Symptoms of Conficker / Downadup:
- There is an error message "Generic Host Process (GHP) Error"
- Conficker do pacthing against the RPC DCOM windows security gaps, and open a random port between 1024-10000 to spread itself over a network
- Network running slow
- Disconnected from the network, sharing folders disconnected
- Services dead tissue (network conection, servers, workstations)
- Services Sound off (windows audio), or the sound driver Cres
- Conficker duplicate files into a Removable Disk Drive: \ recycled \ jwgkvsq.vmx
- Can not access Website Security / Antivirus (www.symantec.com, www.avg.com, Kapersky, etc.)
- Turning off system restore
- On the menu of Windows Firewall - Exceptions, there is a setting conficker with name% Random%
If the symptoms above occur on our computer, has been ascertained by computer is infected with Virus Conficker.
Here's Step by Step Method Solution how to remove Conficker:
- If your computer is connected to a network, first disconnect by unplugging the network cable or disable the LAN.
- Use the removal tools from Symantec.com conficker, can be downloaded here!
- Perform scanning the computer using safe mode Removal Tools on Windows
- After scanning is complete, restart Windows
- Do your windows security patches MS08-067 patch can be downloaded on the Microsoft.com site. Its function is to patch security loopholes that successfully hacked by Conficker
- Antivirus installations that have been known and worked with both Conficker Antivirus and update the database regularly so that the virus does not re-invade our computers
- Do a scan on the Removable Disk is suspicious, as there is a hidden Recycle folder, if so then certainly the Removable Disk is already infected by Conficker
May we all be free from computer virus.
No comments:
Post a Comment