NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Gallory. Description and removal instructions

 
Title: Gallory
Type: Worms
Severity scale:Gallory severity is 55  (55 / 100)
 
Gallory is a worm that spreads through floppy disks, local drives and network shares. Once executed, the parasite installs itself to the system and starts a spreading routine. It searches accessible drives for folders containing the setup.exe file and creates copies of itself there. Then Gallory runs a payload. The worm deletes all system backup files and disables essential Windows tools such as the Registry Editor and the Task Manager. It also alters Internet security settings. Gallory runs on every Windows startup.

FORUM:
Discuss Gallory in
spyware removal forum

Related files: cd_key.exe, mstask32.exe, sysbackup.exe, finderall.bat

Gallory properties:
• Hides from the user
• Stays resident in background

Automatic Gallory removal:

remover for Gallory

Gallory manual removal:

Kill processes:
cd_key.exe, mstask32.exe, sysbackup.exe, finderall.bat
HELP:
how to kill malicious processes

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysbackup
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell=explorer.exe %System%\mstask32.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskmgr=1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Sensor\Redkey
HELP:
how to remove registry entries

Delete files:
cd_key.exe, mstask32.exe, sysbackup.exe, finderall.bat
HELP:
how to remove harmful files

Misc:
Gallory can create more files with various names.

Exact file location:
sysbackup.exe, finderall.bat - C:\Windows or C:\Winnt
cd_key.exe, mstask32.exe - C:\Windows\System, C:\Windows\System32 or C:\Winnt\System32

Other programs to remove Gallory:

• SUPERAntiSpyware - Review - Download
• CounterSpy - Review - Download
• Windows Defender - Review - Download

Information added: 05/07/06
Information updated: 05/07/06

Additional resources related to Gallory:

Attention: If you know or you have a website or page about Gallory removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Gallory parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.