Enter your Keyword, Search here,

Manual Removal of Sndconfg16.exe (P2P Worm)

Sndconfg16.exe (Worm)
This file is a worm! It is the WORM_SHAREBOT.A worm which uses P2P networks to infect users. This worm, when executed will dump a bunch of files in random folders (usually shared folders) with names.
Aliases:
P2P-Worm.Win32.Krepper.c (Kaspersky Lab) is also known as: Worm.P2P.Krepper.c (Kaspersky Lab), W32/Sndc.worm!p2p (McAfee),   W32.IRCBot (Symantec),   Win32.HLLW.Krepper (Doctor Web),   W32/Ircbot-X (Sophos),   Win32/HLLW.Krepper.B (RAV),   WORM_SHAREBOT.A (Trend Micro),   Worm/Krepper.C (H+BEDV),   W32/Pcbot.A@p2p (FRISK),   Win32:Mopy (ALWIL),   Worm/Krepper.C (Grisoft),   Win32.P2P.Poom.A (SOFTWIN),   Worm.P2P.Poom.A (ClamAV),   W32/Sndc.A.worm (Panda),   Win32/Krepper.C (Eset)

There is NO Auto Removal Tool for Sndconfg16.exe (P2P Worm)
Damage Level : High
Distribution Level: High

Manual Removal Instructions
Recommend Removal from Safe Mode:
How to Start in Safe mode:
Restart your Computer, Press F8 repeatedly when your Screen turns on, Select Safe mode, press enter.

The Infected Files Can be Seen in these folders and names
Known Files:

  • %Windir%\system32\sndcfg16.exe
  • %Windir%\system32\p2pnetwork.exe
if you have any of these files in running process from task manger, end the process before removal.
Note: if task manager is disabled, Download the following file,
Click to Download - Enable Registry.reg

Manually Remove From Registry
Click Start; Run,Type regedit,Click OK.
Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. Download and run this UnHookExec.inf, and then continue with the removal.
Navigate to the subkey:
Here, These are windows Startup Folders, Remove the entry of the file you untrust, Delete from Right Side only.

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
In the right pane, delete any value that was detected during the scan.
Delete any of the following registry entries, if present:
-Run- sndcfg16.exe
-RunServices- sndcfg16.exe
- Run - p2pnetwork.exe

Exit the Registry Editor.
Restart your Computer.

Recommended Removal Tools:
Recommended Removal Tools:
Kaspersky Antivirus or Internet Security (Shareware)
Spyware Doctor (Shareware)
AVG Antivirus (Freeware)
Killbox (Freeware)
Written by:
Tags: , , , , , ,

No comments :

Post a Comment

Comment on this Post!!

Subscribe to: Post Comments ( Atom )

More Posts that you may be interested...