We use cookies to ensure that we give you the best experience on our website. By continuing to browse, we are assuming that you have no objection in accepting cookies. You can change your cookie settings at any time.

BullGuard Support

We’re here 24/7 to help you.


Email our support team and we'll get back to you within 24 hours.


 

 

How to remove Exploit.ADODB.Stream.AE

 



THREAT NAME

Exploit.ADODB.Stream.AE

CLEAN INSTRUCTIONS

1. Restart the computer in Safe Mode.

 

2. Delete the Temporary Internet Files in Internet Explorer.

 

Internet Explorer 7
- Go to Tools > Internet Options.

 

- In the Browsing history section, click on the Delete button.

Internet Explorer 6
- Go to Tools > Internet Options.

 

- In the Temporary Internet Files section, click the Delete Files button.

3. After that run a scan with BullGuard.


SYMPTOMS
1. A new svchost process appears in the process list.



DESCRIPTION

1. The malware creates a new XMLHTTP object.

 

2. The object is used to download a file from http://vui{blocked}choi24.com.

 

3. The downloaded file will be saved as svchost.exe by using an Adodb.Stream object.

 

4. After that the new svchost.exe file will be executed.


Author:
The BullGuard Team