We use cookies to ensure that we give you the best experience on our website. By continuing to browse, we are assuming that you have no objection in accepting cookies. You can change your cookie settings at any time.

BullGuard Support

Vi er her 24/7 for at hjælpe dig.


Send en e-mail til vores support team og får svar i løbet af 24 timer.


 

 

How to remove Exploit.ADODB.Stream.AE

 



THREAT NAME

Exploit.ADODB.Stream.AE

CLEAN INSTRUCTIONS

1. Restart the computer in Safe Mode.

 

2. Delete the Temporary Internet Files in Internet Explorer.

 

Internet Explorer 7
- Go to Tools > Internet Options.

 

- In the Browsing history section, click on the Delete button.

Internet Explorer 6
- Go to Tools > Internet Options.

 

- In the Temporary Internet Files section, click the Delete Files button.

3. After that run a scan with BullGuard.


SYMPTOMS
1. A new svchost process appears in the process list.



DESCRIPTION

1. The malware creates a new XMLHTTP object.

 

2. The object is used to download a file from http://vui{blocked}choi24.com.

 

3. The downloaded file will be saved as svchost.exe by using an Adodb.Stream object.

 

4. After that the new svchost.exe file will be executed.


Author:
The BullGuard Team