Elimination method of Worm/Brontok.a

**Chandranath** · 23-12-2009

My system is infected with Worm/Brontok.a and I came to know about this when I found this name in many of the folders in my system. I have Avira antivirus installed in my system, but it did not alert me about this infection in my system. I cannot see this Worm/Brontok.a when I am scanning the entire system. So, I need to know the elimination method of Worm/Brontok.a. I am using Windows Vista operating system and my browser is IE8.

**Big Fish** · 23-12-2009

The elimination method of Worm/Brontok.a is to simply remove the registry entries that the worm has corrupted. Do not not backup the system when before removing the corrupt registry entries. Start Windows in safe mode and then, remove the following infected entries:

%WINDIR%\eksplorasi.pif
%UserProfile%\Local Settings\Application Data\smss.exe
%UserProfile%\Local Settings\Application Data\services.exe
%UserProfile%\Local Settings\Application Data\lsass.exe
%UserProfile%\Local Settings\Application Data\csrss.exe
%UserProfile%\Local Settings\Application Data\inetinfo.exe
%UserProfile%\Local Settings\Application Data\winlogon.exe
%UserProfile%\Start Menu\Programs\Startup\Empty.pif
%UserProfile%\Templates\WowTumpeh.com
%WINDIR%\%CURRENT_USER%'s Setting.scr
%WINDIR%\ShellNew\bronstab.exe

**Spyrus** · 23-12-2009

Worm/Brontok.a is a worm and if it has entered your system, then the best symptom that you will come to know is that your system will be very slow. This is because it utilizes all the system resources because of which the system crawls. The worm has the feature to spread in the system wherever it gets a free space. So, I guess that your system will be flooded by this worm infection. So, the only elimination method of Worm/Brontok.a is to format the computer and then, install a fresh copy of Windows into the system.

**Milton.J** · 23-12-2009

The infection that has come into your computer is Worm/Brontok.a disguises as a genuine Windows folder with the name Kangen.exe. An unsuspecting user generally double clicks on this folder and this becomes a cause for the spread of this infection in the system. So, the manual elimination of Worm/Brontok.a is basically impossible. I use AVG antivirus and it has been useful to me to remove all types of infections including worms too. I can assure you this because there was a similar type of worm infection and I had eliminated it with the use of AVG antivirus.

**Steve123** · 24-12-2009

I advice you to use BOOT SCAN as the elimination method of Worm/Brontok.a. For this, you will have to install Avast antivirus that provides boot scanning method directly after installation. Boot scan is assured to remove the infections because the virus will not have been executed at this time and thus, they will not be active. This is so because the scanning takes place before Windows startup. This will hopefully eradicate your problems.

**Shen** · 24-12-2009

Mere scanning the system is not able to detect the infections as they will be active and will be spreading and replicating in the system. So, you will have to scan the entire system in safe mode with a well updated antivirus. The updation is necessary, otherwise it is not able to find out the new infections in the system. This is the only elimination method of Worm/Brontok.a. Make sure that you scan all the hard drives as well as flash drives in your system.