NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Feebs. Description and removal instructions

 
Title: Feebs
Type: Worms
Severity scale:Feebs severity is 63  (63 / 100)
 
Feebs is a worm that spreads through file sharing networks using popular peer-to-peer clients. Once executed, the parasite installs itself to the system and runs a spreading routine. It creates infected files with meaningful names in all shared folders it finds in the compromised system. Then it runs a payload. Feebs terminates running antiviruses, firewalls, anti-trojan tools and other security-related programs and prevents them from loading on next system startup. The worm also disables the Windows Firewall and deletes few system files. In some cases it may collect certain passwords, account details and e-mail addresses. Feebs automatically runs on every Windows startup.

FORUM:
Discuss Feebs in
spyware removal forum

Feebs properties:
• Hides from the user
• Stays resident in background

Automatic Feebs removal:

remover for Feebs

Feebs manual removal:

Kill processes:
command.exe, ms[X].exe, ms[X]32.exe, web.exe, websetup.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\ms[X]
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\EnableFirewall=0
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\EnableFirewall=0
HKEY_CURRENT_USER\Software\Policies\Microsoft\WindowsFirewall\DomainProfile\EnableFirewall=0
HKEY_CURRENT_USER\Software\Policies\Microsoft\WindowsFirewall\StandardProfile\EnableFirewall=0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\web=[site address]
HELP:
how to remove registry entries

Delete files:
command.exe, ms[X].exe, ms[X]32.exe, web.exe, websetup.exe
HELP:
how to remove harmful files

Misc:
[X] is a set of random characters.
[site address] is an address of a web site on the popcapfree.t35.com domain.

Exact file location:
command.exe, web.exe - C:
ms[X].exe, ms[X]32.exe - C:\Windows\System, C:\Windows\System32 or C:\Winnt\System32
websetup.exe - inside Zip archives that the worm distributes through file sharing networks

Other programs to remove Feebs:

• SUPERAntiSpyware - Review - Download
• CounterSpy - Review - Download
• Windows Defender - Review - Download

Information added: 24/12/05
Information updated: 24/12/05

Additional resources related to Feebs:

Attention: If you know or you have a website or page about Feebs removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Feebs parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.