 Remove Rahiwi.b. Description and removal instructions
Related files: shell.exe, winme.exe, empty.pif Rahiwi.b properties: • Hides from the user • Stays resident in background Automatic Rahiwi.b removal:remover for Rahiwi.b
Rahiwi.b manual removal:Kill processes:shell.exe, winme.exe Delete registry values: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\winme HKEY_LOCAL_MACHINE\SOFTWARE\Microsfot\Windows NT\CurrentVersion\Winlogon\Userinit=%System%\userinit.exe,%Windir%\winme.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsfot\Windows NT\CurrentVersion\Winlogon\Shell=explorer.exe %Windir%\winme.exe HKEY_CLASSES_ROOT\batfile\Shell\Open\Command\(Default)=%Windir%\Web\shell.exe "%1" %* HKEY_CLASSES_ROOT\piffile\Shell\Open\Command\(Default)=%Windir%\Web\shell.exe "%1" %* HKEY_CLASSES_ROOT\exefile\Shell\Open\Command\(Default)=%Windir%\Web\shell.exe "%1" %* HKEY_CLASSES_ROOT\lnkfile\Shell\Open\Command\(Default)=%Windir%\Web\shell.exe "%1" %* HKEY_CLASSES_ROOT\comfile\Shell\Open\Command\(Default)=%Windir%\Web\shell.exe "%1" %* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug\Debugger=%Windir%\Web\shell.exe HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell=%Windir%\winme.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableCMD=1 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr=1 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools=1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableCMD=1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools=1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr=1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\SystemRestore\DisableConfig=1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\SystemRestore\DisableSR=1 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer\DisableMSI=1 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer\LimitSystemRestoreCHeckpointing=1 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions=1 Delete files: shell.exe, winme.exe, empty.pif Misc: Exact file location: shell.exe - C:\WINDOWS\Web or C:\WINNT\Web empty.pif - C:\Documents and Settings\All Users\Start Menu\Programs\Startup winme.exe - C:\WINDOWS or C:\WINNT; removable media, shared and local drives Other programs to remove Rahiwi.b:• SUPERAntiSpyware - Review - Download• CounterSpy - Review - Download • Windows Defender - Review - Download Information added: 24/05/07 Information updated: 24/05/07 Additional resources related to Rahiwi.b:Attention: If you know or you have a website or page about Rahiwi.b removal, feel free to add a link to this list: add url
more resources Post Comment:Attention: Use this form only if you have additional information about Rahiwi.b parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
|
Latest spyware news:
 Memory vulnerability found on Windows Vista Two reporters banned from Black Hats conference for hacking Microblogging website exploited by Brazilian hackers Phishers biting their own baits Cyber criminals start working faster 75 percent of online banking websites are insecure Malware rates keep rising up Switzerland is the most spammed country in a world What could happen if you’d replied to every single spam message? Is your web browser safe?Subscribe to news 
Similar parasites:
|
FORUM:
HELP:
