Exterminate It! Antimalware

malpedia

Known threats:699,742 Last Update:October 27, 11:19

Testimonials

I have had major computer issues in the last week. I was infected with the Darksma and Vundo downloader trojans. After researching the net for possible solutions, i found they are extremely difficult to remove. I tried a variety of spyware removal tools to no avail. To do it manually is near on impossible.
The symptoms are, computer runs slow, constant ad pop ups, hijacking of emails, theft of information and locking of a variety of functions.
I then found buried deep in a google search a link to Exterminate It. After reading it, I downloaded to do a free scan and a lot of stuff no other spyware had found showed up. So i went searching the locations and sure enough the files where there on my system. I tried removing them with no luck. So i spent the $25 usa to activate.
http://www.exterminate-it.com/
It removed all but 4. I was disappointed that the Trojans once again reloaded and my problems continued. So, i used the SUBMIT STATE service. I supplied all the info i could gather, pop up addys and what they were for , what others programs had found and Exterminate had missed etc. Within 24 hours i received and email telling me they had updated there system and to download it. I rescanned the system and it deleted all the previous locked files.
Darksma and Vundo downloader trojans have not done their re appearing act since and my comp is running normal again.

It's worth remembering the addy or downloading it to see what it finds. I had no problems doing so in anyway with this program. They done what they said they would on there web site in under the time frame.

Source

Administrator of Horse Racing Forums

File: DistromaticSearchProtect-hourly

Location of DistromaticSearchProtect-hourly and Associated Malware

Check whether DistromaticSearchProtect-hourly is present in the following locations:

DistromaticSearchProtect-hourly file locations that are Windows version independent:

  • C:\Windows\System32\Tasks\DistromaticSearchProtect-hourly

If you find DistromaticSearchProtect-hourly file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The DistromaticSearchProtect-hourly file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of DistromaticSearchProtect-hourly File^

File SizeFile Md5Last Seen
458266DEBA730EC0DE8C2D488E43BB070F3EAug 14, 2016
46008E997E4E0CCB977CB03F38E85186CC48Aug 15, 2016
46745C7F02F668E52A741701E3AC496A817AAug 26, 2016
4676AA9AE715594C4711F79302BAEEA33A58Sep 1, 2016
46781580F4A67A820475EE4590E3AF73A571Sep 3, 2016
45901133E1EEED7FC350C32927734BB8B1D3Sep 10, 2016
469865C121B53E7CB53358538DD708E28215Sep 23, 2016
4578B19507F3E4168FAA9AB2E803DB7BFA46Sep 24, 2016
46727DB1585B424CC6009A52FA4BC69C5BE0Sep 28, 2016
4676CDE8A56C8463C332E3BAD71850F5496BOct 16, 2016
4578726A248E420A031CB0087F585758B8B7Oct 24, 2016
45963709ADCCDCBA6DCDC9036FC107D94CC5Oct 27, 2016
4692921D7E4C85CC11C5AE0075811FDE0789Oct 30, 2016
4676AC634D30B433A758DE77450AA1CD59DANov 11, 2016
45786022204ADF5F80B571CC537D557A58B9Nov 18, 2016
456628F951DA664C81D847DB1D6D80CA49E5Dec 3, 2016
45781179F1D9943D24C4AF808B91282BAF4BDec 4, 2016
3702B08B314E95F898B147013BD5E57860D8Dec 14, 2016
4682C45B9C210FEBCB65A190C3212589E9ECDec 22, 2016
4598F0ED048176EA5291571B992C7B8A8D18Jan 6, 2017
4598C18C1AE9D174878D5BE0FCB4A94B6570Jan 9, 2017
4668A4B15C04417CEA8A062C9BF5E9DC5845Feb 4, 2017
42866D049DCDA05D9AF38F36C3B6B1C4CAE8Feb 10, 2017
45902B49254936FCD6BB8743D8790B9D2975Mar 8, 2017
458030EABADB4B977301465F66BFBE3AD03CMar 16, 2017
45867DE4A1AA41425A85B1DEF68966397E95Mar 20, 2017
4674B5AE29652D0BF2C1419230B1DD6BAC74Mar 28, 2017
4674C2F0F8BA24638CFB8C8F454C9C9533B6Mar 30, 2017
46740001BE48376CAD8DE9AFAABAE001237CApr 17, 2017
46740CA942012F5BE074FC411A87FE91B61BApr 24, 2017
468667214664D84C052A4F0890CC6DE8985FMay 12, 2017
4588B1A184D7C8E2CD347027D6C6374CAA95May 15, 2017
456479F85AA4D5AE5C46DA8B524AE2073363May 16, 2017
4294F55D4F78089C443D1BD066127FA1136EJun 6, 2017

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove DistromaticSearchProtect-hourly^

  1. To enable deleting the DistromaticSearchProtect-hourly file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select DistromaticSearchProtect-hourly and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of DistromaticSearchProtect-hourly and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of DistromaticSearchProtect-hourly and Associated Malware.
  6. Notes:

    • The deletion of DistromaticSearchProtect-hourly will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of DistromaticSearchProtect-hourly will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a DistromaticSearchProtect-hourly malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type DistromaticSearchProtect-hourly. The name of the first found registry value referencing DistromaticSearchProtect-hourly is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to DistromaticSearchProtect-hourly, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of DistromaticSearchProtect-hourly and Associated Malware.