Home Malware Programs Worms Net-Worm.Conficker!rem

Net-Worm.Conficker!rem

Posted: October 13, 2010

Threat Metric

Threat Level: 5/10
Infected PCs: 4,326
First Seen: November 30, 2010
Last Seen: June 9, 2023
OS(es) Affected: Windows

Net-Worm.Conficker!rem is a variant of a notorious network aware worm which poses a severe threat to PC security. Malicious acts include replication across networks by exploiting weakly restricted shares. Net-Worm.Conficker!rem also contains characteristics of Conficker/Downadup/Kido, which is a worm that spreads by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability. Net-Worm.Conficker!rem has the capability to block security-related software by modifying firewall settings and by disabling security services. Net-Worm.Conficker!rem can possibly obtain an IP address of the compromised computer by connecting to several specific URLs. Net-Worm.Conficker!rem creates a file autorun.inf on any accessible mapped drive so that it executes whenever the drive is accessed. Net-Worm.Conficker!rem should be removed immediately using a reliable malware remover.

Aliases

W32/Conficker.FM!worm.im [Fortinet]Worm/Confick.164228 [AntiVir]Worm:W32/Downadup.BH [F-Secure]Worm.Kido-313 [ClamAV]I-Worm/Generic.CKH [AVG]Win32/Conficker.worm.167324 [AhnLab-V3]Worm/Conficker.L [AntiVir]Win32.HLLW.Shadow.46 [DrWeb]Worm.Kido-99 [ClamAV]I-Worm/Generic.DTH [AVG]W32/Conficker.A!worm.im [Fortinet]Worm/Conficker.AW [AntiVir]Win32.HLLW.Shadow [DrWeb]Worm.Kido-112 [ClamAV]W32/DldrX.BFBY [F-Prot]
More aliases (560)

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



F:\New folder (2)\New folder (3)\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx File name: jwgkvsq.vmx
Size: 165.74 KB (165749 bytes)
MD5: bdc18dfcfa63861aaa9d9fb95919d32a
Detection count: 2,143
Mime Type: unknown/vmx
Path: F:\New folder (2)\New folder (3)\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx
Group: Malware file
Last Updated: May 13, 2021
C:\Windows\System32\iuixul.wgy File name: iuixul.wgy
Size: 167.32 KB (167324 bytes)
MD5: 7bb455ea4a77b24478fba4de145115eb
Detection count: 356
Mime Type: unknown/wgy
Path: C:\Windows\System32\iuixul.wgy
Group: Malware file
Last Updated: May 22, 2022
%WINDIR%\System32\hppxsy.fa File name: hppxsy.fa
Size: 168.03 KB (168032 bytes)
MD5: 574cf0062911c8c4eca2156187b8207d
Detection count: 155
Mime Type: unknown/fa
Path: %WINDIR%\System32\hppxsy.fa
Group: Malware file
Last Updated: June 9, 2023
%WINDIR%\system32\svqjdq.dll File name: svqjdq.dll
Size: 165.76 KB (165769 bytes)
MD5: aeff78bbdf7423835cf521c180871998
Detection count: 64
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: November 10, 2018
C:\usb\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx File name: jwgkvsq.vmx
Size: 166.04 KB (166048 bytes)
MD5: 3284fad8a6238205829d812a26a608ff
Detection count: 35
Mime Type: unknown/vmx
Path: C:\usb\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx
Group: Malware file
Last Updated: January 17, 2023
C:\windows\System32\qtxvngy.d File name: qtxvngy.d
Size: 162.94 KB (162941 bytes)
MD5: 22d8946916e8358cbb46bd53e476b7f2
Detection count: 30
Mime Type: unknown/d
Path: C:\windows\System32\qtxvngy.d
Group: Malware file
Last Updated: October 18, 2021
%WINDIR%\system32\qpdeanj.dll File name: qpdeanj.dll
Size: 162.52 KB (162528 bytes)
MD5: 9c2556528b4bf573e094ee961360c3ec
Detection count: 28
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: October 16, 2020
C:\Users\<username>\Desktop\แบงค์\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx File name: jwgkvsq.vmx
Size: 159.51 KB (159519 bytes)
MD5: f5f1fd0d093d81a4a769c20aca1d6232
Detection count: 26
Mime Type: unknown/vmx
Path: C:\Users\<username>\Desktop\แบงค์\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx
Group: Malware file
Last Updated: February 20, 2022
%WINDIR%\System32\wbeurob.dll File name: wbeurob.dll
Size: 156.1 KB (156104 bytes)
MD5: 4a270b9e3b708a55639a531de71c7af4
Detection count: 14
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\System32
Group: Malware file
Last Updated: April 9, 2020
C:\Windows\System32\zfyspqu.u File name: zfyspqu.u
Size: 155.63 KB (155633 bytes)
MD5: ca6d91bad9d5d5698c92dc64295a15a6
Detection count: 14
Mime Type: unknown/u
Path: C:\Windows\System32\zfyspqu.u
Group: Malware file
Last Updated: March 31, 2023
%WINDIR%\system32\kdkzxqd.dll File name: kdkzxqd.dll
Size: 163.14 KB (163146 bytes)
MD5: 481f8317e1d7248b8babf450907ae551
Detection count: 14
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 2, 2019
%WINDIR%\system32\zbmeytx.dll File name: zbmeytx.dll
Size: 157.86 KB (157868 bytes)
MD5: c7277972654775258bf3d4d6936eb1b0
Detection count: 12
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: March 5, 2020
%WINDIR%\system32\jokypj.dll File name: jokypj.dll
Size: 153.3 KB (153300 bytes)
MD5: 35053600123cad2a5f4425ffac1e204c
Detection count: 12
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: November 10, 2018
%WINDIR%\system32\eaaqsr.dll File name: eaaqsr.dll
Size: 99.28 KB (99280 bytes)
MD5: 67490a26aae430ebef84c641fb5278e0
Detection count: 9
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: November 10, 2018
%WINDIR%\system32\lnltrin.dll File name: lnltrin.dll
Size: 162.97 KB (162970 bytes)
MD5: d4b1d2a45d2c555d3d77e472d47352d5
Detection count: 7
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: July 24, 2019
C:\Windows\System32\jmuvnz.dll File name: jmuvnz.dll
Size: 162.42 KB (162423 bytes)
MD5: 6ee741c4e0d36d0dc9162a6e71943379
Detection count: 7
File type: Dynamic link library
Mime Type: unknown/dll
Path: C:\Windows\System32\jmuvnz.dll
Group: Malware file
Last Updated: June 7, 2023
%WINDIR%\system32\lhmlskc.dll File name: lhmlskc.dll
Size: 154.4 KB (154406 bytes)
MD5: bcfd711b9a2324ca2259d4875330bdc9
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: January 22, 2020
%WINDIR%\system32\yjsmkz.dll File name: yjsmkz.dll
Size: 162.48 KB (162487 bytes)
MD5: 46ccb32ce4db8c0383ac03d6fe4cdef9
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 1, 2019
%WINDIR%\system32\asopaj.dll File name: asopaj.dll
Size: 166.95 KB (166958 bytes)
MD5: 29ed3c53c5285f16f17912bd57c2d4f2
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 12, 2019
%WINDIR%\system32\ohctj.dll File name: ohctj.dll
Size: 158.68 KB (158687 bytes)
MD5: 16ebc1c90231a9e78ed1ede0a58e58cb
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: November 10, 2018

More files
Loading...