This article provides quick links to what you need to know about the current major threats, and how to clean up if you become infected.
For a discussion of reports in the media regarding Conficker and 1st April, refer to http://sophos.com/blogs/gc/g/2009/03/25/conficker-april-1st
Conficker.C - A Technical Analysis (SophosLabs)
Conficker.C - A Technical Analysis
The Conficker cleanup tool
Sophos Conficker Cleanup Tool
How to remove Conficker if you have Sophos Anti-Virus
Sophos Anti-Virus for Windows 2000+: removing W32/Confick and Mal/Conficker with Sophos Anti-Virus
For a discussion of the threat posed by this malware
How to stop the Conficker worm on an unpatched PC
A full description of the malware and how it can affect you is given on the Sophos security webpages. These pages also list aliases for this malware.
Conficker has a number of variants, these include: Mal/Conficker-A, W32/Confick-A, W32/Confick-B, W32/Confick-C, W32/Confick-D, W32/Confick-E, W32/Confick-F, W32/Confick-D, Mal/ConfInf-A, Mal/Confick-Dam
How to remove Virtumundo
Sophos Anti-Virus for Windows 2000+: removing Troj/Virtum-Gen (Virtumundo)
If clean-up fails contact Sophos Technical Support. You may wish to discuss with them whether you can use Sophos Bootable Anti-Virus.
Virtumundo has a number of variants, these include: Troj/Virtum-Gen, Troj/ConHook-H, Troj/Agent-ILJ, Troj/Virtumod-K, Troj/Agent-GAU, Sus/Virtum-B
For an up-to-date discussion on these and other current threats, go to the SophosLabs blog.
For information on how to protect yourself against malware, refer to Sophos's Best practice document: Simple steps to defend against the latest threats.
If you need more information or guidance, then please contact technical support.
How did the article rate?
Did this solve your problem?
Help us improve this article
© 1997 - 2014 Sophos Ltd. All rights reserved.