
• Downadup: Geo-location, Fingerprinting, and Piracy
• Downadup: A Lock with No Key
• Downadup: Small Improvements Yield Big Returns
• Downadup: Attempts at Smart Network Scanning
• Downadup: Playing with Universal Plug and Play
  
• Coalition Formed in Response to W32.Downadup
• Downadup: Locking Itself Out
• A New Downadup Variant?
• Downadup—Advanced Crypto Protection
• Downadup Motivations
• Downadup-Related Search Indexes Poisoned with Fake AV Sites
• W32.Downadup.C Pseudo-Random Domain Name Generation
• Conficker Used for Fake Antivirus Software Sale
• Downadup + Waledac?
• W32.Downadup.E—Back to Basics
• The Downadup Codex, Edition 2.0
  

Protection

• Initial Rapid Release version April 9, 2009 revision 009
• Latest Rapid Release version May 21, 2009 revision 021
• Initial Daily Certified version April 9, 2009 revision 009
• Latest Daily Certified version May 21, 2009 revision 023
• Initial Weekly Certified release date April 15, 2009

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Medium

Distribution

• Distribution Level: Medium
• Target of Infection: Spreads by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability.