- Audio & Multimedia
- Business
- Communications
- Desktop
- Development
- Education
- Games
- Graphics
- Home & Hobby
- Network & Internet
- Screen Savers
- Security & Privacy
- Servers
- System Utilities
- Web Development
- SSuite NetSurfer Browser x64
- UltraFileSearch Std
- Pen Drive Recovery Free
- Aiseesoft iPhone Cleaner...
- AnyMP4 Blu-ray Ripper
- Apeaksoft iOS Unlocker
- Apeaksoft Screen Recorder...
- AnyRec Video Enhancer
- Windows Data Files Undelete
- Data Unerase Software
- Mac Removable Media File...
- Data Recovery Software
- Vista Partition Data...
- Softaken MS PowerPoint...
- Verwijderde Bestanden...
- ADRC Data Recovery Tools
- avast! Antivirus
- Revo Uninstaller
- Java Runtime Environment
- AVG Anti-Virus Free Edition
- GOM Media Player
- RegSeeker
- IrfanView
- CPU-Z
- Malwarebytes Anti-Malware
- Spybot Search & Destroy
- Skype
- µTorrent
-
2Printer 5.5
Enables you to print any type documents or files in bath mode one after another specifying the paper size and without any...
-
Vivaldi for MacOS 6.6
No ad browser and uses minimum memory, takes very less time to load, some unique features added like notes containing...
-
Win PDF Editor 3.6.3
Editing PDF documents was like nightmare for me but when I am suggested by one of colleagues I tried this and found that...
-
Serial to Ethernet Connector 9.0
It can successfully turn your computer to a terminal server so that any device connected to the com port will be...
-
ShutUp10 1.4.1388
This software will let you take the full control over your windows 10 and decide which program to start automatically or...
-
TeraCopy 3.26
Copies files seamlessly from source to target location, also detects errors while transferring and rectifies it.
-
Ulysses for Windows 2.7.11
Writing application with most of useful features that a standard word processor may offer like markdown, emerging to...
-
InjuredPixels 4.0
It will repair the damaged pixels of the display unit so that it can still be usable for some more days instead of buying...
-
DrvInfo 1.2.0.2016.0
The software will show you the details of a drive as soon as it is inserted into the port whether it is a floppy, flash...
-
Unreal Commander 3.57
Can see the files in windows. You may copy, cut and paste right from there or upload to server directly.
Security & Privacy / Anti-Virus Tools / Jeefo Removal Tool 1.0
Jeefo Removal Tool 1.0
Advertisement
Advertisement
Jeefo Removal Tool 1.0 Description
Jeefo Removal Tool is a lightweight utility that can help you clean the Win32.Jeefo.A malware from your system. This executable file infector is written in MinGW and presents a very interesting (and difficult to disinfect) infection technique.
Jeefo Removal Tool is a lightweight utility that can help you clean the Win32.Jeefo.A malware from your system. This executable file infector is written in MinGW and presents a very interesting (and difficult to disinfect) infection technique. It contains various strings, encrypted with a trivial algorithm:
.text:004012B0 decryption_loop:
.text:004012B0 mov cl, [edx+ebx]
.text:004012B3 dec cl
.text:004012B5 mov [edx+eax], cl
.text:004012B8 inc edx
.text:004012B9 cmp edx, edi
.text:004012BB jl short decryption_loop
When an infected file is executed for the first time, the virus receives control and dumps a copy of itself in the Windows directory as svchost.exe and registeres itself to be executed at every system startup: under Windows 9x/Me it adds a key to HKEY_LOCAL_MACHINE SoftwareMicrosoftWindowsCurrentVersionRunServices; under NT/2000/XP, it creates a service called "Power Manager".
The file infection algorithm is complex; in some cases, infected files get corrupted (the virus is not capable of handling certain resource types).
The infected file has the following layout:
1) Virus
2) Original file's resources (bitmaps, icons, etc) >- thus the infected file has the same main icon as the original file
3) Original file chunks - encrypted
The disinfection routine decrypts the file chunks, re-links the file, adds the resources and re-locates them to the new relative virtual address. Resource relocation is tricky and in some cases may cause the virus to fail (crash); however, these files are correctly disinfected by BitDefender.
The virus contains the following text string: "Hidden Dragon virus. Born in a tropical swamp." encrypted with the same trivial encryption algorithm as above. When encrypted, the word "hidden" is transformed to "iJeefo" (this is where this virus got his name from).
OS: Windows 7, WinXP, Windows Vista
Tags: Jeefo Antivirus - Jeefo Remover - Jeefo Cleaner - Jeefo - Antivirus - Remover
User Reviews of Jeefo Removal Tool
-
BitDefender TrafficLight for The TrafficLight extensions work with any operating system, but are somewhat restricted in functionality and (of course) choice of browser... Download
-
BitDefender TrafficLight for The TrafficLight extensions work with any operating system, but are somewhat restricted in functionality and (of course) choice of browser... Download
-
BitDefender TrafficLight for The TrafficLight extensions work with any operating system, but are somewhat restricted in functionality and (of course) choice of browser... Download
-
BitDefender QuickScan for Firefox BitDefender QuickScan is an online tool which uses .in-the-cloud. scanning to detect malware running on a PC very fast, usually in less than 60 seconds. Because it's fast!.. Download
-
BitDefender QuickScan for Chrome BitDefender QuickScan is an online tool which uses .in-the-cloud. scanning to detect malware running on a PC very fast, usually in less than 60 seconds. Because it's fast!.. Download
-
Valhalla Removal Tool 1.0 Valhalla Removal Tool is a lightweight application that was created in order to provide you with a simple means of cleaning the Win32.Valhalla.2048 virus from your PC... Download
-
LovGate Removal Tool 1.0 LovGate Removal Tool is a handy application that was created in order to provide you with a means of fighting off Win32.LovGate malware in all its variants and modifications... Download
-
Lirva Removal Tool 1.0 Lirva Removal Tool is a great helper that was designed to deal with the Win32.Lirva.B@mm worm. This is a modified version of Win32.Lirva.A@mm internet worm... Download
-
Ganda Removal Tool 1.0 Ganda Removal Tool is a small but effective application that targets the Win32.Ganda.A@mm malware. Once run, it creates two copies of itself in Windows folder: SCANDISK.EXE and another randomly named file (ex: "xjvhtbxt.EXE")... Download
-
Frethem Removal Tool 1.0 Frethem Removal Tool is a useful application that can help you erase the Win32.Frethem.F@mm virus. This is an Internet worm which spreads through e-mail as an attached file. It is written in Visual C and packed with UPX and PePack... Download