Categories: Ransomware
A cryptovirus, cryptotrojan or cryptoworm is a type of
malware that encrypts the data belonging to an individual on a computer,
demanding a ransom for its restoration.
The term ransomware is commonly used to describe such software,
although the field known as cryptovirology predates the term "ransomware".
This type of ransom attack can be accomplished by (for example) attaching
a specially crafted file/program to an e-mail message and sending this to the victim.
If the victim opens/executes the attachment, the program encrypts
a number of files on the victim's computer. A ransom note is then left behind for the victim.
The victim will be unable to open the encrypted files without the correct decryption key.
Once the ransom demanded in the ransom note is paid, the cracker may (or may not)
send the decryption key, enabling decryption of the "kidnapped" files.
[Kaspersky]AdWare.Win32.BHO.cm;
[Other]Win32/Loofeer.AVisible Symptoms:
Files in system folders:
[%SYSTEM%]\iea.dll
[%SYSTEM%]\iea.dll How to detect Ieasis:
Files:
[%SYSTEM%]\iea.dll
[%SYSTEM%]\iea.dll
Registry Keys:
HKEY_CLASSES_ROOT\appid\{bd4bafb3-3e38-4668-8ec5-ae0118560ac5}
HKEY_CLASSES_ROOT\clsid\{b08d32de-64b2-4137-8345-87293e70d40b}
HKEY_CLASSES_ROOT\ieassistant.assistant
HKEY_CLASSES_ROOT\interface\{b04ff886-12bf-4359-a280-311a94a8663d}
HKEY_CLASSES_ROOT\interface\{e78cbe69-59ed-4f51-93bb-7a040b5df2dc}
HKEY_CURRENT_USER\software\iea
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{b08d32de-64b2-4137-8345-87293e70d40b}
Registry Values:
HKEY_CLASSES_ROOT\appid\ieassistant.dll
Removing Ieasis:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
Remove All.in.One Spyware
Remove BT Trojan
Remove Badmin Trojan
Remove AntiSpyCheck Ransomware
Removing CWS.LoadBAT Hijacker
No comments:
Post a Comment