rundll32.vbs - Dangerous
rundll32.vbs
Manual removal instructions:
Antivirus Report of rundll32.vbs:
rundll32.vbs
I-Worm.FireBurn
This is an Internet worm that spreads as a VBS file attached to e-mail messages.
To send infected messages, the worm uses MS Outlook. The worm also is able to send its copies to IRC channels by infecting an mIRC client.
To spread to IRC channels, the worm creates a SCRIPT.INI mIRC system file in the mIRC directory (if it is installed).
This file contains a set of instructions that sends the worm file to everybody who enters an infected channel.
The payload routine is activated on June 20th. It disables the keyboard and mouse by modifying the following two system-registry keys:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Shut_Up = "rundll32 mouse,disable"
Shut_Up2 = "rundll32 keyboard,disable"
Use RegRun Startup Opimizer for removal.
rundll32.vbs | Malware |
rundll32.vbs | Dangerous |
rundll32.vbs | High Risk |
This is an Internet worm that spreads as a VBS file attached to e-mail messages.
To send infected messages, the worm uses MS Outlook. The worm also is able to send its copies to IRC channels by infecting an mIRC client.
To spread to IRC channels, the worm creates a SCRIPT.INI mIRC system file in the mIRC directory (if it is installed).
This file contains a set of instructions that sends the worm file to everybody who enters an infected channel.
The payload routine is activated on June 20th. It disables the keyboard and mouse by modifying the following two system-registry keys:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Shut_Up = "rundll32 mouse,disable"
Shut_Up2 = "rundll32 keyboard,disable"
Use RegRun Startup Opimizer for removal.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.