NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Lahey. Description and removal instructions

 
Title: Lahey
Type: Viruses
Severity scale:Lahey severity is 60  (60 / 100)
 
Lahey is a destructive macro virus that infects Microsoft Word documents. Once executed, the parasite installs itself to the system, lowers Microsoft Word security settings and modifies some of its components. Then it runs a destructive payload. Lahey attempts to delete text documents, Microsoft Excel workbooks, images, audio and video files, archives, executables and configuration files located in the main Windows folder. It also destroys files of the same types in the root of the main hard disk. Furthermore, the virus modifies Windows Explorer and Internet Explorer settings, disables the Registry Editor and the Task Manager, changes the system time and computer name. Lahey displays a fake error message on every Windows startup.

FORUM:
Discuss Lahey in
spyware removal forum

Lahey properties:
• Changes browser settings
• Hides from the user

Automatic Lahey removal:

remover for Lahey

Lahey manual removal:

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sb
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr=1
HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security\Level=1
HKEY_CURRENT_USER\Software\Microsoft\Office\10.0\Word\Security\Level=1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\NoDesktop=5
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCloseKey=5
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind=5
HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoFileOpen=1
HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoPrinting=1
HELP:
how to remove registry entries

Delete files:
rolin.bat, bt2.doc, ec9.doc, erc4.doc, fz5.doc, musical.doc, nd1.doc
HELP:
how to remove harmful files

Delete directories:
C:\Arquiv~1
Misc:
Exact file location:
rolin.bat - C:\Arquiv~1
musical.doc - C:\Windows\System, C:\Windows\System32 or C:\Winnt\System32

Other virus files reside in several folders with the following names: Bvhl, Dpc, Smlp, Tmrh, Vhp.

Other programs to remove Lahey:

• SUPERAntiSpyware - Review - Download
• CounterSpy - Review - Download
• Windows Defender - Review - Download

Information added: 15/05/06
Information updated: 15/05/06

Additional resources related to Lahey:

Attention: If you know or you have a website or page about Lahey removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Lahey parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.