Removed: mswsock32.dll, zydxc0126.dll
Malware: c02.exe Removed: C:\WINDOWS\system32\mswsock32.dll C:\Program Files\dnf\zydxc0126.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 Generic.Malware.dld!!.DF552F66 Kaspersky 7.0.0.125 2010.01.28 Trojan-Downloader.Win32.Small.kjv McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 TrojanDownloader:Win32/Small.NW NOD32 4813 2010.01.28 Win32/TrojanDownloader.Agent.PRQ Symantec 20091.2.0.41 2010.01.28 Downloader —————————————————————————————————————————- Additional information File size: 4096 bytes MD5 : 10ca2c71be94afe3ea2a4547ec558027 SHA1 : df37f79250f2c5f7ce44eea442e4a852abc934ac SHA256: 399da35bd5bb70b321c99ac91309775bf8b6df8dce2559f1a4d9f9dc2b2e3c3c —————————————————————————————————————————- Installation When [...]
Removal Tool
Removed: wnzip32.exe, vesita.exe
Malware: Removed: C:\RECYCLER\S-1-5-21-8178931799-7915043595-038469661-2547\wnzip32.exe C:\RECYCLER\S-1-5-21-7878267239-4532775356-618228797-6665\vesita.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result DrWeb 5.0.1.12222 2010.01.29 BackDoor.Tdss.based.3 F-Secure 9.0.15370.0 2010.01.29 Trojan.Generic.2988966 Kaspersky 7.0.0.125 2010.01.29 Packed.Win32.TDSS.z McAfee 5875 2010.01.28 Generic Dropper.lr.gen Microsoft 1.5406 2010.01.29 Trojan:Win32/Alureon.CT NOD32 4817 2010.01.29 a variant of Win32/Olmarik.SV Symantec 20091.2.0.41 2010.01.29 Trojan Horse —————————————————————————————————————————- Additional information File size: 209410 bytes MD5 : e6b06bb0e1ecf107f1965d42de6843a7 SHA1 [...]
Removal Tool
Removed: Debug.Dll
Malware: faf382861ea0f398bb3b6086b6f1ec35.exe Removed: C:\Program Files\Internet Explorer\Debug.Dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Heur.PT.emHeaqJqL9p Kaspersky 7.0.0.125 2010.01.26 Trojan-Dropper.Win32.QQpluq.ak McAfee 5873 2010.01.26 Generic.dx!lod Microsoft 1.5405 2010.01.26 TrojanDropper:Win32/Ceekat.B NOD32 4808 2010.01.26 Win32/PSW.QQPass.NFA Symantec 20091.2.0.41 2010.01.26 Infostealer.Gampass —————————————————————————————————————————- Additional information File size: 73731 bytes MD5 : b52681b127369ba061c306f42def95f5 SHA1 : fb9891c86b16b779b6342cca2d90872ca72c89cf SHA256: 4d878e1b0fdc2189e8a5decbbc6668579307e722e210fedb6a711a5c80f88951 —————————————————————————————————————————- Installation When [...]
Removal Tool
Removed: winlogon.exe
Malware: install13400.exe Removed: C:\Documents and Settings\Administrator\Application Data\Microsoft\Windows\winlogon.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.28 Trojan-Downloader.Win32.FraudLoad.wxtr McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 Trojan:Win32/InternetAntivirus NOD32 4811 2010.01.27 a variant of Win32/Kryptik.CBJ Symantec 20091.2.0.41 2010.01.28 InternetAntivirus —————————————————————————————————————————- Additional information File size: 32768 bytes MD5 : 0faefe1ca43a63dd36a2747deb415497 SHA1 : 98e50937cad5757afe878969af5245ce4ac31117 SHA256: [...]
Removal Tool
Removed: tbcore3.dll, seupd.exe, tbupd.exe
Malware: inst1012wse.exe Removed: C:\Program Files\IEToolbar\MoneyBooster\tbcore3.dll C:\Documents and Settings\All Users\Application Data\Update\seupd.exe C:\Documents and Settings\All Users\Application Data\Update\tbupd.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 – Kaspersky 7.0.0.125 2010.01.28 – McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 – NOD32 4814 2010.01.28 – Symantec 20091.2.0.41 2010.01.28 Trojan.Dropper —————————————————————————————————————————- Additional information File size: 2520151 bytes MD5 : [...]
Removal Tool
Removed: remoney.exe
Malware: remoney.exe Removed: C:\Program Files\remoney\remoney.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 – Kaspersky 7.0.0.125 2010.01.28 Trojan.Win32.Scar.okn McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 – NOD32 4812 2010.01.28 Win32/TrojanDownloader.Delf.PGZ Symantec 20091.2.0.41 2010.01.28 Trojan Horse —————————————————————————————————————————- Additional information File size: 227840 bytes MD5 : 0f421c497b04c6c64450bd88b7453f18 SHA1 : 12b77931e51dae28034359e667cc53fe76268408 SHA256: e0b0a7fe552e90fb262410f1d5c9f3d6bb7f0d60d84291d5f2bb5b075bbbd99d —————————————————————————————————————————- Installation When [...]
Removal Tool
Removed: servicelayer.exe, wdmon.exe, svw.exe, ctfmon.exe, amoumain.exe
Malware: 123.exe Removed: C:\WINDOWS\servicelayer.exe C:\WINDOWS\wdmon.exe C:\WINDOWS\svw.exe C:\WINDOWS\ctfmon.exe C:\WINDOWS\amoumain.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 – Kaspersky 7.0.0.125 2010.01.26 Trojan-Dropper.Win32.Mudrop.fuc McAfee 5872 2010.01.25 – Microsoft 1.5405 2010.01.26 – NOD32 4806 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 2661888 bytes MD5 : 6411876d41f55fa21003afe9256b24d2 SHA1 : 8c7c365fa01cd64f7d20536c5d11d4c932c80ac9 SHA256: e8cbf67fff6888ff759fa59af3dbeabd2416db777c5b6593b9b09bf232d20536 —————————————————————————————————————————- [...]
Removal Tool
Removed: mmcsys.dat, doret.exe
Malware: C:\sand-box\9946e.exe Removed: C:\Documents and Settings\Administrator\Application Data\Adobe\Update\mmcsys.dat C:\Documents and Settings\Administrator\Application Data\Adobe\Update\doret.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Trojan:W32/Agent.NCU Kaspersky 7.0.0.125 2010.01.27 Trojan.Win32.Inject.amla McAfee 5873 2010.01.26 Generic PWS.ej Microsoft 1.5406 2010.01.27 – NOD32 4809 2010.01.27 Win32/Riern.O Symantec 20091.2.0.41 2010.01.27 Trojan.Dropper —————————————————————————————————————————- Additional information File size: 208896 bytes MD5 : dfe3ef9884d9859790687f0d00e77ad5 SHA1 : [...]
Removal Tool
Removed: pmufs.sys
Malware: 333.exe Removed: C:\WINDOWS\system32\drivers\pmufs.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 – Kaspersky 7.0.0.125 2010.01.26 Trojan-Downloader.Win32.Selvice.ne McAfee 5872 2010.01.25 Downloader-BRV Microsoft 1.5405 2010.01.26 TrojanDownloader:Win32/Caxnet.B NOD32 4805 2010.01.25 a variant of Win32/TrojanDownloader.Caxnet.BR Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 24576 bytes MD5 : 1b718d0a88ba96c2ff6f87e6c88255cb SHA1 : f84b5ad4f305618ae9f55a8334de6ab601431855 SHA256: 3b452283bbc236f6f17610744a3f708e7c5718957952cf74e5342d7e777eadc9 —————————————————————————————————————————- Installation [...]
Removal Tool
Removed: qtplugin.exe, incognito.exe
Malware: sys.exe Removed: C:\WINDOWS\system32\qtplugin.exe C:\WINDOWS\system32\incognito.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 – Kaspersky 7.0.0.125 2010.01.27 Trojan.Win32.Buzus.dahy McAfee 5873 2010.01.26 – Microsoft 1.5406 2010.01.27 – NOD32 4808 2010.01.26 Win32/Induc.A Symantec 20091.2.0.41 2010.01.27 – —————————————————————————————————————————- Additional information File size: 344576 bytes MD5 : 78312c04081054a47f7466e29ca33e05 SHA1 : 318c11b047d6691aca4ab24dd50722ffafffd91d SHA256: 8fd9cdeeefd4e1d668e2cd0a2783916c8a89c7821ab494eddcd48bdf745efe0d —————————————————————————————————————————- Installation When the [...]
Removal Tool
Removed: RamxtqC.dll
Malware: C:\sand-box\aaa.exe Removed: C:\WINDOWS\system32\RamxtqC.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Backdoor.Generic.126999 Kaspersky 7.0.0.125 2010.01.26 Backdoor.Win32.Agent.tnr McAfee 5872 2010.01.25 generic!bg.evs Microsoft 1.5405 2010.01.26 Backdoor:Win32/Venik.C NOD32 4805 2010.01.25 Win32/Agent.DKR Symantec 20091.2.0.41 2010.01.26 Trojan Horse —————————————————————————————————————————- Additional information File size: 52736 bytes MD5 : 626235e9e5862a76e41c0e3568625046 SHA1 : 78068610bcd8a1b37eb7e88d5659e955a3e297c3 SHA256: 717231f7bc8c9d81e9a28b21ce52cd68e11d044953abd8185e3476b4037a5fb1 —————————————————————————————————————————- Installation When the [...]
Removal Tool
Removed: aecces.exe
Malware: Downloads_P.com.exe Removed: C:\WINDOWS\system32\aecces.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Trojan:W32/Agent.NES Kaspersky 7.0.0.125 2010.01.27 – McAfee 5874 2010.01.27 Generic PWS.eg Microsoft 1.5406 2010.01.27 Trojan:Win32/VB.VV NOD32 4810 2010.01.27 a variant of Win32/Spy.Bancos.NQD Symantec 20091.2.0.41 2010.01.27 – —————————————————————————————————————————- Additional information File size: 121856 bytes MD5 : 82a958ad50fe1d29fb9557cefec32935 SHA1 : 4bd8ce93e22c8ae1970511045f93a8de150c812a SHA256: 550e83721fa021671aa8c8b19448a740bd7896bcd10b47790d1cede43858e50f —————————————————————————————————————————- [...]
Removal Tool
Removed: dsound32.dll, dskquota32.dll, lsass.exe
Malware: update_for_media_player_(KB972036).exe Removed: C:\WINDOWS\system32\dsound32.dll C:\WINDOWS\system32\dskquota32.dll C:\Documents and Settings\Administrator\Application Data\SystemProc\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.26 – McAfee 5873 2010.01.26 – Microsoft 1.5405 2010.01.26 – NOD32 4808 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 535040 bytes MD5 : 9cb2732bd5eca4efa4c71366ce603c77 SHA1 : 742ff89ccf08fccc7de692289e16b7e219223daf SHA256: b7a0017842ee167bcc88290f1116321ad7a06b71a9b1e98c14f143820f70fafd [...]
Removal Tool
Removed: svshost.dll, wininet.exe
Malware: sckt.exe Removed: C:\WINDOWS\system32\svshost.dll C:\WINDOWS\system32\wininet.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Dropped:Trojan.Generic.2892965 Kaspersky 7.0.0.125 2010.01.25 Email-Worm.Win32.Gibon.fh McAfee 5871 2010.01.24 Generic Obfuscated.e Microsoft 1.5405 2010.01.25 Backdoor:Win32/Syrutrk.A NOD32 4803 2010.01.25 a variant of Win32/Small.CVQ Symantec 20091.2.0.41 2010.01.25 Infostealer —————————————————————————————————————————- Additional information File size: 91136 bytes MD5 : 92687886854194d545fecb3f35691125 SHA1 : fb4d44e744d78f101a07f2a80337756cac599127 SHA256: 0e22594c35c4002dbb118be1df5ab67eb65d67f86c04a34472a3aec2ddf29e8b [...]
Removal Tool
Removed: ojhut.sys
Malware: image.jpg.exe Removed: C:\WINDOWS\system32\drivers\ojhut.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.25 Trojan.Win32.Gudok.b McAfee 5871 2010.01.24 MultiDropper-TM Microsoft 1.5405 2010.01.25 Trojan:Win32/Koutodoor.A NOD32 4802 2010.01.24 – Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 58880 bytes MD5 : d1161074836a692ef800fada2b068002 SHA1 : b0992f8fe3a06041a46132e0dffac251f0bed7b0 SHA256: 8af3676280d0b2b61e2c46ebf9144fe81daae485136706d253b277e77b3e72a5 —————————————————————————————————————————- Installation When the [...]
Removal Tool
Removed: kespgteais.dll
Malware: C:\sand-box\Setup.exe Removed: C:\WINDOWS\system32\senol\kespgteais.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Trojan.Generic.2973805 Kaspersky 7.0.0.125 2010.01.26 Trojan-PSW.Win32.LdPinch.alxl McAfee 5873 2010.01.26 PWS-LDPinch!ca Microsoft 1.5405 2010.01.26 TrojanDownloader:Win32/Utka.A NOD32 4808 2010.01.26 Win32/TrojanDownloader.Delf.OZM Symantec 20091.2.0.41 2010.01.26 Downloader —————————————————————————————————————————- Additional information File size: 283648 bytes MD5 : f216bc3d77812094ac28e8f35a7758a9 SHA1 : 51431cdbcda0ae85a1505e6b0a58caaaca450a49 SHA256: af04670ab1ff61b866aac4c32767890af9267b870a974bec45ea7e3e3af9496a —————————————————————————————————————————- Installation When the program [...]
Removal Tool
Removed: mtlrd.sys
Malware: 1339.exe Removed: C:\Documents and Settings\All Users\Application Data\Microsoft\Media Player\wmp\mtlrd.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Heur.emW@XUiUPXh Kaspersky 7.0.0.125 2010.01.26 not-a-virus:AdWare.Win32.BHO.kup McAfee 5873 2010.01.26 potentially unwanted program Adware-Cinmus!o Microsoft 1.5405 2010.01.26 Trojan:Win32/Cinmus.N NOD32 4808 2010.01.26 probably a variant of Win32/Adware.Cinmus Symantec 20091.2.0.41 2010.01.26 Trojan.Cinmeng —————————————————————————————————————————- Additional information File size: 79620 bytes MD5 [...]
Removal Tool
Removed: sdra64.exe, wnzip32.exe, gjetk.exe, lsass.exe
Malware: C:\sand-box\700.exe Removed: C:\WINDOWS\system32\sdra64.exe C:\RECYCLER\S-1-5-21-7295788371-6219362898-216113940-7089\wnzip32.exe C:\gjetk.exe C:\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Backdoor:W32/Sohif.gen!A Kaspersky 7.0.0.125 2010.01.25 Packed.Win32.Krap.x McAfee 5871 2010.01.24 Generic Dropper.lr Microsoft 1.5405 2010.01.25 – NOD32 4803 2010.01.25 a variant of Win32/Kryptik.BXO Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 18944 bytes MD5 : 9ab36d270d7c9aed4486c2ee2fd7c48d SHA1 : [...]
Removal Tool
Removed: winhelp.exe, winhelp32.exe
Malware: 001.exe Removed: C:\WINDOWS\system32\winhelp.exe C:\WINDOWS\system32\winhelp32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Packed.Heur.fiGeI3I44tf Kaspersky 7.0.0.125 2010.01.26 Trojan-GameThief.Win32.WOW.wdw McAfee 5873 2010.01.26 Generic Dropper!cba Microsoft 1.5405 2010.01.26 Trojan:Win32/Delf.FL NOD32 4808 2010.01.26 a variant of Win32/TrojanDropper.Delf.NRD Symantec 20091.2.0.41 2010.01.26 Trojan Horse —————————————————————————————————————————- Additional information File size: 93553 bytes MD5 : bdaf914daffd6b17b55e67f8e9bdab8b SHA1 : f87042ff9ae7965c04c8898f175fd4b256753a32 SHA256: [...]
Removal Tool
Removed: extrac64_cab.exe, winhlp64.exe, H8SRTuthexouqxv.sys
Malware: C:\sand-box\load.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\extrac64_cab.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe C:\WINDOWS\system32\drivers\H8SRTuthexouqxv.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Trojan:W32/Agent.NDF Kaspersky 7.0.0.125 2010.01.25 Packed.Win32.TDSS.aa McAfee 5872 2010.01.25 – Microsoft 1.5405 2010.01.25 – NOD32 4804 2010.01.25 a variant of Win32/Kryptik.BUA Symantec 20091.2.0.41 2010.01.25 Downloader —————————————————————————————————————————- Additional information File size: 17408 bytes MD5 : [...]
Removal Tool
Removed: extrac64_cab.exe, winhlp64.exe
Malware: C:\sand-box\setup.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\extrac64_cab.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.26 – McAfee 5873 2010.01.26 – Microsoft 1.5405 2010.01.26 – NOD32 4807 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 729088 bytes MD5 : 8f36fab2ab841d750ce111e7e0316a39 SHA1 : 0007d00f45596d2dc838435caa2e815b59c7c7e4 [...]
Removal Tool
Removed: autorun.inf
Malware: malware.exe Removed: C:\autorun.inf —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.22 MemScan:Trojan.Generic.2008016 Kaspersky 7.0.0.125 2010.01.22 Trojan.Win32.Tdss.afwo McAfee 5869 2010.01.22 DNSChanger!o Microsoft 1.5405 2010.01.22 Trojan:Win32/Alureon.BK NOD32 4798 2010.01.22 a variant of Win32/Kryptik.RR Symantec 20091.2.0.41 2010.01.22 Trojan Horse —————————————————————————————————————————- Additional information File size: 93474 bytes MD5 : 980defa4a2f08a52e3ec7d51baa3f393 SHA1 : b8f22c15efd84a4f4b7409a632f312b8de5ffde3 SHA256: de7e27e772e038a601c7d7fd2753dc6ac7e57804c75123d0150635e3c2314528 —————————————————————————————————————————- [...]
Removal Tool
Removed: SKYNETufmifhqp.sys
Malware: C:\sand-box\malware.exe Removed: C:\WINDOWS\system32\drivers\SKYNETufmifhqp.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2009.10.27 Trojan.CryptRedol.Gen.3 Kaspersky 7.0.0.125 2009.10.28 Trojan.Win32.TDSS.ahpm McAfee 5784 2009.10.27 DNSChanger.t Microsoft 1.5202 2009.10.28 Trojan:Win32/Alureon.BK NOD32 4551 2009.10.28 a variant of Win32/Kryptik.TX Symantec 1.4.4.12 2009.10.28 Packed.Generic.238 —————————————————————————————————————————- Additional information File size: 92160 bytes MD5 : 6d41a6a94c3e7195d7646fe8e31bca32 SHA1 : 7616588f65f93789384eca78a00246a14c8d8e36 SHA256: 698c4dc9a7f47d7886f02c8fac9bb5088ffc14a2bf88f5937b4bd821847ca35d —————————————————————————————————————————- Installation [...]
Removal Tool
Removed: autorun.inf, boot.com
Malware: malware.exe Removed: C:\autorun.inf(C:\resycled\boot.com) —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Trojan.TDss.AU Kaspersky 7.0.0.125 2010.01.20 Trojan.Win32.DNSChanger.uek McAfee 5866 2010.01.19 DNSChanger.gen Microsoft 1.5302 2010.01.20 Trojan:Win32/Alureon.gen!J NOD32 4788 2010.01.20 a variant of Win32/Kryptik.CN Symantec 20091.2.0.41 2010.01.20 Trojan Horse —————————————————————————————————————————- Additional information File size: 80399 bytes MD5 : e9b0140a7d0590cdc49f1219cb13955f SHA1 : d70b44d5dedfd25be091cdbf6a8d495c61f38bee SHA256: 7ab46d7be02a91f8f716df7e82b8fcb101ce98981d5919ef7959467504f8e3a1 —————————————————————————————————————————- [...]
Removal Tool
Removed: malware.exe
Malware: C:\sand-box\malware.exe Removed: C:\sand-box\malware.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 8.0.14470.0 2009.05.28 Rogue:W32/SpyGuard.gen!A McAfee 5629 2009.05.28 DNSChanger.f.gen.a Microsoft 1.4701 2009.05.28 Trojan:Win32/FakeSpyguard NOD32 4113 2009.05.28 a variant of Win32/Kryptik.DR Symantec 1.4.4.12 2009.05.28 Trojan.Zlob —————————————————————————————————————————- Additional information File size: 1007616 bytes MD5 : c1f17390465d59267c3aaa87aac914ac SHA1 : a110ed8887021a6ca174826ae4075f7b97eb51cc SHA256: 8ce70ed24891f17c03264b82a9d536a315ed44009034712e8f9da91e04dac565 —————————————————————————————————————————- Installation When the program is executed, it creates [...]
Removal Tool
Removed: msctrl32.exe
Malware: spyeraser096.exe Removed: C:\WINDOWS\system32\msctrl32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Trojan.Generic.IS.420737 Kaspersky 7.0.0.125 2010.01.25 not-a-virus:FraudTool.Win32.SpyEraser.a McAfee 5871 2010.01.24 – Microsoft 1.5405 2010.01.25 – NOD32 4802 2010.01.24 – Symantec 20091.2.0.41 2010.01.25 Punisher —————————————————————————————————————————- Additional information File size: 3317345 bytes MD5 : 128888cd4cc7c701b8c56e2e018242be SHA1 : a45f3e7526c7d604ec344eec50c6e17155460fcb SHA256: 0461dbc10535bcc56382bb379422433eb9c5b6c400c80b3e4a8e5475f98907cd —————————————————————————————————————————- Installation When the program [...]
Removal Tool
Removed: winlogon32.exe, sdra64.exe, lsass.exe, svc.exe, smss32.exe, odbn0.exe
Malware: load.exe Removed: C:\WINDOWS\system32\winlogon32.exe C:\WINDOWS\system32\sdra64.exe C:\WINDOWS\lsass.exe C:\WINDOWS\svc.exe C:\WINDOWS\system32\smss32.exe C:\WINDOWS\odbn0.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Trojan.Generic.CJ.AJYK Kaspersky 7.0.0.125 2010.01.23 Trojan-Dropper.Win32.Mudrop.fty McAfee 5870 2010.01.23 – Microsoft 1.5405 2010.01.23 TrojanDropper:Win32/Microjoin.gen!B NOD32 4800 2010.01.23 a variant of Win32/Kryptik.BCR Symantec 20091.2.0.41 2010.01.23 Trojan Horse —————————————————————————————————————————- Additional information File size: 1915904 bytes MD5 : b0cf55e2028f6b3dde658c3b9c4fc60a SHA1 [...]
Removal Tool
Removed: gtsqakc.sys
Malware: C:\sand-box\doperrr.exe Removed: C:\WINDOWS\system32\drivers\gtsqakc.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 – Kaspersky 7.0.0.125 2010.01.25 Backdoor.Win32.VB.ldh McAfee 5871 2010.01.24 – Microsoft 1.5405 2010.01.25 Trojan:Win32/VB.VY NOD32 4803 2010.01.25 a variant of Win32/Injector.ASJ Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 80384 bytes MD5 : 22dc8fa28d6261f8ea26b33263142087 SHA1 : 20d97de80fd42587ee8cee081b5dcfbf32c61999 SHA256: 2127ae0aa21e5e8be6e590011f64574bcb837425af6a922fbb3d683bbe987d53 —————————————————————————————————————————- [...]
Removal Tool
Removed: ntload.dll, notepad.dll, scandisk.dll
Malware: C:\sand-box\pm.exe Removed: C:\Documents and Settings\Administrator\ntload.dll C:\WINDOWS\system32\notepad.dll C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\scandisk.dll —————————————————————————————————————————- You must restore the original versions of these files: —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Trojan.Generic.2974807 Kaspersky 7.0.0.125 2010.01.20 Packed.Win32.Katusha.j McAfee 5866 2010.01.19 Generic.dx!kwv Microsoft 1.5302 2010.01.20 Trojan:Win32/Opachki.A NOD32 4789 2010.01.20 a variant of Win32/Kryptik.BLS Symantec 20091.2.0.41 2010.01.20 Packed.Generic.271 [...]
Removal Tool
Removed: Recycle.exe, AutoRun.inf, only.exe
Malware: C:\sand-box\wow.exe Removed: C:\WINDOWS\Recycle.exe C:\AutoRun.inf C:\WINDOWS\system32\only.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Generic.FWB.3DE47DE8 Kaspersky 7.0.0.125 2010.01.23 Worm.Win32.AutoRun.bms McAfee 5869 2010.01.22 Downloader-BFO Microsoft 1.5405 2010.01.23 Worm:Win32/Autorun.CY NOD32 4798 2010.01.22 a variant of Win32/AutoRun.Delf.P Symantec 20091.2.0.41 2010.01.23 W32.SillyDC —————————————————————————————————————————- Additional information File size: 42478 bytes MD5 : fb53792de1f9f0246fba12a822d5f0a5 SHA1 : dc6de3a6cae995015f52c38761ea9957bb4a58cf SHA256: 3ccec0578929de773ae1565aadf2a775de557883453cb5b7ad404d5c7d6ad115 [...]
Removal Tool
- Remember: the best way to remove rootkits is from the outside!
