Remove Lsas.Trojan-Spy.DOS.Keycopy
|
|
Title: Lsas.Trojan-Spy.DOS.Keycopy |
|
|
|
Type: Malware |
Severity scale: (53 / 100)
|
 |
"WINDOWS SECURITY ALERT!
Lsas.Trojan-Spy.DOS.Keycopy is suspected to have infected your PC.
This type of virus intercepts entered data and transmits it to a remote server.
Windows Internet Explorer 8
"C:\WINDOWS\ie8\spuninst
Data interception was detected while visiting a website: http://"
This fake alert states that Lsas.Trojan-Spy.DOS.Keycopy is able to collect your personal information and transmit it to a remote server. However, this is a scam. Your computer is not infected with Lsas.Trojan-Spy.DOS.Keycopy, but with Malware Destructor 2009. You must remove this parasite from your computer as soon as possible. Please use the removal guide below to remove Malware Destructor 2009 from your computer for free.
FORUM:Related files: cookies.sqlite, Instructions.ini, Malware Destructor 2009.lnk, del.bat, antigen.exe, ANTIGEN.sys, cb.drv, energy.exe, energy.tmp, FS.sys, FS.tmp, FW.dll, hymt.exe, kernel32.drv, PE.dll, PE.tmp, tempdoc.exe, tjd.tmp, 384.mof, MD345d.exe, mozcrt19.dll, sqlite3.dll, vd952342.bd, mdestr.cfg, IMT7.xml, IMT8.xml, IMT9.xml
Lsas.Trojan-Spy.DOS.Keycopy properties:
• Changes browser settings
• Shows commercial adverts
• Connects itself to the internet
• Stays resident in background
Automatic Lsas.Trojan-Spy.DOS.Keycopy removal:
remover for Lsas.Trojan-Spy.DOS.Keycopy
Lsas.Trojan-Spy.DOS.Keycopy manual removal:
Kill processes:energy.exe hymt.exe tempdoc.exe MD345d.exe
HELP:Delete registry values:
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\MD345d.DocHostUIHandler
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
Numerous entries underHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\
Unregister DLLs:
FW.dll PE.dll mozcrt19.dll sqlite3.dll
Delete files:
cookies.sqlite Instructions.ini Malware Destructor 2009.lnk del.bat ANTIGEN.exe ANTIGEN.sys cb.drv energy.exe energy.tmp FS.sys FS.tmp FW.dll hymt.exe kernel32.drv PE.dll PE.tmp tempdoc.exe tjd.tmp 384.mof MD345d.exe mozcrt19.dll sqlite3.dll vd952342.bd mdestr.cfg IMT7.xml IMT8.xml IMT9.xml
Delete directories:
%UserProfile%\Application Data\Malware Destructor 2009
c:\Documents and Settings\All Users\Application Data\345d567
c:\Documents and Settings\All Users\Application Data\345d567\MDestrSys
c:\Documents and Settings\All Users\Application Data\MDestrSys
Other programs to remove Lsas.Trojan-Spy.DOS.Keycopy:
• Malwarebytes Anti Malware - Review - Download• Malwarebytes Anti Malware - Review - Download
• Windows Defender - Review - Download
Information added: 19/06/09
Information updated: 19/06/09
Additional resources related to Lsas.Trojan-Spy.DOS.Keycopy:
Attention: If you know or you have a website or page about Lsas.Trojan-Spy.DOS.Keycopyremoval, feel free to add a link to this list: add url
|
|
more resources
Post Comment:
Attention: Use this form only if you have additional information about Lsas.Trojan-Spy.DOS.Keycopy parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Latest spyware news:
Rogue security applications impersonate leading anti-virus manufacturers Attack of Waledac Worm is schedulled on July 4 Another Parasite Attack Spreads Via Twitter Free security product vets Twitter links Mac trojan targets game sites to infect users Security Threat at Fanny Mae Some web sites to avoid for today British Government will track all e-mail's YOUR SISTER NAKED LOLZ com “intervalhehehe” popupSubscribe to news
Similar parasites:
