NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Conficker.C. Description and removal instructions

 
Title: Conficker.C
 Also known as: Conficker C, Worm:Win32/Conficker.D, W32/Confick-G
Type: Worms
Severity scale:Conficker.C severity is 67  (67 / 100)
 
Conficker.C is a new version of notorious Conficker or Conficker B++ worm. Security experts have given Conficker.C a high severity scale, that means that this worm can cause serious damage and should be avoided at all costs. The main goal of Conficker.C is to infect compromised computers with additional malware or similar parasites and spread itself to other PCs. The worm downloads corresponding trojan virus with timer set to launch the attack on user's PC by contemporaneous downloading 50 thousands malicious domains on April’s All Fools' Day.

Conficker.C may also disable security software and processes. It restricts the access to security related websites and blocks online anti-spyware scanners. Conficker.C disables Windows Automatic Updates and blocks the access to Windows Security Center. ConfickerC can also disable Safe Mode and delete all system restore points. As we have already mentioned, Conficker.C is a dangerous infection, that's why it must be removed as soon as possible. Otherwise, this parasite may produce even more problems or eventually make system crash.

FORUM:
Discuss Conficker.C in
spyware removal forum

Related files: [Random].tmp

Conficker.C properties:
• Changes browser settings
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic Conficker.C removal:

remover for Conficker.C

Conficker.C manual removal:

Kill processes:
svchost.exe explorer.exe services.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{random}\Parameters\”ServiceDll” = “Path to worm”
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{random}\”ImagePath” = %SystemRoot%\system32\svchost.exe -k netsvcs
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
“TcpNumConnections” = dword:0×00FFFFFE
HELP:
how to remove registry entries

Unregister DLLs:
comaddin32.dll [Random].dll
HELP:
how to unregister malicious DLLs

Delete files:
[Random].tmp
HELP:
how to remove harmful files

Other programs to remove Conficker.C:

• Malwarebytes Anti Malware - Review - Download
• Malwarebytes Anti Malware - Review - Download
• Windows Defender - Review - Download

Information added: 27/03/09
Information updated: 31/03/09

Additional resources related to Conficker.C:

Attention: If you know or you have a website or page about Conficker.C removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Conficker.C parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.