yzh.exe - Dangerous
yzh.exe
Manual removal instructions:
Antivirus Report of yzh.exe:
yzh.exe
W32.Sophily is a virus that infects files with .exe extensions.
It attempts to steal passwords from the infected computer and sends this information to a remote attacker.
Scans the hard drive for .exe files and infects any executable files that it finds.
The string "Syphilis No 1" is appended to the end of infected files.
Manual removal:
Navigate to the keys:
HKEY_LOCAL_MNACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
and delete the value: "YZH.SYS" = "%Windir%\YZH.exe"
yzh.exe | Malware |
yzh.exe | Dangerous |
yzh.exe | High Risk |
It attempts to steal passwords from the infected computer and sends this information to a remote attacker.
Scans the hard drive for .exe files and infects any executable files that it finds.
The string "Syphilis No 1" is appended to the end of infected files.
Manual removal:
Navigate to the keys:
HKEY_LOCAL_MNACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
and delete the value: "YZH.SYS" = "%Windir%\YZH.exe"
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.