W32.Downadup.B monitors DNS requests to certain domains and blocks access to them causing network request timed out notification to show up. Typically, users gets a Windows alert saying that there is no network provider. However users still can ping the computer name or IP Address. W32.Downadup.B also creates autorun.inf file on all mapped drives and automatically executes it when the drive is accessed. Then the virus monitors for other computers that are connected to the infected computer. W32.Downadup.B creates autorun.inf as soon as other computer becomes accessible.
Most of the anti-spywares are worthless against this virus. Manual removal instructions will not work too, because registry permissions have to be restored, before registry keys are removed. The most effective way to avoid W32.Downadup.B is to use the registry to block Autorun of external media and to use a strong administrator password. W32.Downadup.B properties:
• Allows remote user connection
• Connects itself to the internet
• Hides from the user
• Stays resident in background
Geolocation of W32.Downadup.B
Post a comment
Attention: Use this form only if you have additional information about a parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.