|
|
UnHackMe Warrior Removing rootkits is best done from the "clean" Windows!
Blog: New viruses/malware/rootkits. Everyday!
Blog: How to remove malware/Trojans/rootkits using UnHackMe or manually. We know how to remove malware.
Shortcut Antivirus protects against Microsoft LNK and PIF vulnerability, notify a user about found threats and give possibility to immediately remove threats.
StuxnetRemover - free of charge Stuxnet/Tmphider rootkit removal tool.
|
 %windir%\acdsee demo.exe - Dangerous
Fix it immediately
Spreads through e-mail, mIRC, file-sharing networks, and network shares. Adds the values: "windows" = "%Windir%\system\system copy.exe" "system xp" = "%Windir%\acdsee demo.exe" to Windows startip registry keys. Creates the file D:\autorun.inf containing the following lines: [autorun] open=FUN.ZIP.EXE Creates the file E:\autorun.inf containing the following lines: [autorun] open=Messenger 9.00.ZIP.EXE Changes the files: C:\program files\mIRC\script.ini C:\program files\mIRC32\script.ini to allow spreading via IRC. Copies itself as the following: * %Windir%\acdsee demo.exe * %Windir%\system\system copy.exe * %Windir%\system32\egywormo[gen2].exe * %Windir%\All Users\Desktop\magic\sex photoes of monika.zip.exe * %Windir%\All Users\Start Menu\Programs\StartUp\salga.b.exe * %Windir%\Start Menu\mob xp10 net speeder.zip.exe * %Windir%\start menu\mob xp10 net speeder.zip.exe * %Windir%\start menu\programs\DR.BLACK PERSON.zip.exe * %Windir%\start menu\programs\DR.BLACK PERSON chat prog.zip.exe * C:\BEST 10 SEX MOVIES IN 2004.zip * C:\hard core hook from web\setup.zip.exe * C:\magic_cam\magic_cam.ZIP.EXE * C:\Program Files\Accessories\attachment.zip...............exe * C:\Program Files\Accessories\Nicole kidman.zip...............exe * C:\Program Files\mirc\Britny spears marriage with Bnladen son.zip.exe * C:\Program Files\mirc32\Britny spears marriage with Bnladen son.zip.exe * C:\Documents and Settings\All Users\DESKTOP\holywood stuff film.zip.exe * C:\Documents and Settings\All Users\Start Menu\white fang sex.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\sisqoo^^007 progs.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\sisqoo^^007 progs.exe * C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\a7meedye graphices maker.zip.exe * C:\Documents and Settings\All Users\Start Menu\Programs\Startup\salga.b.exe * D:\FUN.ZIP.EXE * D:\girlfriends emails.zip.exe * D:\hook all sex movies from webs\setup.zip.exe * E:\blood of fetch sex.zip.exe * E:\Messenger 9.00.ZIP.EXE * E:\real sex telephones\call from me.zip.exe Adds the value: "StartKazaa -SilentRun" = "C:\Program Files\Kazaa\My Shared Folder\Shared" to the registry key: HKEY_CURRENT_USER\Software\Kazaa\Transfer Overwrites the Hosts file with the following text, which blocks access to certain Web sites.
Remove ACDSEE DEMO.EXE.HTM now!
Virus Problem? Google Redirects? Ads? Slow?
Constantly updated. Last update: February 5 2012
Fix Windows PC's Fast! Automated Software Repairs damaged & slow windows systems in 1 click.
|
|
