Fisheries Development,Freshwater Fish,Seawater Fish, Selling Vaccines Fish

Tuesday, April 14, 2009

Detection and Cleaning Conficker / Recycler / Kido

Virus Conficker / Recycler / Kido this (hereinafter Conficker virus) is a virus that has spread to more than 10 million computers in the world. In Indonesia was estimated to have tens of thousands of computers infected with this virus. Very sophisticated distribution via the Internet, network, and the Autorun USB Flashdisk. This virus also take advantage of a bug in Microsoft Windows to infecting for most of the corporate network. Microsoft censure of this virus, and even Microsoft promised to provide $ 250,000 (Rp3 billion) to anyone who can catch the making of virus.

Maybe other sites already in very many ways the analysis and cleaning this virus Conficker for example vaksin, Kaspersky, Microsoft, and thousands of sites / other blogs. But almost all provide a solution that is not so clear and even the most technical things that confuse the user beginners. As a result, many users and beginners who are still confused ask how this virus cleaning. This paper aims to discuss only the easy way to detect and clean this virus Conficker.

Detecting whether your computer is infected with the virus Conficker?

1. Can not access the site security
Your computer is likely infected if your computer can not access sites such as microsoft.com, kaspersky.com, or other sites associated with the following words:
nai, ca, AVP, avg, vet, bit9, sans, cert, windowsupdate, wilderssecurity, threatexpert, castlecops, spamhaus, cpsecure, arcabit, emsisoft, sunbelt, securecomputing, rising, prevx, pctools, norman, k7computing, ikarus, hauri, hacksoft, gdata, fortinet, ewido, clamav, comodo, quickheal, avira, avast, esafe, ahnlab, centralcommand, drweb, grisoft, eset, NOD32, F-Prot, jotti, Kaspersky, f-secure, computerassociates, networkassociates, etrust, panda, Sophos, trendmicro, McAfee, norton, Symantec, Microsoft, defender, rootkit, malware, spyware, virus

2. Hidden files can not be displayed
You can not show hidden files in the computer even though the settings have changed "show hidden" in the folder options or in Smadav.

During the scanning using Smadav, Smadav akan detect 1 registry value of the damaged caused by a virus conficker:
HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Advanced \ Folder \ Hidden \ SHOWALL

3. Smart-display Smadav Protection Alert
Smart-Protection (SmaRTP) Smadav display when the Alert Flashdisk dicolok to the infected computer. There are 2 files are detected, the address files detected akan shaped like this:
[x]: \ autorun.inf
[x]: \ RECYCLER \ S-5-3-42-2819952290-8240758988-879315005-3665 \ jwgkvsq.vmx

* [x] is a flash drive such as F, G, or H

You have been infected with a computer connected Smadav before, definitely will not be infected with this virus Conficker because SmaRTP will directly detect and remove them as soon as the USB Flashdisk connected.

Cleaning Conficker quite easy just by using the tools already made some anti-virus. In fact almost all Antivirus Import can clean the virus, provided that in the update. I suggest here 2 special tools to clean Conficker, namely PCMAV Express Conficker or Kidokiller Kaspersky.

1. Use one of PCMAV Express Conficker or Kidokiller Kaspersky.

Download PCMAV Express Conficker
how to use the open on this page: pcmav-express-for-conficker

Download Kaspersky Kidokiller
how to use the open on this page: Kidokiller Kaspersky


2. Windows Update Patch
Fixed bug to Microsoft and to prevent re-infection Conficker, Please Patch Windows Update page on Microsoft: MS08-067


3. Place SmaRTP Smadav
Already said before, You have been infected with a computer connected Smadav before, definitely will not be infected with this virus because Conficker akan SmaRTP directly detect and remove them as soon as the USB Flashdisk connected. So, good for the computers that were infected or not Conficker, attach Smadav in the computer so that it's safe infection.


For bloggers / other sites are expected to publish this article to help users who infected Conficker.
From Nafarin blog


6 komentar:

Owais said...

PowerTools Lite is yet another great option for registry scanning and cleaning. It offers a stable scanning engine which is comparitively powerful, stable and safe. The best thing is that it is very easy and free to use. http://www.macecraft.com/download/ptlite/

Anonymous said...

Great post as for me. I'd like to read a bit more concerning that topic. Thanx for sharing this information.
Sexy Lady
Escort services

Anonymous said...

Can anyone recommend the top performing Endpoint Security program for a small IT service company like mine? Does anyone use Kaseya.com or GFI.com? How do they compare to these guys I found recently: N-able N-central remote control
? What is your best take in cost vs performance among those three? I need a good advice please... Thanks in advance!

Anonymous said...

[ ... ] link is being shared on Twitter right now. @zenx, an influential author, said RT @1ndus: Xtreme [ ... ]

Anonymous said...

Good post and this enter helped me alot in my college assignement. Thank you on your information.

Anonymous said...


http://pigikeule.popo.lt/2010/03/22/sernu-siautejimai/ Those are all good shares to buy American Bio Sources for scope up renewable energy projects in India. The Net usable entropy on iphone production was in from analysts nor is it included in as many funds because of limitations and the restrictions of these pecuniary resource/firms. When deciding on what are the best stock certificate cost to buy now, you feature a substantial parcel for Genentech, he said. I constitute this interesting we add its $1 million net cash position, we are truly obtaining RIMM's next Release immediate payment flow rate flow for about $3 million.

No longer are they concerned roughly picks tobuy penny stocksis the sensing that you can do a lot of profits in a identical inadequate menstruum of metre. During forex lineage price you testament misplace Sometimes, Method acting parameters by time value and not byreference. If you require to buy these store cost, be particularly concerned roughly competing technologies, and no equal has yet managed to tap Netflix from its stand. trader 247 Former Editor and Experient JournalistJones doesn't plank for buttery seraphic-talk loss to get some money out of Forex shares is by intellect the grocery!