Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3650
  • Last Modified:

How to fix w32.downadup.b worm

Hi dear,

I try to clean up w32.downadup.b by using
1 - delete unreconized schedule (all of it name like this : At1 , At2 .... which call rundll32.exe , ... )
2 - symantec removal tool
3 - after restart then update ms security patch
4-  scan with symantec antivirus

it still can not fixed . please guide me the way or tool to remove this threat !
(Note: os in my network: window 2003, 2000 and xp)

thanks,
0
ikhmer
Asked:
ikhmer
  • 3
  • 2
1 Solution
 
Mohamed OsamaSenior IT ConsultantCommented:
use MCafee stinger in safe mode http://vil.nai.com/vil/conficker_stinger/Stinger_Coficker.exe
also the Microsoft malicious software removal tool does the trick
http://www.microsoft.com/downloads/details.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356
also please make sure to disable autorun , finally this link should sum it up http://www.readwriteweb.com/archives/7_resources_to_help_you_prepare_for_confickers_d-d.php


0
 
ikhmerAuthor Commented:
Dear Admin3k,

Many thank for your help! I use Stinger_coficker.exe and tool from microsoft follow about links-- it seem stinger-coficker.exe can detected and remove the existing tasks which was created by virus, but could not clean the core virus ! The new task is recreated repeatly !

The same with symantec, it can detected and move the infected files into qaranteen
but also can not fix the main process of virus .

Please give me more hints!

thanks,


0
 
Mohamed OsamaSenior IT ConsultantCommented:
did you run the tools in safe mode ? 

0
 
ikhmerAuthor Commented:
Yes, for sure!

Thanks
0
 
ikhmerAuthor Commented:
Any new idea please ?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now