What is IRC-Worm.Tiny.e as well as dismissal instructions
Worm Tiny spreads in IRC networks regulating customer software. After infection it changes default settings of an IRC customer and, depending upon a situation, does reduction or some-more poignant repairs to a little of your files.
IRC-Worm.Tiny.e primer removal:
Kill processes:
irc-worm.tiny.exe
Delete files:
irc-worm.tiny.exe
What is Toolame as well as dismissal instructions
This is an Internet worm, that spreads in IRC networks. Once executed, it starts the swelling slight as well as might have the payload. It might taint personal documents, hurtful complement files or undo multiform programs. The worm might be used by enemy to carry out your complement remotely.
Toolame primer removal:
Delete files:
toolame.ini
What is Falsu as well as dismissal instructions
Falsu is a worm which spreads by a Kazaa record pity network as well as IRC discuss channels regulating a mIRC client. Once executed, a bug silently installs itself to a system, modifies Kazaa settings, creates putrescent files with suggestive names in a Kazaa common printed matter as well as attempts to send itself to IRC users. However, a latter duty doesn’t work due bugs in Falsu code. The worm is written usually to widespread as well as thus does not lift any mortal payload. Falsu automatically runs upon each Windows startup.
Falsu primer removal:
Kill processes:
commando.exe, my_sister_nude.exe, winexec.exe, winsys.exe, winupdate.exe
Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winexec
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\DisableSharing=0
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir0=012345:%Windir%\Shared
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir1=012345:%Windir%\Shared
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir2=012345:%Windir%\Shared
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir3=012345:%Windir%\Shared
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir4=012345:%Windir%\Shared
HKEY_CURRENT_USER\Software\Kazaa\LocalContent\dir5=012345:C:\
HKEY_CURRENT_USER\Software\KAZAA\ResultsFilter\firewall_filter=0
HKEY_CURRENT_USER\Software\KAZAA\ResultsFilter\virus_filter=0
Delete files:
commando.exe, my_sister_nude.exe, winexec.exe, winsys.exe, winupdate.exe, command.pif, command.scr, srvwin.scr
Delete directories:
C:\Windows\Shared
C:\Winnt\Shared
Misc:
Exact record location:
commando.exe, command.scr – C:
winexec.exe, command.pif, srvwin.scr – C:\Windows or C:\Winnt
winupdate.exe, winsys.exe – C:\Windows\System, C:\Windows\System32 or C:\Winnt\System32
my_sister_nude.exe – C:\Program Files\mIRC\Download
What is IRC-Worm.ClickIt.d as well as dismissal instructions
IRC worm ClickIt infects a little IRC clients as well as according to the version, can do some-more or reduction poignant repairs to putrescent computer.
IRC-Worm.ClickIt.d primer removal:
Kill processes:
irc-worm.clickit.d.exe
Delete files:
irc-worm.clickit.d.exe
What is IRC-Worm.Lazirc as well as dismissal instructions
Worm Lazirc spreads in IRC networks around customer software. After your mechanism gets putrescent by this worm, it changes default settings of an IRC customer as well as can do reduction or some-more poignant repairs to a little of your files.
IRC-Worm.Lazirc primer removal:
Kill processes:
rapture.exe
Delete files:
rapture.exe
What is IRC-Worm.Azaco.c as well as dismissal instructions
IRC worm Azaco spreads by IRC networks around mIRC customer program. It infects executables as well as modifies mIRC so, which alternative users in IRC could embrace Azaco. Some versions try to undo complement files.
IRC-Worm.Azaco.c primer removal:
Kill processes:
azaco.exe
Delete files:
azaco.exe
What is IRC-Worm.NewMirc
Worm NewMirc spreads in IRC networks around customer software. If your mechanism gets putrescent by this worm, it might shift default settings of an IRC customer as well as do reduction or some-more poignant repairs to a little of your files.
What is IRC-Worm.Spyboy as well as dismissal instructions
Worm Spyboy spreads in IRC networks regulating customer software. After infection it changes default settings of an IRC customer and, depending upon a situation, does reduction or some-more poignant repairs to a little of your files.
IRC-Worm.Spyboy primer removal:
Kill processes:
irc-worm.spyboy.exe
Delete files:
irc-worm.spyboy.exe
What is IRC-Worm.Sonnet as well as dismissal instructions
The Sonnet worm spreads in IRC network. It is created in Visual Basic as well as infects mIRC program. Then worm uses it to send the copies to alternative IRC users. Some antivirus program doesn’t find it since of inner encryption used in this worm.
IRC-Worm.Sonnet primer removal:
Kill processes:
sonnet.vbe
Delete files:
sonnet.vbe
What is IRC-Worm.Bildan.b as well as dismissal instructions
IRC worm Bildan spreads in IRC networks. It can taint executables as well as modifies mIRC customer program.
IRC-Worm.Bildan.b primer removal:
Kill processes:
irc-worm.bildan.b.exe
Delete files:
irc-worm.bildan.b.exe