If a process named kazza.exe is running on your computer, you may have been infected with a strain of the Optix Trojan. kazza.exe is considered to be a security risk, not only because antivirus programs flag kazza as a trojan, but also because other sites consider it a Trojan as well. kazza is likely a Trojan and as such, presents a serious vulnerability which should be fixed immediately! Delaying the removal of kazza.exe may cause serious harm to your system and will likely cause a number of problems, loss of data, loss of control or leaking private information. The Process Server database currently registers kazza.exe to Optix Trojan.
Damage Level : High
Distribution Level: Low
Manual Removal Instructions
Recommend Removal from Safe Mode:
How to Start in Safe mode:
Restart your Computer, Press F8 when your Screen turns on, Select Safe mode, press enter.
The Infected Files Can be Seen in these folders and names
Open Task Manager:
- End Process in Processes tab on SVRHOST.EXE
Delete SVRHOST.EXE from %windows System folder
Click Start; Run,Type regedit,then click OK.delete the registry key:
- "HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows\load"
- %system%\svrhost.exe
- system
- msgsvr32
- jijbl
- service
- Sentry
- au.exe
- d3dupdate.exe
- OLE
- gouday.exe
- rate.exe
- Taskmon
- Windows Services Host
- sysmon.exe
- srate.exe
- ssate.exe
Kaspersky Antivirus or Internet Security (Shareware)
Spyware Doctor (Shareware)
AVG Antivirus (Freeware)
No comments :
Post a Comment
Comment on this Post!!