 Remove Excalibur. Description and removal instructions
From the publisher: "Excalibur is a new backdoor virus program with several advantages over the other backdoor programs available. 1: It is not yet detected by virusscanners 2: It automatically hides itself very well from any type of detection 3: It has built-in DoS capibilities, such as Ping Bomb [think of pingbomb from 10 computers!] or Nuking. 4: It uses a little-known way of running itself on bootup, making it difficult to detect 5: Much more! --- 3.1 --- *Installer* ----------- After running install.exe, there should be a zip file in the directory with the client.1. Download any program [or use one that you have handy]. Make sure that it has an install program built in. Then, rename the install program [most likely install.exe or setup.exe] to "install.___" [no quotes]. Those _ marks are NOT spaces, they are underscores. 2. Copy all of the files from install.zip to the same place as this other program. There should now be a new 'install.exe' [the one from install.zip]. 3. Recompress and send to your victom! When the run 'install.exe' it will set up the virus and run the original install program. Your victom won't notice a thing! --- 3.2 --- *OtherFucn* ----------- This is a list of the 'other' functions [buttons], i.e. not the DoS functions, and what they do. Obviously, you need to be connected to a virused computer first. Alt-Ctrl-Del off = Disables Alt-Ctrl-Del, click again to enable Run Program = Runs program on remote computer Crash Explorer [win98 only] = When enabled, will crash Explorer [NOT IE] on any computer running Win98. Very nasty! Comptuer Takedown = Completly destroies a computer. BE CAREFUL WITH THIS FUNCTION. Set WallPaper = Set the computer's wallpaper Annoying Mouse... = Whenever the user moves the mouse, a messagebox will be displayed. Switch Mouse Buttons = Self-explanitory. Just plain annoying! --- 3.3 --- *DoS Funct* ----------- This is a list of the DoS functions [buttons], and what they do. Obviously, you need to be connected to a virused computer first. PingBomb = Has the virused computer pingbomb an IP for aprox. 5 min. Very effective if multiple clients are using it, and none of it gets traced back to you!" Excalibur properties: • Allows remote user connection • Hides from the user • Stays resident in background Automatic Excalibur removal:remover for Excalibur
Excalibur manual removal:Kill processes:install.exe Unregister DLLs: [system root]\\system\\sys23.dll Delete files: data.5, data.6, data.7, data.8, data.9, install.exe, readme.1st, readme.txt, [system root]\\system\\sys23.dll Other programs to remove Excalibur:• SUPERAntiSpyware - Review - Download• CounterSpy - Review - Download • Windows Defender - Review - Download Information added: 23/03/05 Information updated: 23/03/05 Additional resources related to Excalibur:Attention: If you know or you have a website or page about Excalibur removal, feel free to add a link to this list: add url
more resources Post Comment:Attention: Use this form only if you have additional information about Excalibur parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
|
Latest spyware news:
 What could happen if you’d replied to every single spam message? Is your web browser safe? Supervisor of the newest Nigerian scam gets punished MySpace spammer sentenced to pay $6 million Security experts are worried about home computers France and Japan combines efforts to fight cyber crimes Why can’t spam say goodbye? The most secure and the most insecure domains of virtual world Beware of new scam targeting online banking accounts Why hackers are faster than you areSubscribe to news 
Similar parasites:
|
FORUM:
HELP:
