Home & Home OfficeBusinessPartnersClubAbout Security Stronghold

GrayBird Backdoor Removal: Remove GrayBird Backdoor Forever

Let our support team solve your problem with GrayBird Backdoor and repair GrayBird Backdoor right now!

Leave the detailed description of your GrayBird Backdoor problem in the form below. Our support team will contact you in several minutes and give a step-by-step instruction on how to fix GrayBird Backdoor problem. Please be specific. Do your best describing the problem. This will help us recommend right and complete GrayBird Backdoor problem removal solution.

Click to ask professional of GrayBird Backdoor solution

Describe your problem here and we'll contact you in several minutes:

We'll reply you in 10 minutes or less
* Name:
* E-mail:
* Problem summary:
* Detailed description:
Attach suspicious file:
Here you can attach file you suspect to be virus or source of problem. If you want to attach several files, put them into one archive and attach it instead.

We'll contact you back in 10 minutes or less after you click on this button.

Individual solution guaranteed!

 

It is important:

  1. We hate spam as much as you do. We will not share your email with any third party or publish it anywhere. Your email is used only to contact you and give you GrayBird Backdoor removal solution.
  2. All fields of this form are obligatory.

Guaranteed Problem Solution

If you want to make problem with GrayBird Backdoor and yang.exe solved with the automated fix created by our professionals right now, click here (download of fix will start immediately):

Download solution for GrayBird Backdoor and yang.exe now!

Software Industry Professionals Member
Threat's description and solution are developed by Security Stronghold security team.

Here you can also learn:

* What is GrayBird Backdoor? Technical details of GrayBird Backdoor problem and GrayBird Backdoor removal tool.

* Methods for manual GrayBird Backdoor removal.

* Instant download of a program that will solve your problem automatically.

* Instant professional support in solving GrayBird Backdoor error from our Security Support Team.


Threat indicator: HIGH

Threat's profile

Name of the threat:

Command or file name:

Threat type:

Affected OS:

GrayBird Backdoor

yang.exe

Spyware/trojan

Win32 (Windows 9x, Windows XP, Windows Vista, Windows Seven)


Most GrayBird Backdoor is installed without user attaintment. Even if GrayBird Backdoor removal tools treats registry pointers ending in GrayBird Backdoor removal GrayBird Backdoor implements anyway. GrayBird Backdoor developers tell that consumers give admittance to activate GrayBird Backdoor. There are legislation under which it's unwarrantable to install any programs that alters site-browsing settings, tracks keystrokes, that's why GrayBird Backdoor is unlawful and the treat of GrayBird Backdoor removal tools with the purpose to remove GrayBird Backdoor or fulfill attempts of GrayBird Backdoor removal needful for the sake of law. GrayBird Backdoor is unlawful, so GrayBird Backdoor removal is a lawful act. Memorize about kinds of GrayBird Backdoor - one impend your private data, another can aggrieve your children!


GrayBird Backdoor intrusion method

GrayBird Backdoor copies its file(s) to your hard disk. Its typical file name is yang.exe. Then it creates new startup key with name GrayBird Backdoor and value yang.exe. You can also find it in your processes list with name yang.exe or GrayBird Backdoor.

If you have further questions about GrayBird Backdoor, please fill in the form above and we'll contact you shortly.

Download program to remove GrayBird Backdoor (GrayBird Backdoor Removal Tool)

Recommended Solution

If you are not sure what to delete, use our award winning program - GrayBird Backdoor Removal Tool.

GrayBird Backdoor Removal Tool will find and fully remove GrayBird Backdoor and all problems associated with GrayBird Backdoor virus.

Fast, easy, and handy, GrayBird Backdoor Removal Tool protects your computer against GrayBird Backdoor that does harm to your computer and breaks your privacy. GrayBird Backdoor Removal Tool scans your hard disks and registry and destroys any manifestation of GrayBird Backdoor. Standard anti-virus software can do nothing against malicious programs like GrayBird Backdoor. Remove GrayBird Backdoor straight away!

Download GrayBird Backdoor Removal Tool now

Please take 1 second to show that you like our solution - click on this Facebook button:

How to fix GrayBird Backdoor?

This problem can be solved manually by deleting all registry keys and files connected with GrayBird Backdoor, removing it from starup list and unregistering all corresponding DLLs. Additionally missing DLL's should be restored from distribution in case they are corrupted by GrayBird Backdoor.

To get rid of GrayBird Backdoor, you should:

1. Kill the following processes and delete the appropriate files:

no information

Warning: you should delete only those files which checksums are listed as malicious. There may be valid files with the same names in your system. We recommend you to use GrayBird Backdoor Removal Tool for safe problem solution.

2. Delete the following malicious folders:

• %desktop%\cike\
• %desktop%\swattool_1.38\

3. Delete the following malicious registry entries and\or values:

  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: Type
  • Key: System\CurrentControlSet\Services\GrayPigeon\Security
    Value: Security
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeon\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: Service
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: Description
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: Type
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: Start
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\GrayPigeonServer\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\GrayPigeonServer
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSERVER\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonServer\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonServer\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonServer\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_GRAYPIGEONSERVER\0000\Control
    Value: ActiveService
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: Start
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\GrayPigeon
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEON\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeon\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeon\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_GRAYPIGEON\0000\Control
    Value: ActiveService
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: Type
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: Start
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\System Event Notification¡¡\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\System Event Notification¡¡\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\System Event Notification¡¡\Enum
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1
    Value: NextInstance
  • Key: System\CurrentControlSet\Services\System Event Notification¡¡\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\GrayPigeon\Enum
  • Key: System\CurrentControlSet\Services\GrayPigeon\Enum
    Value: Count
  • Key: System\CurrentControlSet\Services\GrayPigeon\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: Type
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: Start
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\GrayPigeonSefgrve
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_GRAYPIGEONSEFGRVE\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonSefgrve\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonSefgrve\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\GrayPigeonSefgrve\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_GRAYPIGEONSEFGRVE\0000\Control
    Value: ActiveService
  • Key: System\CurrentControlSet\Services\system32
    Value: Type
  • Key: System\CurrentControlSet\Services\system32
    Value: Start
  • Key: System\CurrentControlSet\Services\system32
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\system32
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\system32
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\system32\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\system32
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\system32
    Value: Description
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: Type
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: Start
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\RpcSer\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\RpcSer
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RPCSER\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\RpcSer\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\RpcSer\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\RpcSer\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_RPCSER\0000\Control
    Value: ActiveService
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_SYSTEM_EVENT_NOTIFICATION*00A1*00A1\0000\Control
    Value: ActiveService
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: Type
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: Start
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\WINEOWS SEVER
    Value: Description
  • Key: SYSTEM\ControlSet001\Enum\Root\LEGACY_WINDOWS*00B7*00FE*00CE*00F1*00B6*00CB\0000\Control
    Value: ActiveService
  • Key: SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINDOWS*00B7*00FE*00CE*00F1*00B6*00CB\0000\Control
    Value: ActiveService
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: DisplayName
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: ImagePath
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: ObjectName
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: Type
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: Start
  • Key: SYSTEM\CurrentControlSet\Services\windows·þÎñ¶Ë
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\eonServer
    Value: Type
  • Key: System\CurrentControlSet\Services\eonServer
    Value: Start
  • Key: System\CurrentControlSet\Services\eonServer
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\eonServer
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\eonServer
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\eonServer\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\eonServer
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\eonServer
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_EONSERVER\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\eonServer\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\eonServer\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\eonServer\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: Type
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: Start
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: ErrorControl
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: ImagePath
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: DisplayName
  • Key: System\CurrentControlSet\Services\svchuvsts\Security
    Value: Security
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: ObjectName
  • Key: System\CurrentControlSet\Services\svchuvsts
    Value: Description
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS
    Value: NextInstance
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000\Control
    Value: *NewlyCreated*
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: Service
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: Legacy
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: ConfigFlags
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: Class
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: ClassGUID
  • Key: SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_SVCHUVSTS\0000
    Value: DeviceDesc
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\svchuvsts\Enum
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\svchuvsts\Enum
    Value: Count
  • Key: SYSTEM\CURRENTCONTROLSET\SERVICES\svchuvsts\Enum
    Value: NextInstance
  • Key: System\CurrentControlSet\Enum\Root\LEGACY_SVCHUVSTS\0000\Control
    Value: ActiveService
  • Key: COMFILE\SHELL\OPEN\COMMAND
    Data: %windows%\netsvr32.exe %1 %*

Warning: if value is listed for some registry entries, you should only clear these values and leave keys with such values untouched. We recommend you to use GrayBird Backdoor Removal Tool for safe problem solution.


Related problem: toseeka redirect

Next threat: Graybird.K »

Learn more about GrayBird Backdoor and yang.exe »

« Back to catalog
Home | Partners | Shop | Support | Contact Us | Privacy Policy | Sitemap

Copyright © 2003-2012 Security Stronghold. All Rights Reserved.