Custom Search

Apr 3, 2009

How to Remove Conficker worm from your computer

W32 Conficker virus alias Downup, Downadup and Kido which was recently surfaced in October 2008 This worm is said to disable automatic updates of the anti virus and also windows updates and said to be incredibly sophisticated and resilient with built-in p2p and digital code-signing technology and spread itself to other computer across the network it is also said that this worm/virus is programmed to get instruction from a server exactly on April 1 is it a April fool Prank? no body knows exactly it can be anything.

below are some of the variants detected

-->Win32/Conficker.A was reported to Microsoft on November 21, 2008.
-->Win32/Conficker.B was reported to Microsoft on December 29, 2008.
-->Win32/Conficker.C was reported to Microsoft on February 20, 2009.
-->Win32/Conficker.D was reported to Microsoft on March 4, 2009.

How to know whether i am infected?

Though most antivirus could detect and block the conficker worm risk arises when you are not updated your antivirus regularly below are the clues that might sense infection

--> Check whether your account policies are reset
--> Check Whether your antivirus updates are disabled automatically
--> If the network connection is very slow
--> Antivirus and Virus Removal Program like Avenger, Downad, Confick, filemon, hotfix, HijackThis etc automatically gets terminated upon launch
--> If unusual data traffic going on your network

It is said to be copy itself in following paths

  • %Sysdir%\[Random].dll
  • %Program Files%\Internet Explorer\[Random].dll
  • %Program Files%\Movie Maker\[Random].dll
  • %Program Files%\Windows Media Player\[Random].dll
  • %Program Files%\Windows NT\[Random].dll
Conficker disables the following services
  • WerSvc
  • ERSvc
  • BITS
  • wuauserv
  • WinDefend
  • wscsvc
above are the hint that suggest you might be infected by the Conficker worm better to scan your system for the virus using below tools

How to disinfect your system from conficker worm?

Windows Malicious Software Removal tool

Windows malicious software removal tool or windows live oneCare saftey scanner can be used to detect and remove the worm Download the tool from here install and run the program and follow the instruction to disinfect from Conficker

Disinfecting system using Symantec tool

-->Download the w32.Downadup removal tool
-->run the tool does not need installation
-->click on start to scan and restart the computer once done

Symantec has three tools in the above link download all the three and do the scan and make sure to update your windows operating system and antivirus to avoid further infection if you know any other tool that can remove the conficker worm or more information about please let us know by commenting so that every one can benefit

Related Posts :


Sign by Danasoft - Get Your Free Sign