The Conficker worm, also known as Downadup, or Kido, was discovered back in October. Microsoft released a patch for it, but it’s still gone on to infect millions computers, possibly as many as eight or nine million, the BBC reports. It spreads via low security networks, PCs that haven’t been updated, and even memory sticks.
Microsoft says the worm searches for a Windows executable file called "services.exe" and then becomes part of that code. From there, the worm copies itself into the Windows system folder, becoming a random dll file with a 5-8 character name. After that it modifies the Registry to run the infected dll file as a service.
