76.76.116.114 – Malware Host
The site 76.76.116.114 is used for spreading malware. Protect your computer against the site: 76.76.116.114. Remove all rows related to the 76.76.116.114 from the “%SysDir%\drivers\etc\hosts” file. Removed all rows with “76.76.116.114″ from “%SysDir%\drivers\etc\hosts” file Executed Malware: 26.exe —————————————————————————————————————————- How to quickly detect malware presence? Files modified: C:\WINDOWS\system32\drivers\etc\hosts —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure [...]
Removal Tool
Adoben.exe – backdoor Momibot
The program Adoben.exe is used for the hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with Adoben.exe. Download for free: http://www.unhackme.com Malware Analysis of Adoben.exe Executed: 57512.pic.exe Removed: Adoben.exe. Full path: C:\WINDOWS\system32\Adoben.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: WMPNetworkSvcERSvc Author: Related File: C:\WINDOWS\system32\Adoben.exe srv [...]
Removal Tool
SOUNDMAN.exe – trojan Malagent
The file SOUNDMAN.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete SOUNDMAN.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of SOUNDMAN.exe Executed: freegate.exe Removed: SOUNDMAN.exe. Full path: C:\WINDOWS\system32\dllcache\SOUNDMAN.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: shell Author: Unknown Related File: explorer.exe C:\WINDOWS\system32\netlos.exe Type: System.ini [...]
Removal Tool
netlos.exe – trojan Malagent
The file netlos.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete netlos.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of netlos.exe Executed: freegate.exe Removed: netlos.exe. Full path: C:\WINDOWS\system32\netlos.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: shell Author: Unknown Related File: explorer.exe C:\WINDOWS\system32\netlos.exe Type: System.ini [...]
Removal Tool
fg672p.exe – trojan Proxy
The file fg672p.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete fg672p.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of fg672p.exe Executed: freegate.exe Removed: fg672p.exe. Full path: C:\Documents and Settings\Administrator\Local Settings\Temp\fg672p.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: shell Author: Unknown Related File: explorer.exe [...]
Removal Tool
AdobeARM.com – backdoor Flooder
The program AdobeARM.com is used for the hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with AdobeARM.com. Download for free: http://www.unhackme.com Malware Analysis of AdobeARM.com Executed: adop.exe Removed: AdobeARM.com. Full path: C:\WINDOWS\AdobeARM.com —————————————————————————————————————————- Detected by UnHackMe: Item Name: Adobe ARM Author: mIRC Co. Ltd. [...]
Removal Tool
ma2012.exe – FakeAV Mega Antivirus 2012
The file ma2012.exe is a part of Fake Antiviral software. You must delete the file ma2012.exe immediately! Delete the file ma2012.exe without delay! Kill the process ma2012.exe and remove ma2012.exe from Windows startup. Malware Analysis of ma2012.exe Executed: install.exe Removed: ma2012.exe. Full path: C:\WINDOWS\addons\ma2012.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Policies Author: Unknown Related File: [...]
Removal Tool
addon.exe – FakeAV Mega Antivirus 2012
The file addon.exe is a part of Fake Antiviral software. You must delete the file addon.exe immediately! Delete the file addon.exe without delay! Kill the process addon.exe and remove addon.exe from Windows startup. Malware Analysis of addon.exe Executed: install.exe Removed: addon.exe. Full path: C:\WINDOWS\addons\addon.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Policies Author: Unknown Related File: [...]
Removal Tool
Windowsmss.dll – trojan Klone
The file Windowsmss.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete Windowsmss.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of Windowsmss.dll Executed: C:\sand-box\52f76f0813dd2de058076c6085bc5ad2.exe Removed: Windowsmss.dll. Full path: C:\Documents and Settings\Administrator\Microsoft\Windowsmss.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: Windowsmss Author: Unknown Related File: C:\DOCUMENTS AND [...]
Removal Tool
wincdsvn.exe – worm Phorpiex
We checked some samples of wincdsvn.exe and detected the file wincdsvn.exe as threat. Remove the wincdsvn.exe from your computer right now. Removal tool: http://www.unhackme.com Malware Analysis of wincdsvn.exe Executed: 0034bc830d8d19bbcc92f7b93ced3581.exe Removed: wincdsvn.exe. Full path: C:\Documents and Settings\Administrator\Microsoft-Driver-1-85-45488-2348-1467\wincdsvn.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Microsoft(R)UpdateManager Author: Unknown Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\MICROSOFT-DRIVER-1-85-45488-2348-1467\WINCDSVN.EXE Type: Registry Run Item [...]
Removal Tool
systime.exe – trojan Small
The file systime.exe is malware related. You must delete the file systime.exe immediately! Delete the file systime.exe without delay! Kill the process systime.exe and remove systime.exe from Windows startup. Malware Analysis of systime.exe Executed: 0ae632df2d8fe30bfb34ff2e4b78f02a.exe Removed: systime.exe. Full path: C:\WINDOWS\systime.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Initialize Win32 Author: Unknown Related File: C:\WINDOWS\system32\WIN32INI.EXE Type: Registry [...]
Removal Tool
win32ini.exe – trojan Small
The file win32ini.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete win32ini.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of win32ini.exe Executed: 0ae632df2d8fe30bfb34ff2e4b78f02a.exe Removed: win32ini.exe. Full path: C:\WINDOWS\system32\win32ini.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Initialize Win32 Author: Unknown Related File: C:\WINDOWS\system32\WIN32INI.EXE Type: Registry [...]
Removal Tool
wjdrive32.exe – trojan Ircbrute
The file wjdrive32.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete wjdrive32.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of wjdrive32.exe Executed: 105768a2d05b474b349b723ed112a207.exe Removed: wjdrive32.exe. Full path: C:\WINDOWS\wjdrive32.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Microsoft Driver Setup Author: Unknown Related File: C:\WINDOWS\WJDRIVE32.EXE Type: [...]
Removal Tool
ggdrive32.exe – trojan Ircbrute
The file ggdrive32.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete ggdrive32.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of ggdrive32.exe Executed: 6e1ce303bea11e8c303bcfd82c2e096a.exe Removed: ggdrive32.exe. Full path: C:\WINDOWS\ggdrive32.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Microsoft Driver Setup Author: Unknown Related File: C:\WINDOWS\GGDRIVE32.EXE Type: [...]
Removal Tool
twunk.exe – trojan Scar
The file twunk.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete twunk.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of twunk.exe Executed: Extrato_Pedencias_Serasa.exe Removed: twunk.exe. Full path: C:\Program Files\Common Files\twunk.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: twunk Author: Unknown Related File: C:\PROGRAM FILES\COMMON [...]
Removal Tool
SERVÝCES.EXE – backdoor Poison
The program servyces.exe is used for the hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with servyces.exe. Download for free: http://www.unhackme.com Malware Analysis of servyces.exe Executed: multi hack 9.0.exe Removed: servyces.exe. Full path: C:\WINDOWS\system32\servyces.exe —————————————————————————————————————————- Detected manually: SERVÝCES.EXE Default location: C:\WINDOWS\SYSTEM32\SERVÝCES.EXE MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18 SHA1: [...]
Removal Tool
system.exe – worm Hamweq
We checked up the file system.exe and found it hazardous. The file system.exe must be deleted from the system immediately. Kill the process system.exe and remove system.exe from the Windows startup. Malware Analysis of system.exe Executed: lmq.exe Removed: system.exe. Full path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1457\system.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: shell Author: Unknown Related File: explorer.exe,C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1457\system.exe Type: [...]
Removal Tool
132.exe – trojan Sisproc
The file 132.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete 132.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of 132.exe Executed: bbb11.exe Removed: 132.exe. Full path: C:\WINDOWS\132.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: {0DBB4430-2805-4FF2-AC7D-43985BC678B8} Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\APPLIC~1\MD_71.DLL Type: Browser Helper [...]
Removal Tool
md_71.dll – trojan Sisproc
The file md_71.dll is malware related. You must delete the file md_71.dll immediately! Delete the file md_71.dll without delay! Kill the process md_71.dll and remove md_71.dll from Windows startup. Malware Analysis of md_71.dll Executed: bbb11.exe Removed: md_71.dll. Full path: C:\Documents and Settings\Administrator\Application Data\md_71.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: {0DBB4430-2805-4FF2-AC7D-43985BC678B8} Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\APPLIC~1\MD_71.DLL [...]
Removal Tool
metodics.exe – rootkit SpyEye
The file metodics.exe is malware related. You must delete the file metodics.exe immediately! Delete the file metodics.exe without delay! Kill the process metodics.exe and remove metodics.exe from Windows startup. Malware Analysis of metodics.exe Executed: C:\sand-box\grsa.exe Removed: metodics.exe. Full path: C:\metodics\metodics.exe —————————————————————————————————————————- Detected by UnHackMe: – nothing – After first reboot detected by UnHackMe: Item Name: [...]
Removal Tool
altv.exe – trojan Inject
The file altv.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete altv.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware: C:\sand-box\updata.exe Removed: c:\windows\system32\altv.exe C:\Documents and Settings\Administrator\Application Data\wauclt.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: AYAgent.aye Author: Related File: c:\windows\system32\altv.exe Type: Image Executions Debugger Item Name: AYAgentSrv.aye [...]
Removal Tool
frame_search.dll – adware Mostofate
We received the file frame_search.dll and detected thatframe_search.dll is a virus. frame_search.dll is Adware. You need remove Remove the file frame_search.dll. Kill the process frame_search.dll and remove frame_search.dll from the Windows. Malware Analysis of frame_search.dll Executed: Removed: frame_search.dll. Full path: C:\Program Files\IEToolbar\Google Toolbar\frame_search.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: {4F4693CD-2B4D-42BD-B512-D2AB0F74D30C} Author: Related File: C:\PROGRAM FILES\IETOOLBAR\GOOGLE [...]
Removal Tool
Explorer.exe – backdoor Bifrose
The program Explorer.exe is used for the hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with Explorer.exe. Download for free: http://www.unhackme.com Malware Analysis of Explorer.exe Executed: photo.exe Removed: Explorer.exe. Full path: C:\WINDOWS\system32\Explorer\Explorer.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: {9D71D88C-C598-4935-C5D1-43AA4DB90836} Author: Unknown Related File: C:\WINDOWS\SYSTEM32\EXPLORER\EXPLORER.EXE [...]
Removal Tool
adsntx.exe – backdoor IRCNite
The program adsntx.exe is used for the hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with adsntx.exe. Download for free: http://www.unhackme.com Malware Analysis of adsntx.exe Executed: file.exe Removed: adsntx.exe. Full path: C:\WINDOWS\system32\adsntx.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Dhcpclr_optimization_v2.0.50727_32 Author: Related File: C:\WINDOWS\system32\adsntx.exe srv [...]
Removal Tool
swfupdate.dll – trojan Chksyn
The file swfupdate.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete swfupdate.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of swfupdate.dll Executed: fd181.exe Removed: swfupdate.dll. Full path: C:\Documents and Settings\All Users\Application Data\Macromedia\swfupdate\swfupdate.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: SwUpdate Author: Adobe Systems Inc. [...]
Removal Tool
pod.exe – trojan Buckhs
The file pod.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete pod.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of pod.exe Executed: C:\sand-box\ztz.exe Removed: pod.exe. Full path: :\WINDOWS\system32\3com_dmi\pod.exe —————————————————————————————————————————- Detected by UnHackMe in “Multi AntiVirus scan” mode: POD.EXE Default location: C:\WINDOWS\SYSTEM32\3COM_DMI\POD.EXE MD5: DE7AA9F8A07B268D2E018A82FF533C85 [...]
Removal Tool
winlogin.exe – trojan Injector
We checked some samples of winlogin.exe and detected the file winlogin.exe as threat. Remove the winlogin.exe from your computer right now. Removal tool: http://www.unhackme.com Malware Analysis of winlogin.exe Executed: RuneBooter.exe Removed: winlogin.exe. Full path: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\winlogin.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: winlogin.exe Author: Related File: C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP\WINLOGIN.EXE Type: [...]
Removal Tool
servicewins.exe – rootkit SpaEye
Is the file servicewins.exe located on your computer? Then your computer is infected. We highly recommend you to remove servicewins.exe from your computer as soon as possible. servicewins.exe is Trojan/Backdoor. Kill the process servicewins.exe and remove servicewins.exe from the Windows startup. Malware Analysis of servicewins.exe Executed: C:\sand-box\upd.exe Removed: servicewins.exe. Full path: C:\servicewins\servicewins.exe —————————————————————————————————————————- Detected by [...]
Removal Tool
sacismots.exe – rootkit SpyEye
The file sacismots.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete sacismots.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of sacismots.exe Executed: C:\sand-box\bree.jpg.exe Removed: sacismots.exe. Full path: C:\sacismots\sacismots.exe —————————————————————————————————————————- Detected by UnHackMe: – none- After first reboot detected by UnHackMe: Item Name: sacismots.exe [...]
Removal Tool
dsvn160.exe – trojan Koodface
The file dsvn160.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete dsvn160.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of dsvn160.exe Executed: C:\sand-box\loader.exe Removed: dsvn160.exe. Full path: C:\windows\dsvn160.exe” —————————————————————————————————————————- Detected by UnHackMe: Item Name: dfg49df Author: dfgdfg Related File: C:\WINDOWS\DSVN160.EXE Type: Registry Run [...]
Removal Tool
- Remember: the best way to remove rootkits is from the outside!
