Windows Protection

Conficker.C Description:

Conficker.C (also known as Conficker C or W32/Conficker.C) is a computer infection representing the infamous family of Conficker (aka Downadup) worms. According to some experts’ estimates, the active launch of Conficker.C invasive campaign is planned around April.1 but the preliminary attacks are being observed during the last few weeks. Conficker.C is not expressly aggressive and usually remains hidden until you detect its presence in your system using reliable PC security utilities. However, Conficker.C is extremely dangerous in terms of its latent impact on the user’s privacy and computer security. Conficker.C is known to disable the vital protective functions of the compromised machine by disabling the antivirus software updates and preventing the victims from visiting security web resources offering anti-malware solutions. Conficker.C is capable of tracking the victims’ computer activities and even records keystrokes subsequently sending these harvested confidential data to scammers who sell them to interested third parties having malicious purposes. Just imagine how bad the consequences may turn out if your credit card details or some passwords fall into the hands of criminals. It’s been studied that Conficker.C is pretty much impossible to remove manually; using the Task Manager or Add/Remove Programs options are no use. The only effective method of Conficker.C detection is a timely system scan performed by a trusted antivirus tool, and the removal is feasible with automatic removal solution. Unless you want to face severe security problems and general system collapse, get rid of Conficker.C ASAP once spotted on your PC.

Find out if your PC is infected with Conficker.C worm:

Download Conficker.C Worm Free Scanner with Remover

How to remove Conficker.C manually:

To perform manual removal of Conficker.C worm, you should do the following:

Delete Conficker.C corrupt files:

• %Windows%\System32\[Random].dll
• %Program Files%\Internet Explorer\[Random].dll
• %Program Files%\Movie Maker\[Random].dll

Remove Conficker.C registry entries:

• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Advanced\Folder\Hidden\SHO WALLCheckedValue = dword:00000000
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost, netsvcs = %Previous data% and %Random%
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\
  DisplayName = %ServiceName%
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\[random]\Parameters
  ServiceDll = %MalwarePath%
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{random}\Parameters\”ServiceDll” = “Path to worm”
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{random}\”ImagePath” = %SystemRoot%\system32\svchost.exe -k netsvcs
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
  “TcpNumConnections” = dword:0×00FFFFFE

Please, note that manual removal of Conficker.C worm is a procedure of high complexity and should be performed with extreme caution. Lack of the required skills and even the slightest deviation from the instructions may lead to irreparable system damage. To ensure trouble-free deletion, it is recommended to use the automatic Conficker.C removal tool below:

Download Conficker.C Worm Removal Tool