Remove W32.Downadup.B. Removal instructions

Also known as: Downadup

Severity scale:

(33 / 100)

W32.Downadup.B is a worm that infects computers by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability. This virus was detected in December 2008 and since then it is spreading all over the world. Various sources have said that somewhere between 3million and 10million systems have been infected already.

W32.Downadup.B monitors DNS requests to certain domains and blocks access to them causing network request timed out notification to show up. Typically, users gets a Windows alert saying that there is no network provider. However users still can ping the computer name or IP Address. W32.Downadup.B also creates autorun.inf file on all mapped drives and automatically executes it when the drive is accessed. Then the virus monitors for other computers that are connected to the infected computer. W32.Downadup.B creates autorun.inf as soon as other computer becomes accessible.

Most of the anti-spywares are worthless against this virus. Manual removal instructions will not work too, because registry permissions have to be restored, before registry keys are removed. The most effective way to avoid W32.Downadup.B is to use the registry to block Autorun of external media and to use a strong administrator password.

W32.Downadup.B properties:
• Allows remote user connection
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic W32.Downadup.B removal:

remover for W32.Downadup.B

SpyHunter is recommended remover to uninstall W32.Downadup.B. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove W32.Downadup.B using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

We are testing STOPzilla's efficiency at removing W32.Downadup.B (2009-03-18 03:41:02)

Malwarebytes Anti Malware

download | review

We are testing Malwarebytes Anti Malware's efficiency at removing W32.Downadup.B (2009-03-18 03:41:02)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing W32.Downadup.B (2009-03-18 03:41:02)

XoftSpySE Anti Spyware

download | review

Information added: 2009-02-17 00:53:52
Information updated: 2009-03-18 01:03:47

Additional resources related to W32.Downadup.B:

Attention: If you know or you have a website or page about W32.Downadup.B removal, feel free to add a link to this list: add url

more resources

teatar

open notepad, go to Save As ... choose Save As tipe: ALL FILES ... file name: file name of the virus w32.downadup.b attempts to create the c: windows system32 (eg: vtbuzl.pv or ycjtvub.hi similar) then save the same file name in c: windows system32. mark it as read only ... ende ...

Reply »

2009 03 18

Post Comment:

Attention: Use this form only if you have additional information about W32.Downadup.B parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Latest spyware news:

Subscribe to news

Similar parasites:

Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.