Tag: remove
Worm Conficker
by Kukuruzman on Jan.22, 2009, under Viruses
In this article I’ll try to describe how to remove Worm Conficker from your system.
Depends on the antivirus program you have, this worm can be detected with different names:
- Symantec: W32.Downadup.B
- Kaspersky: Net-Worm.Win32.Kido.fw
- F-Secure: Worm:W32/Downadup.gen!A
- Sophos: Mal/Conficker-A
- Panda: Trj/Downloader.MDW
- Grisoft: I-Worm/Generic.CJY
- Eset: a variant of Win32/Conficker.AE worm
- Bitdefender: Win32.Worm.Downadup.Gen
The easiest way to detect that you are infected is to try access these websites:
This is not the whole list of websites that can be blocked. In such way virus tries
to prevent you update antivirus definition files and Windows system.
You will also get your AutomaticUpdates and BITS services disabled on the infected machine.
The Server and Workstation services can be disabled as well.
In our environment we determined three possible ways for its spreading:
1. Using autorun on the removable storage devices like USB sticks or external USB hard drives.
On the removable drive it creates autorun.inf file and RECYCLED folder. (continue reading…)