sysmonxp.exe - Dangerous
sysmonxp.exe
Manual removal instructions:
Antivirus Report of sysmonxp.exe:
sysmonxp.exe
I-Worm.NetSky.r
It is a mass-mailing worm that arrives as an attachment.
The email has the following characteristics:
Subject: is different.
Body: spoofed.
Attachment: randomly generated using next phrases - data, mail, message, msg with random extension.
Creates the following files:
SysMonXP.exe
firewalllogger.txt
Adds the value: "SysMonXP"="%windir%\SysMonXP.exe"
In the system registry key: [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
Collects the email addresses from the files with predefined extensions.
Deletes some keys from the system registry.
In according the system date the worm will launch a DoS attack on the following sites:
www.cracks.am
www.cracks.st
www.edonkey2000.com
www.emule-project.net
www.kazaa.com
Use RegRun Startup Optimizer to automatically remove this worm.
| sysmonxp.exe | Malware |
| sysmonxp.exe | Dangerous |
| sysmonxp.exe | High Risk |
It is a mass-mailing worm that arrives as an attachment.
The email has the following characteristics:
Subject: is different.
Body: spoofed.
Attachment: randomly generated using next phrases - data, mail, message, msg with random extension.
Creates the following files:
SysMonXP.exe
firewalllogger.txt
Adds the value: "SysMonXP"="%windir%\SysMonXP.exe"
In the system registry key: [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
Collects the email addresses from the files with predefined extensions.
Deletes some keys from the system registry.
In according the system date the worm will launch a DoS attack on the following sites:
www.cracks.am
www.cracks.st
www.edonkey2000.com
www.emule-project.net
www.kazaa.com
Use RegRun Startup Optimizer to automatically remove this worm.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.