Need help on removing Conficker B (jwgkvsq.vmx)

[protoss]

First of all, forgive my bad english 

My system is Windows 7 Ultimate 32-bit,
I know this worm infected my portable HDD after my antivirus (Smadav 9.1) detected it, but unfortunately Smadav can't remove it permanently (it keeps spawning after every successful clean attempt).
I have used Force Delete from http://www.moatsoft.com/features/ForceDelete.asp to no avail. It keeps returning after confirmed deletion.
BUT
I know it has not infected my PC yet coz I can still show hidden files etc, in short no other general symptoms exist. Besides, I have disabled autorun and I always refrain from double-clicking folder; I accessed my portable HDD directories from its root (arrow icon beside every folder in navigation pane). All I can do now as a precaution is lock my HDDs with Smadav (basically, what it does is create "autorun.inf" folder and "Δ Smad-Lock (Brankas Smadav") Δ folder)

What I need help with: to remove RECYCLER folder from my portable, and maybe any registry associated with it (I can fairly use Regedit). as an additional information, is this


Hijack tools log result. So far I can confirm no infectious hazard coz I have accessed my portable HDD multiple times without any change in my "show hidden files" capability

[Allan]

I deleted your hijack thislog.

Please follow the instructions in the following link and post your logs:
http://www.computerhope.com/forum/index.php/topic,46313.0.htmls

[SuperDave]

Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*************************************************************************
Please download,install and run a scan on your external harddrive with MSE. Please choose the correct one for your computer.

Microsoft Security Essentials for Windows Vista\Windows 7 - 64 bit Download
Microsoft Security Essentials for Windows XP

[protoss]

which one I should do first: the instructions in the link Allan provided or SuperDave's?

[SuperDave]

which one I should do first: the instructions in the link Allan provided or SuperDave's?

Please run the MSE scan on your external and we'll see what happens.

[protoss]

It successfully detects the worm as Win32/Conficker.C and able to remove jwgkvsq.vmx (I checked the properties of RECYCLER, it contains 0 files). But I can't delete the RECYCLER folder. An error message appears (attached in this post)

*One more thing: I'm totally pissed off with MSE. I can manage if it only updates itself, the problem is it also modify various things like windows auto update, certain services and scheduled tasks that I deliberately disable for good reason, for example: Automatic update things sucks my internet quota without confirmation, Scheduled defrag caused unexpected heavy load on my HDD, and unnecessary misc. tasks/services that triggers every now and then, very annoying. I'd like to uninstall MSE after I've been given all clear

[recovering disk space, attachment deleted by admin]

[SuperDave]

One more thing: I'm totally pissed off with MSE. I can manage if it only updates itself, the problem is it also modify various things like windows auto update, certain services and scheduled tasks that I deliberately disable for good reason, for example: Automatic update things sucks my internet quota without confirmation, Scheduled defrag caused unexpected heavy load on my HDD, and unnecessary misc. tasks/services that triggers every now and then, very annoying. I'd like to uninstall MSE after I've been given all clear

Sure, that was only a trial to see if we could clean the ext. HDD.
BTW, you can't delete the Recycler. It's a part of Windows.
What's the deal with your ext. drive now?

[protoss]

Nothing else I guess. I tried to scan my external using newest SMADAV on my friend's laptop, the result is no virus found. If that's all I need to do, thanks Dave! 

[SuperDave]

I tried to scan my external using newest SMADAV on my friend's laptop, the result is no virus found. If that's all I need to do, thanks Dave!

Sounds good. If your computer is working well I guess we are finished.