How to remove Conficker.EThursday, April 9th, 2009 at 5:17 am
Home » Backdoor, Worm » Conficker.E
Conficker-E is the latest version of the notorious Conficker worm. It seems that creators of this malware are not ready to give up yet.
Not only Conficker.E infects new machines, but it also “updates” computers infected with previous versions of the worm. The malware spreads via MS08-067 exploit; keep your Windows OS updated in order to prevent the infection.
Conficker.E functions in pretty much the same way as its forerunners. The worm joins compromised machines into a botnet. The computer then might be used for DDoS attacks and spam attacks. Conficker a.k.a. Downadup also establishes hidden remote access to the PC.
Conficker-E comes with two additional features. First of all, it downloads W32.Waledac trojan as if Conficker wasn’t problem enough (click here to remove Waledac trojan). It may also download rogue security tool Spyware Protect 2009. Click here to remove Spyware Protect 2009.
Get rid of Conficker.E
How to manually remove Conficker.E
To remove Conficker.E spyware you must block Conficker.E sites, stop and remove processes, unregister DLL files, search and delete all other Conficker.E files and registry utility. Follow the Conficker.E detection and removal instructions below.
The most typical software removal method is to remove Conficker.E by using "Add or Remove Programs" service. However there may be hidden Conficker.E files, running processes and registries in your computer, so Conficker.E may recreate all other files after reboot.
Conficker.E manual removal instructions
Locate and delete Conficker.E registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"[RANDOM CHARACTERS]" = "rundll32.exe "[RANDOM DLL FILE NAME]", [RANDOM PARAMETER STRING]"
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\[RANDOM CHARACTERS]\"ImagePath" = %System%\svchost.exe -k netsvcs
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\[RANDOM CHARACTERS]\Parameters\"ServiceDll" = "[PATH TO SECURITY RISK]" Read more how to delete Conficker.E registry entries
Download RegistryBooster 2010 to scan errors caused by Conficker.E
We strongly recommend you to use spyware remover to track Conficker.E and automaticaly remove Conficker.E processes, registries and files as well as other spyware threats.
- Spyware Protect 2009 removal instructions, remove Spyware Protect 2009 (SpywareProtect 2009)
- Remove Waledac, Trojan.Waledac removal
- Remove INF/Conficker worm, INF Conficker removal