Worm Windows Server Service RPC

Beginning in 2009, have a little problem, the server (Domain) place of work, namely "Service Computer Browser" always continue down and booting .... What actually happened? VIRUS? Worm?? Antivirus for the user, the virus / worm is known by the name W32.downadup [Symantec], Generic.RKM [AVG], Win32/Conficker.A [Computer Associates], W32/Downadup.A [F-Secure], Conficker.A [ Panda Software] ... What is a virus / worm is? This is WORM including 62,976 who have size bytes. Worm reproduce themselves through this file% System% \ [RANDOM FILE NAME]. Etc. Then "he" remove all user created system restore points, and make service dg name: netsvcs, ImagePath:% SystemRoot% \ \ system32 \ \ svchost.exe-k netsvcs. Writing in the register entry: HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ netsvcs \ Parameters \ "ServiceDll" = "[PathToWorm]" How dangerous virus / worm is? If this worm attacked computers are not stand alone separah effect if the computer network (Domain Controller). Why? This worm, making UPnP router connection and http server on the computer server by using ramdom port and will do a remote computer and exploit. Worm exploit this weakness windows-called "Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability" How to cope? Update antivirus ... this is not solve the problem .... This is especially if in doing in Server Domain Controller. Why? This worm is terlanjur connect with other computers, and even if we can detect antivirus or even me, remove it, then there will be a termination of the connection and the worm will cause the Microsoft Windows Server Service RPC will do a shutdown. It will happen repeatedly .... The most appropriate solutions to overcome this Worm is to improve the "Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability" and there is the Microsoft issued a patch in its Windows, which is KB958644 Please do a patch on the windows, in addition to antivirus updates that you have with the latest antivirus updates to "tame" this worm ... ....