Updated Variant of the Downadup Worm Identified in the Wild

In addition to blocking access to any website of antivirus vendors, as well as third-parties offering online scanning services or removal tools, the malicious binary has been updated to refuse users access to http://bdtools.net, BitDefender's online repository for distributing disinfection and removal tools.

The updated disinfection tools are now available online at www.disinfecttools.com, a domain that is not currently blacklisted on the compromised machines.

All the BitDefender 2009 products detect the worm as Win32.Worm.Downadup.Gen and stop its execution before it is able to perform changes on the system. In order to stay safe while surfing the Web, BitDefender recommends that you install a complete and up-to-date anti-malware software solution.

BitDefender provides one of the industry's fastest and most effective lines of internationally certified security software, setting new standards for proactive threat prevention since 2001. Through our global network of partners our technology protects over 41 million home and corporate users in more than 100 countries, and in some of the world's largest corporations.