winspol.exe - Dangerous
%sysdir%\winspol.exe
Manual removal instructions:
Antivirus Report of %sysdir%\winspol.exe:
%sysdir%\winspol.exe
Winspol.exe is a mass-mailing worm W32.Kedebe.D@mm.
Winspol.exe tries to terminate antiviral programs installed on a user computer.
Winspol.exe monitors user Internet activity and private information.
It sends stolen data to a hacker site.
Related files:
%System%\nbtstat.exe
%System%\usrinit.exe
%System%\user.exe
%System%\winhlp32.exe
%System%\telnet.exe
%System%\locator.exe
%System%\recover.exe
%System%\logman.exe
%System%\dlhost.exe
%System%\logonui.exe
%System%\winspol.exe
%System%\services.exe
%System%\svchost.exe
%System%\lsas.exe
%System%\rundl32.exe
%System%\regedt32.exe
%System%\winlogon.exe
%System%\wuauclt.exe
Adds the value:
"Run" = "[PATH TO %System%\[FILE NAME]]"
to the Windows startup registry keys.
Removal:
Kill winspol.exe process and remove winspol.exe from Windows startup.
| %sysdir%\winspol.exe | Malware |
| %sysdir%\winspol.exe | Dangerous |
| %sysdir%\winspol.exe | High Risk |
Winspol.exe tries to terminate antiviral programs installed on a user computer.
Winspol.exe monitors user Internet activity and private information.
It sends stolen data to a hacker site.
Related files:
%System%\nbtstat.exe
%System%\usrinit.exe
%System%\user.exe
%System%\winhlp32.exe
%System%\telnet.exe
%System%\locator.exe
%System%\recover.exe
%System%\logman.exe
%System%\dlhost.exe
%System%\logonui.exe
%System%\winspol.exe
%System%\services.exe
%System%\svchost.exe
%System%\lsas.exe
%System%\rundl32.exe
%System%\regedt32.exe
%System%\winlogon.exe
%System%\wuauclt.exe
Adds the value:
"Run" = "[PATH TO %System%\[FILE NAME]]"
to the Windows startup registry keys.
Removal:
Kill winspol.exe process and remove winspol.exe from Windows startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.