|
|
Shortcut Antivirus protects against Microsoft LNK and PIF vulnerability, notify a user about found threats and give possibility to immediately remove threats.
StuxnetRemover - free of charge Stuxnet/Tmphider rootkit removal tool.
New! RegRun Warrior Removing rootkits is best done from the "clean" Windows!
Malware Removal Blog - everyday malware tests.
|
 %Windir%\acdsee demo.exe - Dangerous
Spreads through e-mail, mIRC, file-sharing networks, and network shares. Adds the values: "windows" = "%Windir%\system\system copy.exe" "system xp" = "%Windir%\acdsee demo.exe" to Windows startip registry keys. Creates the file D:\autorun.inf containing the following lines: [autorun] open=FUN.ZIP.EXE Creates the file E:\autorun.inf containing the following lines: [autorun] open=Messenger 9.00.ZIP.EXE Changes the files: C:\program files\mIRC\script.ini C:\program files\mIRC32\script.ini to allow spreading via IRC. Copies itself as the following: * %Windir%\acdsee demo.exe * %Windir%\system\system copy.exe * %Windir%\system32\egywormo[gen2].exe * %Windir%\All Users\Desktop\magic\sex photoes of monika.zip.exe * %Windir%\All Users\Start Menu\Programs\StartUp\salga.b.exe * %Windir%\Start Menu\mob xp10 net speeder.zip.exe * %Windir%\start menu\mob xp10 net speeder.zip.exe * %Windir%\start menu\programs\DR.BLACK PERSON.zip.exe * %Windir%\start menu\programs\DR.BLACK PERSON chat prog.zip.exe * C:\BEST 10 SEX MOVIES IN 2004.zip * C:\hard core hook from web\setup.zip.exe * C:\magic_cam\magic_cam.ZIP.EXE * C:\Program Files\Accessories\attachment.zip...............exe * C:\Program Files\Accessories\Nicole kidman.zip...............exe * C:\Program Files\mirc\Britny spears marriage with Bnladen son.zip.exe * C:\Program Files\mirc32\Britny spears marriage with Bnladen son.zip.exe * C:\Documents and Settings\All Users\DESKTOP\holywood stuff film.zip.exe * C:\Documents and Settings\All Users\Start Menu\white fang sex.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\sisqoo^^007 progs.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\sisqoo^^007 progs.exe * C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\a7meedye graphices maker.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\Startup\salga.b.exe * D:\FUN.ZIP.EXE * D:\girlfriends emails.zip.exe * D:\hook all sex movies from webs\setup.zip.exe * E:\blood of fetch sex.zip.exe * E:\Messenger 9.00.ZIP.EXE * E:\real sex telephones\call from me.zip.exe Adds the value: "StartKazaa -SilentRun" = "C:\Program Files\Kazaa\My Shared Folder\Shared" to the registry key: HKEY_CURRENT_USER\Software\Kazaa\Transfer Overwrites the Hosts file with the following text, which blocks access to certain Web sites. Removal: %Windir%\acdsee demo.exe is removed by RegRun.
Read more... Removal instructions...
Comments:BobThe UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy! Sonya UnHackMe has demonstrated its protective power and gives me great peace of mind. Thank you for this excellent program and keep up the superb work! Chris I would like to say that RegRun has helped me on more than 1 occasion when it comes to spyware/adware by letting me know automatically that a piece of it got added to Windows startup. There is so much spyware/addware out there today it's hard to imagine being without RegRun. I like many other features too including the daily registry backups and file protection.
Constantly updated. Last update: August 29 2010
 We recommend! Click Here to Update All your PC's Outdated drivers
Would you like to add your opinion?
|
|
