Friday, November 14, 2008

SpywareKnight (SpySoldier) Ransomware

How To Remove SpywareKnight (SpySoldier)?
You must download trial version of "Exterminate-It" antivirus software,to check your computer instantly.
SpywareKnight (SpySoldier) is dangerous virus:
A cryptovirus, cryptotrojan or cryptoworm is a type of
malware that encrypts the data belonging to an individual on a computer,
demanding a ransom for its restoration.

The term ransomware is commonly used to describe software that encrypts the data
belonging to an individual on a computer, demanding a ransom for its restoration.
Although the field known as cryptovirology predates the term "ransomware".

SpywareKnight (SpySoldier) Symptoms:

Files:
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\SpywareKnight.lnk
[%SYSTEM%]\asgp32.dll
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\SpywareKnight.lnk
[%SYSTEM%]\asgp32.dll

Folders:
[%COMMON_PROGRAMS%]\SpywareKnight
[%LOCAL_APPDATA%]\SpySoldier
[%LOCAL_APPDATA%]\SpywareKnight
[%PROGRAM_FILES%]\SpywareKnight

Registry Keys:
HKEY_CLASSES_ROOT\CLSID\{6944D481-DD3D-4252-8992-EBAC37788EB3}
HKEY_CLASSES_ROOT\CLSID\{82B07A2B-F0AF-45FC-BE44-18D83B01EAD9}
HKEY_CLASSES_ROOT\CLSID\{FA5B9933-1AE8-4A8D-9822-B20A6CA2B5EC}
HKEY_CURRENT_USER\Software\SpySoldier
HKEY_CURRENT_USER\Software\SpywareKnight
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6944D481-DD3D-4252-8992-EBAC37788EB3}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82B07A2B-F0AF-45FC-BE44-18D83B01EAD9}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FA5B9933-1AE8-4A8D-9822-B20A6CA2B5EC}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpywareKnight_is1

You must clean you computer ASAP !!!
Download Free Trial Version of antivirus software here, to check your computer instantly.

Also Be Aware of the Following Threats:
Removing Hamesup3 Backdoor
Removing MsnSpy Spyware
Znhatnnh Trojan Removal instruction

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)