How to remove gbm6n.exe

 gbm6n.exe
CRC32: B15670F6
MD5: 1F093A31615901C14916605CD08CDC55
SHA-1: 13A7F7AD52BD982D732A19C27081890BDF5D9350
===================================================
One or more files with the name GBM6N.EXE creates, deletes, copies or moves the following files and folders:
  • Deletes c:\windows\system32\drivers\cdaudio.sys
  • Copies file$�_CHAR(0x12)_\dllcache\cdaudio.sys to c:\windows\system32\drivers\cdaudio.sys
  • Deletes c:\windows\system32\olhrwef.exe
  • Deletes c:\windows\system32\nmdfgds0.dll
  • Creates c:\windows\system32\nmdfgds0.dll
  • Deletes c:\gbm6n.ex
  • Copies filec:\windows\system32\olhrwef.exe to c:\gbm6n.ex
  • Deletes c:\autorun.in
  • Creates c:\autorun.in
  • Deletes d:\gbm6n.ex
  • Copies filec:\windows\system32\olhrwef.exe to d:\gbm6n.ex
  • Deletes d:\autorun.in
  • Creates d:\autorun.in
  • Deletes c:\docume~1\user\locals~1\temp\am1.rar
  • Opens/modifes c:\autoexec.bat
  • Creates c:\docume~1\user\locals~1\temp\am1.rar
  • Deletes c:\docume~1\user\locals~1\temp\am.exe
  • Creates c:\docume~1\user\locals~1\temp\am.exe
  • Creates c:\docume~1\user\locals~1\temp\248b_appcompat.txt
  • Creates c:\docume~1\user\locals~1\temp\2332B.dmp

Related Posts Plugin for WordPress, Blogger...

Labels:

Disclaimer
All the contents posted here are found from various Search Engines blogs and forums. The Webmaster of this blog takes no responsibility what so ever for any of the content (image/audio/video). If you find some content inappropriate or if there is any violation of copyright, kindly contact the host of the content (image/audio/video) to remove it from their server.
 
✖ SedutMediaLink ✖ - Templates Novo Blogger 2008
This template is brought to you by : allblogtools.com Blogger Templates