|
|
UnHackMe Warrior Removing rootkits is best done from the "clean" Windows!
Blog: New viruses/malware/rootkits. Everyday!
Blog: How to remove malware/Trojans/rootkits using UnHackMe or manually. We know how to remove malware.
Shortcut Antivirus protects against Microsoft LNK and PIF vulnerability, notify a user about found threats and give possibility to immediately remove threats.
StuxnetRemover - free of charge Stuxnet/Tmphider rootkit removal tool.
|
 easyav.exe - Dangerous
Fix it immediately
It also contains backdoor functionality and may perform Denial of Service (DoS) attack against specified Web sites. If the system date is between April 14, 2004 to April 23, 2004, the worm will try to perform a DoS attack against the following Web sites: www.cracks.am; www.emule.de; www.kazaa.com; www.freemule.net; www.keygen.us The email has a variable subject line and attachment name. The attachment will have a .pif file extension. Copies itself as %Windir%\EasyAV.exe. Creates the file, %Windir%\Uinmzertinmds.opm, which contains a MIME-encoded copy of the worm's executable. Adds the value: "EasyAV"="%Windir%\EasyAV.exe" to the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Listens on port 6789. If the attacker sends an executable file to an infected computer, the worm will save it as Scans and retrieves email addresses from the files with some extensions. If the system date is not April 2004, or if it is and the day is less than 14 or greater than 16, the worm will attempt to use its own SMTP engine to send itself to all the email addresses that it finds. Manual removal: Navigate to the key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run and delete the value: "EasyAV"="%windir%\EasyAV.exe"
Virus Problem? Google Redirects? Ads? Slow?
Constantly updated. Last update: February 5 2012
Fix Windows PC's Fast! Automated Software Repairs damaged & slow windows systems in 1 click.
|
|
