Net-Worm.Win32.Kido

Status : moderate risk

Kaspersky Lab has detected that multiple variants of Kido, a polymorphic worm, are currently spreading widely.

Net-Worm.Win32.Kido exploits a critical vulnerability (MS08-067) in Microsoft Windows to spread via local networks and removable storage media. It has already infected around 610534 computers during the month of December’2009 and stood first in top 20 viruses.

The worm disables system restore, blocks access to security websites, and downloads additional malware to infected machines.

Users are strongly recommended to ensure their antivirus databases are up to date. A patch for the vulnerability is available from the following Microsoft link.

Reference:Microsoft