security software detects and removes this threat.
This family of worms can disable several important Windows services and security products. They can also download files and run malicious code on your PC if you have file sharing enabled.
Conficker worms infect PCs across a network by exploiting a vulnerability in a Windows system file. This vulnerability is explained and resolved in Security Bulletin MS08-067.
Some worms can also spread via removable drives and by exploiting weak passwords.
Find out ways that malware can get on your PC.
Microsoft strongly recommends that you:
The following free Microsoft software detects and removes this threat:
Even if we've already detected and removed this particular threat, running a full scan might find other malware that is hiding on your PC.
Get more help
You can also see our advanced troubleshooting page for more help.
If you’re using Windows XP, see our Windows XP end of support page.
Additional recovery steps
You might not be able to connect to websites related to security applications and services that can help you remove this worm. For example, downloading antivirus updates might fail. In this case you will need to use an uninfected PC to download any appropriate updates or tools and then transfer these to the infected PC.
Microsoft Help and Support have provided a detailed guide to removing a Conficker infection from an infected PC, either manually or by using the Malicious Software Removal Tool (MSRT).
More information about deploying MSRT in an enterprise environment can be found here: