How to remove ewqij.bat

File size: 112747 bytes
CRC32: 6BE451EC
MD5: 815584B8AF6854D3A48D76118092BC91
SHA-1: 8A77D50AD305489CE502A4819C2946711FA9EB1B
===================================================

Create file
C:\Documents and Settings\[User]\Local Settings\temp\herss.exe
C:\Documents and Settings\[User]\\Local Settings\temp\cvasds0.dll (0 – 9)
C:\Documents and Settings\[User]\\Local Settings\temp\am1.rar > am1.exe
X:\ ewqij.bat
X:\autorun.inf
X: mranjm-exe
X: mranjm-exe

Registry modifieds

• Keys added

HKLM\SOFTWARE\Classes\CLSID\MADOWN

• Values added

HKLM\SOFTWARE\Classes\CLSID\MADOWN\urlinfo: "dsa2der.i"
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\
cdoosoft = "%Temp%\herss.exe"

• Values modified

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\
Folder\Hidden\SHOWALL\ CheckedValue: 0x00000000
HKCU\ Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\
Hidden: 0x00000002
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\
ShowSuperHidden: 0x00000000
HKCU\\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\
NoDriveTypeAutoRun: 0x00000091