awtqnkh.dll – trojan Monder
The file awtqnkh.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete awtqnkh.dll we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “awtqnkh.dll” Executed: 7628.keygen.exe Removed: awtqnkh.dll. Full path: C:\WINDOWS\system32\awtqnkh.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: {23D44BCF-AA7A-41D6-8905-E808F16322EF} Author: Unknown Related File: C:\WINDOWS\SYSTEM32\AWTQNKH.DLL Type: Browser Helper [...]
Removal Tool
WindowsGenuine.exe – LockScreen
We checked up the file WindowsGenuine.exe and found it hazardous. The file WindowsGenuine.exe must be deleted from the system immediately. Kill the process WindowsGenuine.exe and remove WindowsGenuine.exe from the Windows startup. Malware Analysis of Executed: koiyk.exe Removed: WindowsGenuine.exe. Full path: C:\Documents and Settings\Administrator\Local Settings\Temp\WindowsGenuine.exe —————————————————————————————————————————- Detected by RegRun Warrior: 1. RegRun Reanimator: Item Name: Explorer [...]
Removal Tool
wjdriver.exe – trojan Msposer
The file wjdriver.exe is malware related. You must delete the file wjdriver.exe immediately! Delete the file wjdriver.exe without delay! Kill the process wjdriver.exe and remove wjdriver.exe from the Windows startup. Malware Analysis of “wjdriver” Executed: modulo.exe Removed: wjdriver.exe. Full path: C:\WINDOWS\system32\wjdriver.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: wjdriver Author: Absolutamente Related File: C:\WINDOWS\SYSTEM32\WJDRIVER.EXE Type: Registry [...]
Removal Tool
pdhui.exe – trojan Msposer
The file pdhui.exe is malware related. You must delete the file pdhui.exe immediately! Delete the file pdhui.exe without delay! Kill the process pdhui.exe and remove pdhui.exe from the Windows startup. Malware Analysis of “pdhui” Executed: modulo.exe Removed: pdhui.exe. Full path: C:\windows\system32\pdhui.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: wjdriver Author: Absolutamente Related File: C:\WINDOWS\SYSTEM32\WJDRIVER.EXE Type: Registry [...]
Removal Tool
orkut.exe – trojan Msposer
The file orkut.exe is malware related. You must delete the file orkut.exe immediately! Delete the file orkut.exe without delay! Kill the process orkut.exe and remove orkut.exe from the Windows startup. Malware Analysis of “orkut” Executed: modulo.exe Removed: orkut.exe. Full path: C:\WINDOWS\system32\orkut.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: wjdriver Author: Absolutamente Related File: C:\WINDOWS\SYSTEM32\WJDRIVER.EXE Type: Registry [...]
Removal Tool
twr10.exe – trojan Agent
Is the file twr10.exe located on your computer? Then your computer is infected. We do suggest you should remove twr10.exe from your computer as soon as possible. twr10.exe is Trojan/Backdoor. Kill the process twr10.exe and remove twr10.exe from the Windows startup. Malware Analysis of “twr” Executed: twreg.10.exe Removed: twr10.exe. Full path: C:\Documents and Settings\Administrator\Local Settings\Temp\twr10.exe [...]
Removal Tool
lss700dbgg.exe – Fake AntiVirus “Antimalware Doctor”
The file lss700dbgg.exe is a part of Fake Antiviral software. You must delete the file lss700dbgg.exe immediately! Delete the file lss700dbgg.exe without delay! Kill the process lss700dbgg.exe and remove lss700dbgg.exe from the Windows startup. Malware Analysis of “Antimalware Doctor” Executed: insd700box.exe Removed: lss700dbgg.exe. Full path: C:\Documents and Settings\Administrator\Application Data\B34B7AF9CB40065433C8C631C37A9A2D\lss700dbgg.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: [...]
Removal Tool
exe.exe.bat – trojan BAT.VKhost
The file exe.exe.bat is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete exe.exe.bat we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “exe.exe” Executed: exe.exe Removed: exe.exe.bat. Full path: C:\WINDOWS\system32\exe.exe.bat —————————————————————————————————————————- Detected by UnHackMe: Item Name: 178.63.9.124 vkontakte.ru Author: Unknown Related File: Type: Hosts File [...]
Removal Tool
178.63.9.124 – Malware Domain
Removed all rows with “178.63.9.124″ from “%SysDir%\drivers\etc\hosts” file Executed Malware: exe.exe —————————————————————————————————————————- How to quickly detect malware presence? Files modified: C:\WINDOWS\system32\drivers\etc\hosts —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.16440.0 2011.05.30 Trojan.Agent.27291 Kaspersky 9.0.0.837 2011.05.30 Trojan.BAT.VKhost.ct Microsoft 1.6903 2011.05.30 Trojan:Win32/Sisron NOD32 6164 2011.05.30 probably a variant of Win32/Qhost.CBMHLNB —————————————————————————————————————————- MD5 5ca1da22d9ce32d624d2e745d7e33ff0 SHA1 fca3d84789318c40b55bc23be45b7a973bd5fd20 SHA256 901d4c52b1f63f810cca5b6559a3cbceafb2da80e6422235265a1ffa1ab2ebe3 [...]
Removal Tool
wupdate.exe – backdoor IRCBot
The program wupdate.exe is used for hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with wupdate.exe. Download for free: http://www.unhackme.com Malware Analysis of Executed: 08-May-11-37b44ccb3191006-wimns.exe Removed: wupdate.exe. Full path: C:\Documents and Settings\Administrator\Application Data\wupdate.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: WindowsUpdate Author: Related File: C:\DOCUMENTS [...]
Removal Tool
turky.exe – backdoor Bifrose
The program turky.exe is used for hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with turky.exe. Download for free: http://www.unhackme.com Malware Analysis of “TURKY.EXE” Executed: 16044.exe Removed: turky.exe. Full path: C:\WINDOWS\system32\google\turky.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: {7D772D85-B1F6-12E1-B1C7-7633E8A6A391} Author: Unknown Related File: C:\WINDOWS\SYSTEM32\GOOGLE\TURKY.EXE Type: [...]
Removal Tool
Windows Troubles Solver – Fake AntiVirus
The file sskgaf.exe is a part of Fake Antiviral software. You must delete the file sskgaf.exe immediately! Delete the file sskgaf.exe without delay! Kill the process sskgaf.exe and remove sskgaf.exe from the Windows startup. Malware Analysis of “Windows Troubles Solver” Executed: freesystemscan.exe Removed: sskgaf.exe. Full path: C:\Documents and Settings\Administrator\Application Data\Microsoft\sskgaf.exe —————————————————————————————————————————- Detected by UnHackMe: Item [...]
Removal Tool
plusdriver64.sys – rootkit Banker
The file plusdriver64.sys is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete plusdriver64.sys we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Banker Plus” Executed: C:\sand-box\aaa.bat Removed: plusdriver64.sys. Full path: C:\sand-box\plusdriver64.sys —————————————————————————————————————————- Detected by UnHackMe: – none – After first reboot detected by UnHackMe: Item [...]
Removal Tool
plusdriver.sys – rootkit Banker
The file plusdriver.sys is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete plusdriver.sys we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Banker Plus” Executed: C:\sand-box\aaa.bat Removed: plusdriver.sys. Full path: C:\sand-box\plusdriver.sys —————————————————————————————————————————- Detected by UnHackMe: – none – After first reboot detected by UnHackMe: Item [...]
Removal Tool
winupd.exe – backdoor Agent
The program winupd.exe is used for hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with winupd.exe. Download for free: http://www.unhackme.com Malware Analysis of “Windows Update” Executed: api.exe Removed: winupd.exe. Full path: C:\Documents and Settings\Administrator\Application Data\winupd.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Windows Update Author: [...]
Removal Tool
\instali\svchost.exe – trojan Genome
The file C:\WINDOWS\instali\svchost.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete C:\WINDOWS\instali\svchost.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Xtreme” Executed: load.exe Removed: svchost.exe. Full path: C:\WINDOWS\instali\svchost.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Xtreme Author: Unknown Related File: C:\WINDOWS\INSTALI\SVCHOST.EXE Type: Explorer Run [...]
Removal Tool
Ball.exe – trojan Redosdru
The file Ball.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete Ball.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Ball” Executed: ji.exe Removed: Ball.exe. Full path: C:\WINDOWS\Ball.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Ball Author: 360.cn Related File: C:\WINDOWS\BALL.EXE Type: Registry Run [...]
Removal Tool
ivzmdl.dll – trojan Agent
The file ivzmdl.dll is malware related. You must delete the file ivzmdl.dll immediately! Delete the file ivzmdl.dll without delay! Kill the process ivzmdl.dll and remove ivzmdl.dll from the Windows startup. Malware Analysis of “Google Search Provider” Executed: load.php.exe Removed: ivzmdl.dll. Full path: C:\Documents and Settings\Administrator\Application Data\Sun\ivzmdl.dll —————————————————————————————————————————- Detected by UnHackMe: IVZMDL.DLL Default location: C:\DOCUMENTS AND [...]
Removal Tool
AZULIM.exe – trojan Cospet
The file AZULIM.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete AZULIM.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “AZULIM.exe” Executed: C:\sand-box\AZULIM.exe Removed: AZULIM.exe. Full path: C:\sand-box\AZULIM.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: AZULIM.exe Author: Unknown Related File: C:\SAND-BOX\AZULIM.EXE Type: Registry Run [...]
Removal Tool
ita.exe – trojan Pincav
The file ita.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete ita.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “ita.exe” Executed: C:\sand-box\ita.exe Removed: ita.exe. Full path: C:\sand-box\ita.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: ita.exe Author: Unknown Related File: C:\SAND-BOX\ITA.EXE Type: Registry Run [...]
Removal Tool
MODOUTLOCO.exe – trojan Generic
The file MODOUTLOCO.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete MODOUTLOCO.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “MODOUTLOCO” Executed: C:\sand-box\MODOUTLOCO.exe Removed: MODOUTLOCO.exe. Full path: C:\sand-box\MODOUTLOCO.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: MODOUTLOCO Author: Unknown Related File: C:\SAND-BOX\MODOUTLOCO.EXE Type: Registry Run [...]
Removal Tool
winet.ocx – backdoor Bifrose
The program winet.ocx is used for hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with winet.ocx. Download for free: http://www.unhackme.com Malware Analysis of “Windows Update” Executed: img.exe Removed: winet.ocx. Full path: C:\Documents and Settings\Administrator\Application Data\winet.ocx —————————————————————————————————————————- Detected by UnHackMe: Item Name: Windows Update Author: [...]
Removal Tool
more6.exe – trojan Pirminay
The file more6.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete more6.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Spmtphjv” Executed: 2e653f596b01555de0a3464c20798eab.exe Removed: more6.exe. Full path: C:\WINDOWS\system32\more6.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Spmtphjv Author: Unknown Related File: C:\WINDOWS\SYSTEM32\MORE6.EXE Type: Explorer Run [...]
Removal Tool
Windows Firewall Unit – Fake AntiVirus
The file iabgwf.exe is a part of Fake Antiviral software. You must delete the file iabgwf.exe immediately! Delete the file iabgwf.exe without delay! Kill the process iabgwf.exe and remove iabgwf.exe from the Windows startup. Malware Analysis of “Windows Firewall Unit” Executed: freesystemscan.exe Removed: iabgwf.exe. Full path: C:\Documents and Settings\Administrator\Application Data\Microsoft\iabgwf.exe —————————————————————————————————————————- Detected by RegRun Warrior: [...]
Removal Tool
nftfar.kll – backdoor PcClient
The program nftfar.kll is used for hidden penetration into PC and its remote administration. UnHackMe is recommended as a reliable program for solving the problem with nftfar.kll. Download for free: http://www.unhackme.com Malware Analysis of “nftfar.kll” Executed: C:\sand-box\1_001.exe Removed: nftfar.kll. Full path: C:\WINDOWS\system32\nftfar.kll —————————————————————————————————————————- Detected by UnHackMe: Item Name: windows Author: Microsoft Related File: C:\WINDOWS\SYSTEM32\NFTFAR.KLL Type: [...]
Removal Tool
windows.exe – trojan Meredrop
The file windows.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete windows.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “Windows Login access” Executed: 33K7.D10.exe Removed: windows.exe. Full path: C:\Documents and Settings\Administrator\Application Data\windows.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Windows Login access Author: [...]
Removal Tool
cox.exe – trojan Banker
The file cox.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete cox.exe we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of “cox.exe” Executed: C:\sand-box\cox.exe Removed: cox.exe. Full path: C:\sand-box\cox.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: cox.exe Author: Unknown Related File: C:\SAND-BOX\COX.EXE Type: Registry Run [...]
Removal Tool
wcscd.sys – trojan Harnig
Is the file wcscd.sys located on your computer? Then your computer is infected. We do suggest you should remove wcscd.sys from your computer as soon as possible. wcscd.sys is Trojan/Backdoor. Kill the process wcscd.sys and remove wcscd.sys from the Windows startup. Malware Analysis of “wcscd.sys” Executed: Little_Girls_Movies_Click_Run.exe Removed: wcscd.sys. Full path: C:\WINDOWS\system32\drivers\wcscd.sys —————————————————————————————————————————- Detected by [...]
Removal Tool
209.59.221.17 – Malware Domain
The site 209.59.221.17 is used to spread malware. Protect your computer against this site: 209.59.221.17. Delete the lines including 209.59.221.17 from the %SysDir%\drivers\etc\hosts file. Removed all rows with “209.59.221.17″ from “%SysDir%\drivers\etc\hosts” file —————————————————————————————————————————- How to quickly detect malware presence? Files modified: C:\WINDOWS\system32\drivers\etc\hosts —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.16440.0 2011.05.26 Trojan.Generic.KD.230991 Kaspersky 9.0.0.837 [...]
Removal Tool
fv6ap3xh7c.exe – trojan Harnig
Is the file fv6ap3xh7c.exe located on your computer? Then your computer is infected. We do suggest you should remove fv6ap3xh7c.exe from your computer as soon as possible. fv6ap3xh7c.exe is Trojan/Backdoor. Kill the process fv6ap3xh7c.exe and remove fv6ap3xh7c.exe from the Windows startup. Malware Analysis of “fv6ap3xh7c.exe” Executed: Little_Girls_Movies_Click_Run.exe Removed: fv6ap3xh7c.exe. Full path: C:\Documents and Settings\Administrator\fv6ap3xh7c.exe —————————————————————————————————————————- [...]
Removal Tool
- Remember: the best way to remove rootkits is from the outside!
