defragfatz.exe - Dangerous
%sysdir%\defragfatz.exe
Manual removal instructions:
Antivirus Report of %sysdir%\defragfatz.exe:
%sysdir%\defragfatz.exe
Worm W32.Linkbot.
It uses LSASS Buffer Overrun Vulnerability.
http://www.microsoft.com/technet/securit...
Adds value
"Windows DLL Loader" = "%system%\defragfatz.exe"
to the Windows startup registry key.
Opens an Ident Daemon listening on TCP port 113.
Allows the remote control of the infected computer.
%sysdir%\defragfatz.exe | Malware |
%sysdir%\defragfatz.exe | Dangerous |
%sysdir%\defragfatz.exe | High Risk |
It uses LSASS Buffer Overrun Vulnerability.
http://www.microsoft.com/technet/securit...
Adds value
"Windows DLL Loader" = "%system%\defragfatz.exe"
to the Windows startup registry key.
Opens an Ident Daemon listening on TCP port 113.
Allows the remote control of the infected computer.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.