Home Malware Programs Worms Conficker.e


Posted: April 21, 2009

Conficker.e is the latest version of the nefarious Conficker worm. The Conficker.e worm does more than infect new machines; it also "updates" PC's that were infected with previous versions of the worm. Conficker.e is similar to Conficker B++ as it also exploits MS08-067, preys on vulnerable passwords and spreads through removable media such as USB drives. Conficker.e, like its predecessor versions, makes your PC susceptible to DDoS and spam attacks. Conficker.e also opens your computer to hidden remote access. Conficker.e has two more malicious features: it downloads the W32.Waledac Trojan and may also download the rogue anti-spyware program Spyware Protect 2009. The Conficker.e version has increased the number of security web sites it blocks and disables even more security applications. The key to protecting your PC from Conficker.e is to keep your systems and security software fully updated. Conficker.e is set to delete itself on May 3, 2009.

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"[RANDOM CHARACTERS]" = "rundll32.exe "[RANDOM DLL FILE NAME]", [RANDOM PARAMETER STRING]"HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\[RANDOM CHARACTERS]\"ImagePath" = %System%\svchost.exe -k netsvcsHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\[RANDOM CHARACTERS]\Parameters\"ServiceDll" = "[PATH TO SECURITY RISK]"

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Conficker.e may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria .

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.