There is a special utility for curing an active Worm.Win32.Fipp.a infection.

Infection symptoms:

Significantly increased RDP traffic (brute-force attack).
Antivirus software performance degradation on many hosts in local network.
Infected hosts attempt to access URLs like *.ppift.*

How to disinfect an infected system:

Download the FippKiller.exe file.
Launch the FippKiller.exe file on the infected (or potentially infected) host.
It is recommended not to reboot hosts after using the utility until the network has been successfully disinfected.

Command line options to use with the utility:

-p - scan a particular host;
-n – scan network volumes;
-r - scan flash drives, and removable USB / FireWire hard disks;
-y – close the window once the utility completes;
-s – scan in silent mode (without displaying the console window);
-l - log file name;
-v – create a detailed log file (should be used with -l);
-m – system infection protection monitoring mode;
-q – scan the system, activate monitoring mode once the scan completes.