 |
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: syssvc
Filename: syssvc.exe
Command: C:\WINDOWS\syssvc.exe
Description: trojan FakeAlert also known as TrojanDropper.
How to remove: use Kaspersky Virus Removal tool.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: SoftSafeness
Filename: SoftSafeness.exe
Registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | SoftSafeness
Command: C:\Program Files\SoftSafeness Software\SoftSafeness\SoftSafeness.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKCU\..\Run: [SoftSafeness] C:\Program Files\SoftSafeness Software\SoftSafeness\SoftSafeness.exe -min
Description: main component of SoftSafeness rogue antispyware program.
How to remove: use these SoftSafeness removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: SafetyKeeper
Filename: SafetyKeeper.exe
Registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | SafetyKeeper
Command: :\Program Files\SafetyKeeper Software\SafetyKeeper\SafetyKeeper.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKCU\..\Run: [SafetyKeeper] C:\Program Files\SafetyKeeper Software\SafetyKeeper\SafetyKeeper.exe -min
Description: SafetyKeeper.exe is main component of SafetyKeeper rogue antispyware program.
How to remove: use these SafetyKeeper removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: windows Police Pro
Filename: windows Police Pro.exe
Command: %ProgramFiles%\Windows Police Pro\windows Police Pro.exe
Description: windows Police Pro.exe is main file of Windows Police Pro (rogue antispyware program).
How to remove: use these Windows Police Pro removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: SaveKeeper
Filename: SaveKeeper.exe
Registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | SaveKeeper
Command: C:\Program Files\SaveKeeper Software\SaveKeeper\SaveKeeper.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKCU\..\Run: [SaveKeeper] C:\Program Files\SaveKeeper Software\SaveKeeper\SaveKeeper.exe -min
Description: main component of SaveKeeper (rogue antispyware program)
How to remove: use these SaveKeeper removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: q1pdsdjx
Filename: q1pdsdjx.exe
Registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | q1pdsdjx.exe
Command: C:\WINDOWS\system32\q1pdsdjx.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKCU\..\Run: [q1pdsdjx.exe] C:\WINDOWS\system32\q1pdsdjx.exe
Description: component of SaveKeeper that shows fake Windows Security Center.
Notes:
How to remove: use these SaveKeeper removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: personalguard
Filename: personalguard.exe
Registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | personalguard
Command: C:\Program Files\Personal Guard 2009\personalguard.exe
Startup Type:HKLM->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKLM\..\Run: [personalguard] C:\Program Files\Personal Guard 2009\personalguard.exe
Description: added by Personal Guard 2009 rogue antispyware program.
How to remove: use these Personal Guard 2009 removal instructions.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: winupdate
Filename: winupdate.exe
Registry key:
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winupdate.exe
Command: C:\WINDOWS\system32\winupdate.exe
Startup Type: startupreg
Combofix/RSIT Line:
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winupdate.exe]
C:\WINDOWS\system32\winupdate.exe [2009-08-07 46080]
2009-09-04 12:23:26 —-A—- C:\WINDOWS\system32\winupdate.exe
Description: Backdoor.Trojan also known as W32.Spybot.Worm, Backdoor.Win32.Rbot.
How to remove: use Kaspersky virus removal tool.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: avdrive32
Filename: avdrive32.exe
Registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run | Microsoft Driver Setup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Driver Setup
Command: C:\WINDOWS\avdrive32.exe
Startup Type: HKLM->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKLM\..\Policies\Explorer\Run: [Microsoft Driver Setup] C:\WINDOWS\avdrive32.exe
Combofix/RSIT Line:
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
“Microsoft Driver Setup”=C:\WINDOWS\avdrive32.exe [2009-09-04 81408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Driver Setup]
C:\WINDOWS\avdrive32.exe [2009-09-04 81408]
2009-09-03 21:19:12 —-RSH—- C:\WINDOWS\avdrive32.exe
Description: Win32.IRCBot worm also known as Backdoor.Win32.IRCBot.gen, Worm:Win32/Pushbot
How to remove: use Kaspersky virus removal tool.
|
It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program. If that does not help, then ask us for help in the Spyware removal forum. |
Name: sys32_nov
Filename: sys32_nov.exe
Registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | sys32_nov
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | sys32_nov
Command: C:\WINDOWS\system32\sys32_nov.exe
Startup Type:HKLM->Run, HKCU->Run
HijackThis Category: O4
HijackThis Line:
O4 – HKLM\..\Run: [sys32_nov] C:\WINDOWS\system32\sys32_nov.exe
O4 – HKCU\..\Run: [sys32_nov] C:\Documents and Settings\Admin\sys32_nov.exe
Description: trojan that installed with braviax trojan and rogue antispyware software
How to remove: use these braviax trojan removal instructions.