|
|
Shortcut Antivirus protects against Microsoft LNK and PIF vulnerability, notify a user about found threats and give possibility to immediately remove threats.
StuxnetRemover - free of charge Stuxnet/Tmphider rootkit removal tool.
New! RegRun Warrior Removing rootkits is best done from the "clean" Windows!
Malware Removal Blog - everyday malware tests.
|
 dcemgr.exe - Dangerous
When Backdoor.Tumag is executed, it performs the following actions: Copies itself as: %System%\dcemgr.exe %System%\dcemgr2.exe Creates the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\DCE to keep track of the infection's progress. Connects to dns2010.vicp.net or 218.242.161.151 on port 9002 to notify the author of the backdoor. Opens a backdoor on TCP port 9010 and listens for commands from the attacker. The backdoor can perform the following default actions: - Update itself - Take a screenshot - Provide system information - Create files - Execute programs Manual removal: Navigate to the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run and delete the value: "DCE Manager"="%System%\dcemgr.exe" Removal: dcemgr.exe is removed by RegRun.
Read more... Removal instructions...
Comments:BobThe UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy! Sonya UnHackMe has demonstrated its protective power and gives me great peace of mind. Thank you for this excellent program and keep up the superb work! Chris I would like to say that RegRun has helped me on more than 1 occasion when it comes to spyware/adware by letting me know automatically that a piece of it got added to Windows startup. There is so much spyware/addware out there today it's hard to imagine being without RegRun. I like many other features too including the daily registry backups and file protection.
Constantly updated. Last update: September 5 2010
 We recommend! Click Here to Update All your PC's Outdated drivers
Would you like to add your opinion?
|
|
