BackDoor-EVC!8F7F8F47​013F Network Trojan and how to remove

Posted on September 30th, 2011 by admin

This backdoor Trojan  infects  files, registry, and network communication.

The following registry elements have been created:

  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{BF50AC63-19DA-487E-AD4A-0B452D823B59}\
  • HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{BF50AC63-19DA-487E-AD4A-0B452D823B59}\
  • HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{BF50AC63-19DA-487E-AD4A-0B452D823B59}\INPROCSERVER32\
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{BF50AC63-19DA-487E-AD4A-0B452D823B59}\
This virus can be removed with microsoft security essentials. If your PC gets locked you are getting a black screen, you might want to run scan in safe mode.
Other names to reffer to.
 
Posted in BackDoor-EVC!8F7F8F47​013F Network Trojan and how to remove | Tags: , , , , ,

Comments

No comments so far.

(comments are closed)

 

Blogroll

Tags

anti malware antivirus AVG backdoor fake security software generic infected Internet Explorer IRC virus malwarebytes melwarebytes messaging Microsoft Security Essentials Popup Blocker quicktime removal scareware spyware threat Trojan trojan horse Virus virus removal Vulnerability w32 W32/Autorun windows worm

Resources