About Alex Nightwatcher

Malware Hunter.

Find more about me on:

Here are my most recent posts

Author Archives: Alex Nightwatcher

About Alex Nightwatcher

Malware Hunter.

Removed: winxps.dll

Malware: Sango_v8.0.3.exe Removed: C:\WINDOWS\system32\winxps.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.09 Gen:Trojan.Heur.li0asOd5qOmb Kaspersky 7.0.0.125 2010.02.09 Trojan.Win32.Pincav.ryu McAfee 5886 2010.02.08 Generic Malware.bj Microsoft 1.5406 2010.02.08 – NOD32 4849 2010.02.08 a variant of Win32/PcClient.NFY —————————————————————————————————————————- Additional information File size: 194886 bytes MD5 : e9553e07361efdbb713284ff0d15420b SHA1 : 6847977505e613bfaf3dc7367b92ad37073bf726 SHA256: 098ccc400d6b272d6a4c3a42d29d6c3f2ef02c5b4442684d2bd2ee838588c923 —————————————————————————————————————————- Installation When the program […]
More…

Removed: shell.exe, PPlayer.2.1.58130.251.(508).dll, finks32.exe, bbb.exe, winhelp.exe, winhelp32.exe, xcmab.sys, appmgmts.dll, mtlrd.sys, LSASS.EXE

Malware: C:\sand-box\011.exe Removed: C:\WINDOWS\system32\shell.exe C:\WINDOWS\PPlayer.2.1.58130.251.(508).dll C:\WINDOWS\system32\finks32.exe C:\WINDOWS\system32\bbb.exe C:\WINDOWS\system32\winhelp.exe C:\WINDOWS\system32\winhelp32.exe C:\WINDOWS\system32\DRIVERS\xcmab.sys C:\WINDOWS\system32\appmgmts.dll C:\Documents and Settings\All Users\Application Data\Microsoft\Media Player\wmp\mtlrd.sys You must restore the original files are changed virus: C:\WINDOWS\system32\LSASS.EXE —————————————————————————————————————————- Classification: Antivirus Version Last Update Result Kaspersky 7.0.0.125 2010.02.07 Trojan.Win32.VB.aart McAfee 5884 2010.02.06 Generic VB.z Microsoft 1.5406 2010.02.07 – NOD32 4842 2010.02.06 a variant of Win32/TrojanDownloader.VB.ODS —————————————————————————————————————————- […]
More…

Removed: swupdate.dll

Malware: C:\sand-box\banner.exe Removed: C:\Documents and Settings\All Users\Application Data\Macromedia\SwUpdate\swupdate.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.09 Net-Worm:W32/Koobface.EQK Kaspersky 7.0.0.125 2010.02.09 Net-Worm.Win32.Koobface.eqk McAfee 5886 2010.02.08 W32/Koobface.worm.gen.ak Microsoft 1.5406 2010.02.09 Trojan:Win32/Chksyn.gen!A NOD32 4849 2010.02.08 Win32/Chksyn.AA —————————————————————————————————————————- Additional information File size: 87552 bytes MD5 : b8b3836c097869144c3c0cc8935e7228 SHA1 : 9e7b07ce7fc9619c8e1e6773979613722772c4d2 SHA256: f322769e3d3584e939ba4d282c26d542410f5220cde283a02c912b6b8a87ce47 —————————————————————————————————————————- Installation When the program […]
More…

Removed:1259nod.dll

Malware: C:\sand-box\12.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\1259nod.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.07 – Kaspersky 7.0.0.125 2010.02.07 Trojan-Downloader.Win32.Agent.daym McAfee 5885 2010.02.07 – Microsoft 1.5406 2010.02.07 – NOD32 4845 2010.02.07 – —————————————————————————————————————————- Additional information File size: 38936 bytes MD5 : be2968c8f7eae71c4f60bb2107a6d70c SHA1 : 2e3dac9e2043bf4baae7f34871898d0f2d9afd3a SHA256: f61b0cec1ecd6fbb53fec91db2155b0c7cd18fe2bfde9b12feb45db171abdb02 —————————————————————————————————————————- Installation When the program is […]
More…

Removed: d3dx10_3732.dll, d3dx10_3532.dll, lsass.exe

Malware: update_for_media_player_(KB972036).exe Removed: C:\WINDOWS\System32\d3dx10_3732.dll C:\WINDOWS\System32\d3dx10_3532.dll C:\Documents and Settings\Administrator\Application Data\SystemProc\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.02.08 Trojan.Win32.Agent.dgxh McAfee 5886 2010.02.08 – Microsoft 1.5406 2010.02.08 – NOD32 4849 2010.02.08 Win32/TrojanDownloader.Agent.PSH —————————————————————————————————————————- Additional information File size: 562176 bytes MD5 : cdba7ebcd7ef6810d8df3feca09fc624 SHA1 : 3c47a59eda98cd6da84503e7e14c458c89bb51bc SHA256: 5221f828ded4834f43a62510ecca2b8925194c2201691d82e5e96861b020fff7 —————————————————————————————————————————- Installation When the […]
More…

Removed: eapqec32.dll, efsadu32.dll, lsass.exe

Malware: update_for_media_player_(KB972036).exe Removed: C:\WINDOWS\System32\eapqec32.dll C:\WINDOWS\System32\efsadu32.dll C:\Documents and Settings\Administrator\Application Data\SystemProc\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.07 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.02.07 P2P-Worm.Win32.Agent.xu McAfee 5884 2010.02.06 – Microsoft 1.5406 2010.02.07 – NOD32 4844 2010.02.07 – —————————————————————————————————————————- Additional information File size: 561664 bytes MD5 : 7fced3cea42cb0f7f1dda7d7817d04eb SHA1 : 2da02f20d420aeb75c81b5ced0971ce440e694fa SHA256: 8218522f8676f187d8048f10f422028de4e6035fe77b3fee76cdfc09ef879175 —————————————————————————————————————————- Installation When the […]
More…

Removed: pav.exe, pavext.dll, ddexpshare.exe, cmmon64x.exe, _VOIDbvpyapulno.sys

Malware: C:\sand-box\load.exe Removed: C:\Program Files\Paladin Antivirus\pav.exe C:\Program Files\Paladin Antivirus\pavext.dll C:\Documents and Settings\Administrator\Local Settings\Temp\ddexpshare.exe C:\Documents and Settings\Administrator\Local Settings\Temp\cmmon64x.exe C:\WINDOWS\system32\drivers\_VOIDbvpyapulno.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.02.08 – McAfee 5885 2010.02.07 – Microsoft 1.5406 2010.02.07 – NOD32 4846 2010.02.08 – —————————————————————————————————————————- Additional information File size: 18432 bytes MD5   : d48fdd99aabcc47b3e1d01fc0fec011a SHA1  : 31029b78efc62a25b16dc6620ad4cfb6b055813b […]
More…

Removed: winlogon32.exe, smss32.exe, svc.exe, lsass.exe, localxmlruntime.dll, nvwrfont50.exe, 376bcd.exe, odbn0.exe

Malware: 45089.exe Removed: C:\WINDOWS\system32\winlogon32.exe C:\WINDOWS\system32\smss32.exe C:\WINDOWS\svc.exe C:\WINDOWS\lsass.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\localxmlruntime\localxmlruntime.dll C:\Documents and Settings\Administrator\Application Data\nvwrfont50\nvwrfont50.exe C:\Documents and Settings\Administrator\Application Data\376bcd.exe C:\WINDOWS\odbn0.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 – Kaspersky 7.0.0.125 2010.02.08 – McAfee 5885 2010.02.07 – Microsoft 1.5406 2010.02.08 – NOD32 4847 2010.02.08 a variant of Win32/Kryptik.CDU —————————————————————————————————————————- Additional information File size: […]
More…

Removed: svchost.exe, adc32.dll, alggui.exe

Malware: C:\sand-box\PC_protect.exe Removed: C:\Program Files\svchost.exe C:\Program Files\adc32.dll C:\Program Files\alggui.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.02.08 Trojan.Win32.FraudPack.akvg McAfee 5886 2010.02.08 – Microsoft 1.5406 2010.02.08 Trojan:Win32/FakeScanti NOD32 4849 2010.02.08 – —————————————————————————————————————————- Additional information File size: 1057800 bytes MD5   : 5db442825532833c145a290ea3f7c744 SHA1  : 0b538c5649f077dd5f4e9a44f386b68f2e7e1f46 SHA256: b4acad26ca4825961963017eeb8fc11da7dd87afe87968a185c280bc9d396a43 —————————————————————————————————————————- Installation When the program is executed, […]
More…

Removed: adgamma.exe

Malware: l05.exe Removed: C:\Program Files\adgamma.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 Gen:Trojan.Heur.PT.cmW@b4rvPici Kaspersky 7.0.0.125 2010.02.08 Trojan-Downloader.Win32.Small.aowv McAfee 5886 2010.02.08 Generic.dx!mtq Microsoft 1.5406 2010.02.08 – NOD32 4849 2010.02.08 – —————————————————————————————————————————- Additional information File size: 39936 bytes MD5 : 45407341913c37284bd61d6bd6261863 SHA1 : 658340cdd874500a5d33ae4ae5ebd80e13e5f2f7 SHA256: f2c145fe393a07b26ae37387156958b89e53b875ff39e55d61261415822d866f —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: wtnmm.exe

Malware: wtnmm.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\wtnmm.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.08 – Kaspersky 7.0.0.125 2010.02.08 Trojan.Win32.Agent.dhbq McAfee 5886 2010.02.08 – Microsoft 1.5406 2010.02.08 – NOD32 4849 2010.02.08 – —————————————————————————————————————————- Additional information File size: 168960 bytes MD5 : 48bb89358e8e43e81d5e287038252958 SHA1 : ab7c09d413398623fc5b4df14cd865359dfdfecb SHA256: f222ab19b2469c1b5d2c342a13c906c4c1fa505ba64703744035020ef2103e95 —————————————————————————————————————————- Installation When the program […]
More…

Removed: cleansweep.exe

Malware: taskmgr.exe Removed: C:\cleansweep.exe\cleansweep.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Suspicious:W32/Malware!Online Kaspersky 7.0.0.125 2010.02.02 Trojan.Win32.Pincav.qrg McAfee 5879 2010.02.01 Generic.dx!mez Microsoft 1.5406 2010.02.02 – NOD32 4827 2010.02.02 a variant of Win32/Agent.QQS —————————————————————————————————————————- Additional information File size: 56832 bytes MD5 : 97c73a29ab07f04458f5e8834f8db1ba SHA1 : 171565913cf53864c0ba1ff9dc414ed6ac473662 SHA256: a7b061a30f875be1de8994084f2935175ccb4edce87a88fc4430c63e0f738376 —————————————————————————————————————————- Installation When the program is […]
More…

Removed: accessi.exe

Malware: load.exe Removed: C:\WINDOWS\system32\accessi.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.06 Backdoor.IRCbot.ACXB Kaspersky 7.0.0.125 2010.02.06 Backdoor.Win32.IRCNite.fw McAfee 5884 2010.02.06 – Microsoft 1.5406 2010.02.06 – NOD32 4842 2010.02.06 Win32/IRCBot.NBC —————————————————————————————————————————- Additional information File size: 64512 bytes MD5 : 2f4e7b4602780d77a8d776003528ee6d SHA1 : 160d250ae000065580d557a32f6db6ea54661e7e SHA256: 997bf86f35678ccf1e0c0a05af8f230b91338d63855eb7ed241ec443a1634050 —————————————————————————————————————————- Installation When the program is executed, it creates […]
More…

Removed: reader_s.exe

Malware: C:\sand-box\load.exe Removed: C:\Documents and Settings\Administrator\reader_s.exe C:\WINDOWS\system32\reader_s.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.06 Trojan.Dropper.Cutwail.IP Kaspersky 7.0.0.125 2010.02.06 Trojan.Win32.Pakes.nxe McAfee 5883 2010.02.05 PWS-Zbot.gen.ad Microsoft 1.5406 2010.02.06 TrojanDownloader:Win32/Cutwail.gen!C NOD32 4841 2010.02.06 a variant of Win32/Kryptik.CBA —————————————————————————————————————————- Additional information File size: 36352 bytes MD5 : fee473fc228f924ac7604e9c1b351f28 SHA1 : af1c4bcd86364305342c9830da7d225fdb99221b SHA256: 1ddfcb68894a31cae13fcb06227901ce87d3449a442c6de83b466e091d1ca5e7 —————————————————————————————————————————- Installation When […]
More…

Removed: lqambnjo.exe

Malware: C:\sand-box\s.exe Removed: C:\WINDOWS\system32\lqambnjo.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.05 Trojan:W32/Agent.NID Kaspersky 7.0.0.125 2010.02.05 Backdoor.Win32.IRCBot.nlo McAfee 5882 2010.02.04 – Microsoft 1.5406 2010.02.05 – NOD32 4837 2010.02.05 Win32/AutoRun.AEH —————————————————————————————————————————- Additional information File size: 52224 bytes MD5 : aaf7aae9ab90cbc0e57fb2c68cbfe602 SHA1 : 62c2e4f6cceee4b3d1e4f2b8944ed2ba63c7d142 SHA256: 6a90bfb9996dba2906db06f3a759b61d4295d303cb8c7da39b4d9c4f4056772c —————————————————————————————————————————- Installation When the program is executed, it creates […]
More…

Removed: lwrioy.exe

Malware: b8e75133dbb90efb0d54dc310e8e8cff.exe Removed: C:\Documents and Settings\Administrator\lwrioy.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Worm:W32/Vinkus.gen!A Kaspersky 7.0.0.125 2010.02.02 Worm.Win32.VBNA.jdx McAfee 5879 2010.02.01 W32/VBNA.worm Microsoft 1.5406 2010.02.02 Worm:Win32/Vobfus.F NOD32 4827 2010.02.02 a variant of Win32/AutoRun.VB.GJ —————————————————————————————————————————- Additional information File size: 61440 bytes MD5 : 065989b561b1224cf6bdfa46e9411888 SHA1 : 77b00d072198bff20c83b9528a0638831329ec9d SHA256: 2876a0e7e4df07a9bc23a13cbabc081fdfe64db02b4ce8ad410c80159f413d03 —————————————————————————————————————————- Installation When the […]
More…

Removed: svost.exe

Malware: 0ed62769d1fce40f1fc8fcad340e11a9.exe Removed: C:\Documents and Settings\Administrator\Application Data\svost.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.04 – Kaspersky 7.0.0.125 2010.02.04 – McAfee 5881 2010.02.03 – Microsoft 1.5406 2010.02.03 Trojan:Win32/Ircbrute NOD32 4833 2010.02.03 a variant of Win32/Injector.ASY —————————————————————————————————————————- Additional information File size: 114688 bytes MD5 : 9ec7729ff3427cefdf1880c320b5c18d SHA1 : f5b0c96a0f6b15bfa9cc68a246f033a4ea796e29 SHA256: 29f649c9861785283dfef209290ca272dbd3691e6e0a1563b682acfae5bc7a8b —————————————————————————————————————————- Installation When […]
More…

Removed: H8SRTmkosibmiqr.sys

Malware: C:\sand-box\setup01.exe Removed: C:\WINDOWS\system32\drivers\H8SRTmkosibmiqr.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.04 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.02.04 Trojan.Win32.Tdss.avrx McAfee 5881 2010.02.03 FakeAlert-FQ Microsoft 1.5406 2010.02.04 Trojan:Win32/Alureon.DA NOD32 4833 2010.02.03 a variant of Win32/Kryptik.CBJ —————————————————————————————————————————- Additional information File size: 73728 bytes MD5 : 71480720c952dc5753ed01742f9bce33 SHA1 : 3e3d0de0a298a127ec43f82992b928743f9482e3 SHA256: f30ef22180fa7bccd9fe04b45d247a7b3b7f88caabdce5208af2310bf925cab2 —————————————————————————————————————————- Installation When the program is […]
More…

Removed: ng73foqe.exe

Malware: setup.exe Removed: C:\WINDOWS\system32\ng73foqe.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.04 – Kaspersky 7.0.0.125 2010.02.04 – McAfee 5881 2010.02.03 – Microsoft 1.5406 2010.02.04 TrojanDownloadeWin32/FakeSmoke NOD32 4834 2010.02.04 – —————————————————————————————————————————- Additional information File size: 63462 bytes MD5 : 1cacf7bf024229cf4d6a0837080aa638 SHA1 : f8b6b5358eabbd5e15e9805874047f7aa0030b47 SHA256: 3871312cdfd2d2bfe8c63e43fd62eb82ac1a20ab769f00ea9697ae3adb575bdb —————————————————————————————————————————- Installation When the program is executed, it creates […]
More…

Removed: 4DW4R3xikEBmvyUI.sys

Malware: C:\sand-box\445.exe Removed: C:\WINDOWS\system32\drivers\4DW4R3xikEBmvyUI.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.03 Rootkit.Agent.AJCW Kaspersky 7.0.0.125 2010.02.04 Trojan.Win32.Cosmu.kub McAfee 5881 2010.02.03 – Microsoft 1.5406 2010.02.03 – NOD32 4833 2010.02.03 a variant of Win32/Olmarik.TR —————————————————————————————————————————- Additional information File size: 52224 bytes MD5 : b97a5bfa381d88bc4ec1431b2c18f769 SHA1 : 8ea45fb1caa6a83b70fc54f961372bee6f119e76 SHA256: 88b97a89db7e158425f5d7c4daa11e80e35da5c686074a8f667efb6409644ed9 —————————————————————————————————————————- Installation When the program is […]
More…

Malware: install11.exe

Malware: install11.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.03 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.02.03 not-a-virus:FraudTool.Win32.InternetAntivirusPro.as McAfee 5881 2010.02.03 FakeAlert-FQ Microsoft 1.5406 2010.02.03 Trojan:Win32/InternetAntivirus NOD32 4832 2010.02.03 a variant of Win32/Kryptik.CBJ —————————————————————————————————————————- Additional information File size: 33280 bytes MD5 : 0f159f049c04cf2cbd58b7c5c8d6f22f SHA1 : 7a3c5a492cdbf345241b3f9d4c53d6d4d6b4a8c5 SHA256: 928e3abdb4814267d773aae1648bd0fd43763ee395bcb149b3cf858891f8a2ba —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: yrjuug.sys

Malware: C:\sand-box\load.exe Removed: C:\WINDOWS\system32\drivers\yrjuug.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.03 – Kaspersky 7.0.0.125 2010.02.04 Trojan-Dropper.Win32.Agent.bloh McAfee 5881 2010.02.03 W32/Koobface.worm.gen.ae Microsoft 1.5406 2010.02.03 – NOD32 4833 2010.02.03 Win32/Rootkit.Agent.NIA —————————————————————————————————————————- Additional information File size: 53248 bytes MD5 : b4ff6bcf2688f2ade5aa38b7c377b2ad SHA1 : e629e8a0a5d572c8e931ce2a81a93f44cbef1407 SHA256: ecbebf46b9dd3acd689f037c86b51d1d90bb5dd268af4c098f00389eb75aab7b —————————————————————————————————————————- Installation When the program is executed, it creates […]
More…

Removed: 67718231.exe

Malware: C:\sand-box\hugos_gortodaa_b.exe Removed: C:\Documents and Settings\All Users\Application Data\67718231\67718231.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Trojan.FakeAV.ADC Kaspersky 7.0.0.125 2010.02.02 Trojan-Spy.Win32.Krap.ai McAfee 5879 2010.02.01 – Microsoft 1.5406 2010.02.02 – NOD32 4826 2010.02.02 – —————————————————————————————————————————- Additional information File size: 1060352 bytes MD5 : 1b45b22093a5258ee7f86e00a8cf7d8b SHA1 : 41360ea8085c54b705059fb3c6a3be7ddeefed54 SHA256: df83d068b015811e40c854ba1c18fccbe0daebcfb0925bf855021d49f267e397 —————————————————————————————————————————- Installation When the program […]
More…

Removed: winlogon32.exe, smss32.exe

Malware: exe.exe Removed: C:\WINDOWS\system32\winlogon32.exe C:\WINDOWS\system32\smss32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.04 Trojan-Downloader:W32/FakeAlert.JH Kaspersky 7.0.0.125 2010.02.04 Trojan-Downloader.Win32.FraudLoad.wxvr McAfee 5881 2010.02.03 FakeAlert-SpyPro.gen.b Microsoft 1.5406 2010.02.04 TrojanDownloader:Win32/Fakeinit NOD32 4833 2010.02.03 Win32/TrojanDownloader.FakeAlert.AED —————————————————————————————————————————- Additional information File size: 34304 bytes MD5 : 0cd9bef2ff880fd73a38857560d9660d SHA1 : b6e45b2932486c4b3b982e9952661d63f2cd1bae SHA256: 89db231e2ccbf1edaf25da20792e5c7cd327f0de420700bf5e4b44e8330ecf81 —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: taskmandb.exe, winhlp64.exe

Malware: C:\sand-box\setup.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\taskmandb.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Gen:Trojan.Heur.Ty0@t8x83ali Kaspersky 7.0.0.125 2010.02.01 – McAfee 5879 2010.02.01 – Microsoft 1.5406 2010.02.02 – NOD32 4825 2010.02.01 – Symantec 20091.2.0.41 2010.02.02 Suspicious.Insight —————————————————————————————————————————- Additional information File size: 737280 bytes MD5 : 2fc85f45487bd6652d47ddb93b711ec4 SHA1 : 82076dce54c8a73ee2ba662f45ececf4af999851 […]
More…

Removed: _VOIDmpxvnqjpib.sys

Malware: C:\sand-box\setup01.exe Removed: C:\WINDOWS\system32\drivers\_VOIDmpxvnqjpib.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Gen:Trojan.Heur.TP.eyW@bOWx3Rii Kaspersky 7.0.0.125 2010.02.01 – McAfee 5879 2010.02.01 – Microsoft 1.5406 2010.02.02 – NOD32 4825 2010.02.01 – Symantec 20091.2.0.41 2010.02.02 Suspicious.Insight —————————————————————————————————————————- Additional information File size: 77824 bytes MD5 : 6bd1257f8f28a4b0ef4058be7df5c8fd SHA1 : 4b97a869391380e63b4dee0dc8283a8ce7fa5bb6 SHA256: 6ae4f610be66d44b1cfd45081143492f4063b2fb56a15aa04f96ba2a12c3e31c —————————————————————————————————————————- Installation When the program […]
More…

Removed: ccdrive32.exe

Malware: 8d28ff17f6a972ad94a7b9b74129f1c5.exe Removed: C:\WINDOWS\ccdrive32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.02 Trojan.Agent.AOLA Kaspersky 7.0.0.125 2010.02.02 Trojan-Downloader.Win32.CodecPack.knx McAfee 5879 2010.02.01 – NOD32 None 2010.02.02 – —————————————————————————————————————————- Additional information File size: 184839 bytes MD5 : dec1ba8cc9fce85ab9ddcbce228b3b5a SHA1 : 97629cfc7e9aafbe516f8b59a1f814589c20fa99 SHA256: cc9f98b0850ba4d58045e32850ed11a2c305a4837810df12de63a2e4e16dd41a —————————————————————————————————————————- Installation When the program is executed, it creates the following registry subkeys […]
More…

Removed: synsql.exe

Malware: 116740f1a8b1d6bb050d79a4316f4ac7.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\synsql.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.30 Gen:Trojan.Heur.TDss.suW@jmoXFLl Kaspersky 7.0.0.125 2010.01.31 – McAfee 5877 2010.01.30 Suspect-1B!E12E119A53B7 Microsoft 1.5406 2010.01.31 – NOD32 4821 2010.01.30 – Symantec 20091.2.0.41 2010.01.31 Suspicious.Insight —————————————————————————————————————————- Additional information File size: 310272 bytes MD5 : e12e119a53b77b5eadf0feedb97b9419 SHA1 : 517a31f7d9d70edc5ac573ae0e47dedc1b6b2fbf SHA256: a3e13511e28836b1bb56533fe19e7f7e09491770c6a45651ddaab69745b1a812 —————————————————————————————————————————- Installation […]
More…

Removed: winkkd.exe

Malware: C:\sand-box\cdc.exe Removed: C:\WINDOWS\system32\winkkd.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.01 – Kaspersky 7.0.0.125 2010.02.01 Trojan.Win32.Agent.dgmz McAfee 5878 2010.01.31 Russkill.a Microsoft 1.5406 2010.02.01 Trojan:Win32/Russkill.A NOD32 4823 2010.02.01 a variant of Win32/Delf.OXO Symantec 20091.2.0.41 2010.02.01 Suspicious.Insight —————————————————————————————————————————- Additional information File size: 71168 bytes MD5 : 0b2780b79f0554b276065dc4ec717348 SHA1 : 2ce11144b7116ec43f32a33ccedcb783351e1600 SHA256: 8f89a2035f028f5ef7c83292455efe25b66a95c1d90d00dc99132be008c81185 —————————————————————————————————————————- Installation […]
More…

Removed: winlogon32.exe, IS2010.exe, smss32.exe, helper32.dll

Malware: b4f489c005cfa1b0a3e2c93b305a5399.exe Removed: C:\WINDOWS\system32\winlogon32.exe C:\Program Files\InternetSecurity2010\IS2010.exe C:\WINDOWS\system32\smss32.exe C:\WINDOWS\system32\helper32.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.01 – Kaspersky 7.0.0.125 2010.02.01 – McAfee 5878 2010.01.31 Generic FakeAlert.c Microsoft 1.5406 2010.02.01 – NOD32 4823 2010.02.01 – Symantec 20091.2.0.41 2010.02.01 Trojan.FakeAV!gen17 —————————————————————————————————————————- Additional information File size: 33280 bytes MD5 : c0ed88ccdc920a951f750c53b21996a1 SHA1 : fd0ccd3052bbaea4e1dc5f2b0e542e2a413dd939 SHA256: e5c6de61d8457d46248ea9623fe5a5521ba10102f1dc74689c698c458466fe8f […]
More…

Malware: tl.exe

Malware: C:\sand-box\tl.exe You must restore the original files are changed virus. —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.01 Win32.Sality.OG Kaspersky 7.0.0.125 2010.02.01 Virus.Win32.Sality.aa McAfee 5879 2010.02.01 W32/Sality.gen Microsoft 1.5406 2010.02.01 Virus:Win32/Sality.AM NOD32 4824 2010.02.01 Win32/Sality.NAU Symantec 20091.2.0.41 2010.02.01 W32.Sality.AE —————————————————————————————————————————- Additional information File size: 98116 bytes MD5 : 2efcf10f092081c9fbb7d02419620add SHA1 : 0a461fde155b397db7b5c279bb35bf22210f5d45 […]
More…

Removed: wamttol.dll

Malware: C:\sand-box\01.exe Removed: C:\WINDOWS\system32\wamttol.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.02.01 – Kaspersky 7.0.0.125 2010.02.01 Rootkit.Win32.Agent.lge McAfee 5879 2010.02.01 – Microsoft 1.5406 2010.02.01 Backdoor:Win32/PcClient.ZL NOD32 4824 2010.02.01 Win32/Agent.DKR Symantec 20091.2.0.41 2010.02.01 Suspicious.Insight —————————————————————————————————————————- Additional information File size: 168448 bytes MD5 : 63ef347df1af675b75ce31b275d06dc0 SHA1 : f6360eb3211a493c1b001282259b34a28e7f15b6 SHA256: f10088acdfefca0c8c53a33dff1a0b53a28036136cbe9fa30b7d125afbf798b5 —————————————————————————————————————————- Installation When the program […]
More…

Removed: expacess.dll

Malware: C:\sand-box\feedback.php.exe Removed: C:\WINDOWS\system32\expacess.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.31 – Kaspersky 7.0.0.125 2010.02.01 Backdoor.Win32.Papras.aq McAfee 5878 2010.01.31 Generic.dx!mfu Microsoft 1.5406 2010.01.31 – NOD32 4822 2010.01.31 Win32/PSW.Papras.AY Symantec 20091.2.0.41 2010.02.01 Trojan Horse —————————————————————————————————————————- Additional information File size: 103936 bytes MD5 : 1fc4f3b06cd52e7563b7627cd6520e7b SHA1 : 82f83942cd4109fbc2391c7126f4c532307bb249 SHA256: 17fcef4a88cfc950a62d2c79e1670cc9b9d742cd4ea3310e0df337fef7451ed8 —————————————————————————————————————————- Installation When the […]
More…

Removed: eksplorasi.exe, bronstab.exe, smss.exe, Empty.pif, WowTumpeh.com

Malware: WowTumpeh.com.exe Removed: C:\WINDOWS\eksplorasi.exe C:\WINDOWS\ShellNew\bronstab.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\smss.exe C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Empty.pif C:\Documents and Settings\Administrator\Templates\WowTumpeh.com —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.30 Email-Worm:W32/Brontok.AS Kaspersky 7.0.0.125 2010.01.31 Email-Worm.Win32.Brontok.q McAfee 5877 2010.01.30 W32/Rontokbro.gen@MM Microsoft 1.5406 2010.01.31 Worm:Win32/Brontok.L@mm NOD32 4821 2010.01.30 Win32/Brontok.T Symantec 20091.2.0.41 2010.01.31 W32.Rontokbro@mm —————————————————————————————————————————- Additional information File size: 349265 bytes […]
More…

Removed: mswsock32.dll, zydxc0126.dll

Malware: c02.exe Removed: C:\WINDOWS\system32\mswsock32.dll C:\Program Files\dnf\zydxc0126.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 Generic.Malware.dld!!.DF552F66 Kaspersky 7.0.0.125 2010.01.28 Trojan-Downloader.Win32.Small.kjv McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 TrojanDownloader:Win32/Small.NW NOD32 4813 2010.01.28 Win32/TrojanDownloader.Agent.PRQ Symantec 20091.2.0.41 2010.01.28 Downloader —————————————————————————————————————————- Additional information File size: 4096 bytes MD5 : 10ca2c71be94afe3ea2a4547ec558027 SHA1 : df37f79250f2c5f7ce44eea442e4a852abc934ac SHA256: 399da35bd5bb70b321c99ac91309775bf8b6df8dce2559f1a4d9f9dc2b2e3c3c —————————————————————————————————————————- Installation When […]
More…

Removed: wnzip32.exe, vesita.exe

Malware: Removed: C:\RECYCLER\S-1-5-21-8178931799-7915043595-038469661-2547\wnzip32.exe C:\RECYCLER\S-1-5-21-7878267239-4532775356-618228797-6665\vesita.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result DrWeb 5.0.1.12222 2010.01.29 BackDoor.Tdss.based.3 F-Secure 9.0.15370.0 2010.01.29 Trojan.Generic.2988966 Kaspersky 7.0.0.125 2010.01.29 Packed.Win32.TDSS.z McAfee 5875 2010.01.28 Generic Dropper.lr.gen Microsoft 1.5406 2010.01.29 Trojan:Win32/Alureon.CT NOD32 4817 2010.01.29 a variant of Win32/Olmarik.SV Symantec 20091.2.0.41 2010.01.29 Trojan Horse —————————————————————————————————————————- Additional information File size: 209410 bytes MD5 : e6b06bb0e1ecf107f1965d42de6843a7 SHA1 […]
More…

Removed: Debug.Dll

Malware: faf382861ea0f398bb3b6086b6f1ec35.exe Removed: C:\Program Files\Internet Explorer\Debug.Dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Heur.PT.emHeaqJqL9p Kaspersky 7.0.0.125 2010.01.26 Trojan-Dropper.Win32.QQpluq.ak McAfee 5873 2010.01.26 Generic.dx!lod Microsoft 1.5405 2010.01.26 TrojanDropper:Win32/Ceekat.B NOD32 4808 2010.01.26 Win32/PSW.QQPass.NFA Symantec 20091.2.0.41 2010.01.26 Infostealer.Gampass —————————————————————————————————————————- Additional information File size: 73731 bytes MD5 : b52681b127369ba061c306f42def95f5 SHA1 : fb9891c86b16b779b6342cca2d90872ca72c89cf SHA256: 4d878e1b0fdc2189e8a5decbbc6668579307e722e210fedb6a711a5c80f88951 —————————————————————————————————————————- Installation When […]
More…

Removed: winlogon.exe

Malware: install13400.exe Removed: C:\Documents and Settings\Administrator\Application Data\Microsoft\Windows\winlogon.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.28 Trojan-Downloader.Win32.FraudLoad.wxtr McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 Trojan:Win32/InternetAntivirus NOD32 4811 2010.01.27 a variant of Win32/Kryptik.CBJ Symantec 20091.2.0.41 2010.01.28 InternetAntivirus —————————————————————————————————————————- Additional information File size: 32768 bytes MD5 : 0faefe1ca43a63dd36a2747deb415497 SHA1 : 98e50937cad5757afe878969af5245ce4ac31117 SHA256: […]
More…

Removed: tbcore3.dll, seupd.exe, tbupd.exe

Malware: inst1012wse.exe Removed: C:\Program Files\IEToolbar\MoneyBooster\tbcore3.dll C:\Documents and Settings\All Users\Application Data\Update\seupd.exe C:\Documents and Settings\All Users\Application Data\Update\tbupd.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 – Kaspersky 7.0.0.125 2010.01.28 – McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 – NOD32 4814 2010.01.28 – Symantec 20091.2.0.41 2010.01.28 Trojan.Dropper —————————————————————————————————————————- Additional information File size: 2520151 bytes MD5 : […]
More…

Removed: remoney.exe

Malware: remoney.exe Removed: C:\Program Files\remoney\remoney.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.28 – Kaspersky 7.0.0.125 2010.01.28 Trojan.Win32.Scar.okn McAfee 5874 2010.01.27 – Microsoft 1.5406 2010.01.28 – NOD32 4812 2010.01.28 Win32/TrojanDownloader.Delf.PGZ Symantec 20091.2.0.41 2010.01.28 Trojan Horse —————————————————————————————————————————- Additional information File size: 227840 bytes MD5 : 0f421c497b04c6c64450bd88b7453f18 SHA1 : 12b77931e51dae28034359e667cc53fe76268408 SHA256: e0b0a7fe552e90fb262410f1d5c9f3d6bb7f0d60d84291d5f2bb5b075bbbd99d —————————————————————————————————————————- Installation When […]
More…

Removed: servicelayer.exe, wdmon.exe, svw.exe, ctfmon.exe, amoumain.exe

Malware: 123.exe Removed: C:\WINDOWS\servicelayer.exe C:\WINDOWS\wdmon.exe C:\WINDOWS\svw.exe C:\WINDOWS\ctfmon.exe C:\WINDOWS\amoumain.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 – Kaspersky 7.0.0.125 2010.01.26 Trojan-Dropper.Win32.Mudrop.fuc McAfee 5872 2010.01.25 – Microsoft 1.5405 2010.01.26 – NOD32 4806 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 2661888 bytes MD5 : 6411876d41f55fa21003afe9256b24d2 SHA1 : 8c7c365fa01cd64f7d20536c5d11d4c932c80ac9 SHA256: e8cbf67fff6888ff759fa59af3dbeabd2416db777c5b6593b9b09bf232d20536 —————————————————————————————————————————- […]
More…

Removed: mmcsys.dat, doret.exe

Malware: C:\sand-box\9946e.exe Removed: C:\Documents and Settings\Administrator\Application Data\Adobe\Update\mmcsys.dat C:\Documents and Settings\Administrator\Application Data\Adobe\Update\doret.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Trojan:W32/Agent.NCU Kaspersky 7.0.0.125 2010.01.27 Trojan.Win32.Inject.amla McAfee 5873 2010.01.26 Generic PWS.ej Microsoft 1.5406 2010.01.27 – NOD32 4809 2010.01.27 Win32/Riern.O Symantec 20091.2.0.41 2010.01.27 Trojan.Dropper —————————————————————————————————————————- Additional information File size: 208896 bytes MD5 : dfe3ef9884d9859790687f0d00e77ad5 SHA1 : […]
More…

Removed: pmufs.sys

Malware: 333.exe Removed: C:\WINDOWS\system32\drivers\pmufs.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 – Kaspersky 7.0.0.125 2010.01.26 Trojan-Downloader.Win32.Selvice.ne McAfee 5872 2010.01.25 Downloader-BRV Microsoft 1.5405 2010.01.26 TrojanDownloader:Win32/Caxnet.B NOD32 4805 2010.01.25 a variant of Win32/TrojanDownloader.Caxnet.BR Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 24576 bytes MD5 : 1b718d0a88ba96c2ff6f87e6c88255cb SHA1 : f84b5ad4f305618ae9f55a8334de6ab601431855 SHA256: 3b452283bbc236f6f17610744a3f708e7c5718957952cf74e5342d7e777eadc9 —————————————————————————————————————————- Installation […]
More…

Removed: qtplugin.exe, incognito.exe

Malware: sys.exe Removed: C:\WINDOWS\system32\qtplugin.exe C:\WINDOWS\system32\incognito.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 – Kaspersky 7.0.0.125 2010.01.27 Trojan.Win32.Buzus.dahy McAfee 5873 2010.01.26 – Microsoft 1.5406 2010.01.27 – NOD32 4808 2010.01.26 Win32/Induc.A Symantec 20091.2.0.41 2010.01.27 – —————————————————————————————————————————- Additional information File size: 344576 bytes MD5 : 78312c04081054a47f7466e29ca33e05 SHA1 : 318c11b047d6691aca4ab24dd50722ffafffd91d SHA256: 8fd9cdeeefd4e1d668e2cd0a2783916c8a89c7821ab494eddcd48bdf745efe0d —————————————————————————————————————————- Installation When the […]
More…

Removed: RamxtqC.dll

Malware: C:\sand-box\aaa.exe Removed: C:\WINDOWS\system32\RamxtqC.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Backdoor.Generic.126999 Kaspersky 7.0.0.125 2010.01.26 Backdoor.Win32.Agent.tnr McAfee 5872 2010.01.25 generic!bg.evs Microsoft 1.5405 2010.01.26 Backdoor:Win32/Venik.C NOD32 4805 2010.01.25 Win32/Agent.DKR Symantec 20091.2.0.41 2010.01.26 Trojan Horse —————————————————————————————————————————- Additional information File size: 52736 bytes MD5 : 626235e9e5862a76e41c0e3568625046 SHA1 : 78068610bcd8a1b37eb7e88d5659e955a3e297c3 SHA256: 717231f7bc8c9d81e9a28b21ce52cd68e11d044953abd8185e3476b4037a5fb1 —————————————————————————————————————————- Installation When the […]
More…

Removed: aecces.exe

Malware: Downloads_P.com.exe Removed: C:\WINDOWS\system32\aecces.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.27 Trojan:W32/Agent.NES Kaspersky 7.0.0.125 2010.01.27 – McAfee 5874 2010.01.27 Generic PWS.eg Microsoft 1.5406 2010.01.27 Trojan:Win32/VB.VV NOD32 4810 2010.01.27 a variant of Win32/Spy.Bancos.NQD Symantec 20091.2.0.41 2010.01.27 – —————————————————————————————————————————- Additional information File size: 121856 bytes MD5 : 82a958ad50fe1d29fb9557cefec32935 SHA1 : 4bd8ce93e22c8ae1970511045f93a8de150c812a SHA256: 550e83721fa021671aa8c8b19448a740bd7896bcd10b47790d1cede43858e50f —————————————————————————————————————————- […]
More…

Removed: dsound32.dll, dskquota32.dll, lsass.exe

Malware: update_for_media_player_(KB972036).exe Removed: C:\WINDOWS\system32\dsound32.dll C:\WINDOWS\system32\dskquota32.dll C:\Documents and Settings\Administrator\Application Data\SystemProc\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.26 – McAfee 5873 2010.01.26 – Microsoft 1.5405 2010.01.26 – NOD32 4808 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 535040 bytes MD5 : 9cb2732bd5eca4efa4c71366ce603c77 SHA1 : 742ff89ccf08fccc7de692289e16b7e219223daf SHA256: b7a0017842ee167bcc88290f1116321ad7a06b71a9b1e98c14f143820f70fafd […]
More…

Removed: svshost.dll, wininet.exe

Malware: sckt.exe Removed: C:\WINDOWS\system32\svshost.dll C:\WINDOWS\system32\wininet.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Dropped:Trojan.Generic.2892965 Kaspersky 7.0.0.125 2010.01.25 Email-Worm.Win32.Gibon.fh McAfee 5871 2010.01.24 Generic Obfuscated.e Microsoft 1.5405 2010.01.25 Backdoor:Win32/Syrutrk.A NOD32 4803 2010.01.25 a variant of Win32/Small.CVQ Symantec 20091.2.0.41 2010.01.25 Infostealer —————————————————————————————————————————- Additional information File size: 91136 bytes MD5 : 92687886854194d545fecb3f35691125 SHA1 : fb4d44e744d78f101a07f2a80337756cac599127 SHA256: 0e22594c35c4002dbb118be1df5ab67eb65d67f86c04a34472a3aec2ddf29e8b […]
More…

Removed: ojhut.sys

Malware: image.jpg.exe Removed: C:\WINDOWS\system32\drivers\ojhut.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.25 Trojan.Win32.Gudok.b McAfee 5871 2010.01.24 MultiDropper-TM Microsoft 1.5405 2010.01.25 Trojan:Win32/Koutodoor.A NOD32 4802 2010.01.24 – Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 58880 bytes MD5 : d1161074836a692ef800fada2b068002 SHA1 : b0992f8fe3a06041a46132e0dffac251f0bed7b0 SHA256: 8af3676280d0b2b61e2c46ebf9144fe81daae485136706d253b277e77b3e72a5 —————————————————————————————————————————- Installation When the […]
More…

Removed: kespgteais.dll

Malware: C:\sand-box\Setup.exe Removed: C:\WINDOWS\system32\senol\kespgteais.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Trojan.Generic.2973805 Kaspersky 7.0.0.125 2010.01.26 Trojan-PSW.Win32.LdPinch.alxl McAfee 5873 2010.01.26 PWS-LDPinch!ca Microsoft 1.5405 2010.01.26 TrojanDownloader:Win32/Utka.A NOD32 4808 2010.01.26 Win32/TrojanDownloader.Delf.OZM Symantec 20091.2.0.41 2010.01.26 Downloader —————————————————————————————————————————- Additional information File size: 283648 bytes MD5 : f216bc3d77812094ac28e8f35a7758a9 SHA1 : 51431cdbcda0ae85a1505e6b0a58caaaca450a49 SHA256: af04670ab1ff61b866aac4c32767890af9267b870a974bec45ea7e3e3af9496a —————————————————————————————————————————- Installation When the program […]
More…

Removed: mtlrd.sys

Malware: 1339.exe Removed: C:\Documents and Settings\All Users\Application Data\Microsoft\Media Player\wmp\mtlrd.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Heur.emW@XUiUPXh Kaspersky 7.0.0.125 2010.01.26 not-a-virus:AdWare.Win32.BHO.kup McAfee 5873 2010.01.26 potentially unwanted program Adware-Cinmus!o Microsoft 1.5405 2010.01.26 Trojan:Win32/Cinmus.N NOD32 4808 2010.01.26 probably a variant of Win32/Adware.Cinmus Symantec 20091.2.0.41 2010.01.26 Trojan.Cinmeng —————————————————————————————————————————- Additional information File size: 79620 bytes MD5 […]
More…

Removed: sdra64.exe, wnzip32.exe, gjetk.exe, lsass.exe

Malware: C:\sand-box\700.exe Removed: C:\WINDOWS\system32\sdra64.exe C:\RECYCLER\S-1-5-21-7295788371-6219362898-216113940-7089\wnzip32.exe C:\gjetk.exe C:\lsass.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Backdoor:W32/Sohif.gen!A Kaspersky 7.0.0.125 2010.01.25 Packed.Win32.Krap.x McAfee 5871 2010.01.24 Generic Dropper.lr Microsoft 1.5405 2010.01.25 – NOD32 4803 2010.01.25 a variant of Win32/Kryptik.BXO Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 18944 bytes MD5 : 9ab36d270d7c9aed4486c2ee2fd7c48d SHA1 : […]
More…

Removed: winhelp.exe, winhelp32.exe

Malware: 001.exe Removed: C:\WINDOWS\system32\winhelp.exe C:\WINDOWS\system32\winhelp32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Gen:Trojan.Packed.Heur.fiGeI3I44tf Kaspersky 7.0.0.125 2010.01.26 Trojan-GameThief.Win32.WOW.wdw McAfee 5873 2010.01.26 Generic Dropper!cba Microsoft 1.5405 2010.01.26 Trojan:Win32/Delf.FL NOD32 4808 2010.01.26 a variant of Win32/TrojanDropper.Delf.NRD Symantec 20091.2.0.41 2010.01.26 Trojan Horse —————————————————————————————————————————- Additional information File size: 93553 bytes MD5 : bdaf914daffd6b17b55e67f8e9bdab8b SHA1 : f87042ff9ae7965c04c8898f175fd4b256753a32 SHA256: […]
More…

Removed: extrac64_cab.exe, winhlp64.exe, H8SRTuthexouqxv.sys

Malware: C:\sand-box\load.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\extrac64_cab.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe C:\WINDOWS\system32\drivers\H8SRTuthexouqxv.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Trojan:W32/Agent.NDF Kaspersky 7.0.0.125 2010.01.25 Packed.Win32.TDSS.aa McAfee 5872 2010.01.25 – Microsoft 1.5405 2010.01.25 – NOD32 4804 2010.01.25 a variant of Win32/Kryptik.BUA Symantec 20091.2.0.41 2010.01.25 Downloader —————————————————————————————————————————- Additional information File size: 17408 bytes MD5 : […]
More…

Removed: extrac64_cab.exe, winhlp64.exe

Malware: C:\sand-box\setup.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\extrac64_cab.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.26 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.26 – McAfee 5873 2010.01.26 – Microsoft 1.5405 2010.01.26 – NOD32 4807 2010.01.26 – Symantec 20091.2.0.41 2010.01.26 – —————————————————————————————————————————- Additional information File size: 729088 bytes MD5 : 8f36fab2ab841d750ce111e7e0316a39 SHA1 : 0007d00f45596d2dc838435caa2e815b59c7c7e4 […]
More…

Removed: autorun.inf

Malware: malware.exe Removed: C:\autorun.inf —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.22 MemScan:Trojan.Generic.2008016 Kaspersky 7.0.0.125 2010.01.22 Trojan.Win32.Tdss.afwo McAfee 5869 2010.01.22 DNSChanger!o Microsoft 1.5405 2010.01.22 Trojan:Win32/Alureon.BK NOD32 4798 2010.01.22 a variant of Win32/Kryptik.RR Symantec 20091.2.0.41 2010.01.22 Trojan Horse —————————————————————————————————————————- Additional information File size: 93474 bytes MD5 : 980defa4a2f08a52e3ec7d51baa3f393 SHA1 : b8f22c15efd84a4f4b7409a632f312b8de5ffde3 SHA256: de7e27e772e038a601c7d7fd2753dc6ac7e57804c75123d0150635e3c2314528 —————————————————————————————————————————- […]
More…

Removed: SKYNETufmifhqp.sys

Malware: C:\sand-box\malware.exe Removed: C:\WINDOWS\system32\drivers\SKYNETufmifhqp.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2009.10.27 Trojan.CryptRedol.Gen.3 Kaspersky 7.0.0.125 2009.10.28 Trojan.Win32.TDSS.ahpm McAfee 5784 2009.10.27 DNSChanger.t Microsoft 1.5202 2009.10.28 Trojan:Win32/Alureon.BK NOD32 4551 2009.10.28 a variant of Win32/Kryptik.TX Symantec 1.4.4.12 2009.10.28 Packed.Generic.238 —————————————————————————————————————————- Additional information File size: 92160 bytes MD5 : 6d41a6a94c3e7195d7646fe8e31bca32 SHA1 : 7616588f65f93789384eca78a00246a14c8d8e36 SHA256: 698c4dc9a7f47d7886f02c8fac9bb5088ffc14a2bf88f5937b4bd821847ca35d —————————————————————————————————————————- Installation […]
More…

Removed: autorun.inf, boot.com

Malware: malware.exe Removed: C:\autorun.inf(C:\resycled\boot.com) —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Trojan.TDss.AU Kaspersky 7.0.0.125 2010.01.20 Trojan.Win32.DNSChanger.uek McAfee 5866 2010.01.19 DNSChanger.gen Microsoft 1.5302 2010.01.20 Trojan:Win32/Alureon.gen!J NOD32 4788 2010.01.20 a variant of Win32/Kryptik.CN Symantec 20091.2.0.41 2010.01.20 Trojan Horse —————————————————————————————————————————- Additional information File size: 80399 bytes MD5 : e9b0140a7d0590cdc49f1219cb13955f SHA1 : d70b44d5dedfd25be091cdbf6a8d495c61f38bee SHA256: 7ab46d7be02a91f8f716df7e82b8fcb101ce98981d5919ef7959467504f8e3a1 —————————————————————————————————————————- […]
More…

Removed: malware.exe

Malware: C:\sand-box\malware.exe Removed: C:\sand-box\malware.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 8.0.14470.0 2009.05.28 Rogue:W32/SpyGuard.gen!A McAfee 5629 2009.05.28 DNSChanger.f.gen.a Microsoft 1.4701 2009.05.28 Trojan:Win32/FakeSpyguard NOD32 4113 2009.05.28 a variant of Win32/Kryptik.DR Symantec 1.4.4.12 2009.05.28 Trojan.Zlob —————————————————————————————————————————- Additional information File size: 1007616 bytes MD5   : c1f17390465d59267c3aaa87aac914ac SHA1  : a110ed8887021a6ca174826ae4075f7b97eb51cc SHA256: 8ce70ed24891f17c03264b82a9d536a315ed44009034712e8f9da91e04dac565 —————————————————————————————————————————- Installation When the program is executed, it creates […]
More…

Removed: msctrl32.exe

Malware: spyeraser096.exe Removed: C:\WINDOWS\system32\msctrl32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Trojan.Generic.IS.420737 Kaspersky 7.0.0.125 2010.01.25 not-a-virus:FraudTool.Win32.SpyEraser.a McAfee 5871 2010.01.24 – Microsoft 1.5405 2010.01.25 – NOD32 4802 2010.01.24 – Symantec 20091.2.0.41 2010.01.25 Punisher —————————————————————————————————————————- Additional information File size: 3317345 bytes MD5 : 128888cd4cc7c701b8c56e2e018242be SHA1 : a45f3e7526c7d604ec344eec50c6e17155460fcb SHA256: 0461dbc10535bcc56382bb379422433eb9c5b6c400c80b3e4a8e5475f98907cd —————————————————————————————————————————- Installation When the program […]
More…

Removed: winlogon32.exe, sdra64.exe, lsass.exe, svc.exe, smss32.exe, odbn0.exe

Malware: load.exe Removed: C:\WINDOWS\system32\winlogon32.exe C:\WINDOWS\system32\sdra64.exe C:\WINDOWS\lsass.exe C:\WINDOWS\svc.exe C:\WINDOWS\system32\smss32.exe C:\WINDOWS\odbn0.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Trojan.Generic.CJ.AJYK Kaspersky 7.0.0.125 2010.01.23 Trojan-Dropper.Win32.Mudrop.fty McAfee 5870 2010.01.23 – Microsoft 1.5405 2010.01.23 TrojanDropper:Win32/Microjoin.gen!B NOD32 4800 2010.01.23 a variant of Win32/Kryptik.BCR Symantec 20091.2.0.41 2010.01.23 Trojan Horse —————————————————————————————————————————- Additional information File size: 1915904 bytes MD5 : b0cf55e2028f6b3dde658c3b9c4fc60a SHA1 […]
More…

Removed: gtsqakc.sys

Malware: C:\sand-box\doperrr.exe Removed: C:\WINDOWS\system32\drivers\gtsqakc.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 – Kaspersky 7.0.0.125 2010.01.25 Backdoor.Win32.VB.ldh McAfee 5871 2010.01.24 – Microsoft 1.5405 2010.01.25 Trojan:Win32/VB.VY NOD32 4803 2010.01.25 a variant of Win32/Injector.ASJ Symantec 20091.2.0.41 2010.01.25 Trojan Horse —————————————————————————————————————————- Additional information File size: 80384 bytes MD5 : 22dc8fa28d6261f8ea26b33263142087 SHA1 : 20d97de80fd42587ee8cee081b5dcfbf32c61999 SHA256: 2127ae0aa21e5e8be6e590011f64574bcb837425af6a922fbb3d683bbe987d53 —————————————————————————————————————————- […]
More…

Removed: ntload.dll, notepad.dll, scandisk.dll

Malware: C:\sand-box\pm.exe Removed: C:\Documents and Settings\Administrator\ntload.dll C:\WINDOWS\system32\notepad.dll C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\scandisk.dll —————————————————————————————————————————- You must restore the original versions of these files: —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Trojan.Generic.2974807 Kaspersky 7.0.0.125 2010.01.20 Packed.Win32.Katusha.j McAfee 5866 2010.01.19 Generic.dx!kwv Microsoft 1.5302 2010.01.20 Trojan:Win32/Opachki.A NOD32 4789 2010.01.20 a variant of Win32/Kryptik.BLS Symantec 20091.2.0.41 2010.01.20 Packed.Generic.271 […]
More…

Removed: Recycle.exe, AutoRun.inf, only.exe

Malware: C:\sand-box\wow.exe Removed: C:\WINDOWS\Recycle.exe C:\AutoRun.inf C:\WINDOWS\system32\only.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Generic.FWB.3DE47DE8 Kaspersky 7.0.0.125 2010.01.23 Worm.Win32.AutoRun.bms McAfee 5869 2010.01.22 Downloader-BFO Microsoft 1.5405 2010.01.23 Worm:Win32/Autorun.CY NOD32 4798 2010.01.22 a variant of Win32/AutoRun.Delf.P Symantec 20091.2.0.41 2010.01.23 W32.SillyDC —————————————————————————————————————————- Additional information File size: 42478 bytes MD5 : fb53792de1f9f0246fba12a822d5f0a5 SHA1 : dc6de3a6cae995015f52c38761ea9957bb4a58cf SHA256: 3ccec0578929de773ae1565aadf2a775de557883453cb5b7ad404d5c7d6ad115 […]
More…

Removed: 59d8.dat

Malware: C:\sand-box\rav.exe Removed: C:\WINDOWS\system32\59d8.dat —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.22 – Kaspersky 7.0.0.125 2010.01.22 Backdoor.Win32.ZZSlash.bvl McAfee 5869 2010.01.22 – Microsoft 1.5405 2010.01.22 Trojan:Win32/Redosdru.D NOD32 4798 2010.01.22 a variant of Win32/Redosdru.AA Symantec 20091.2.0.41 2010.01.22 – —————————————————————————————————————————- Additional information File size: 673992 bytes MD5 : 0a4dd6521f14e4b38e1ae8f9c7634722 SHA1 : f5181730d8041a439f0c15a99a0a1b0eb6abbef4 SHA256: 671940d3a190943e8f817906e76815891f7d219848d3ebd4ad9522ac0c130f93 —————————————————————————————————————————- Installation […]
More…

Removed: Debug.Dll

Malware: qq.exe Removed: C:\Program Files\Internet Explorer\Debug.Dll —————————————————————————————————————————- You must restore the original versions of these files: —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Gen:Trojan.Heur.PT.emHeaqJqL9p Kaspersky 7.0.0.125 2010.01.21 Trojan-Dropper.Win32.QQpluq.ak McAfee 5868 2010.01.21 potentially unwanted program Suspect-26!F63C9EA425FD Microsoft 1.5302 2010.01.21 TrojanDropper:Win32/Ceekat.B NOD32 4794 2010.01.21 Win32/PSW.QQPass.NFA Symantec 20091.2.0.41 2010.01.21 Infostealer.Gampass —————————————————————————————————————————- Additional information File size: […]
More…

Removed: UACd.sys

Malware: C:\sand-box\malware.exe Removed: C:\WINDOWS\system32\drivers\UACd.sys —————————————————————————————————————————- You must restore the original versions of these files: —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Trojan.Generic.2048522 Kaspersky 7.0.0.125 2010.01.20 Packed.Win32.Tdss.m McAfee 5866 2010.01.19 FakeAlert-SpywareGuard.gen.b Microsoft 1.5302 2010.01.20 Trojan:Win32/Alureon.gen!J NOD32 4788 2010.01.20 a variant of Win32/Kryptik.QC Symantec 20091.2.0.41 2010.01.20 Packed.Generic.200 —————————————————————————————————————————- Additional information File size: 102400 bytes MD5   : […]
More…

Removed: autorun.inf

Malware: C:\sand-box\malware.exe Removed: C:\autorun.inf —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Worm.Generic.66462 Kaspersky 7.0.0.125 2010.01.20 Trojan.Win32.TDSS.affr McAfee 5866 2010.01.19 FakeAlert-DA Microsoft 1.5302 2010.01.20 Trojan:Win32/Alureon.BK NOD32 4788 2010.01.20 Win32/AutoRun.ABH Symantec 20091.2.0.41 2010.01.20 Backdoor.Tidserv —————————————————————————————————————————- Additional information File size: 21504 bytes MD5   : 548c2a5a18903898a8b141942f792f91 SHA1  : bf5ee152f2b8f8b2fd7c6520c303d2d85f5745e2 SHA256: e418b60091f47f572f0fe8b69554b8dc1734d8db43945b2d28ff0494947c4f3d —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: TDSSpqxt.sys

Malware: C:\sand-box\malware.exe Removed: C:\WINDOWS\system32\drivers\TDSSpqxt.sys —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 8.0.14470.0 2009.05.27 Rootkit.Win32.TDSS.bzd Kaspersky 7.0.0.125 2009.05.27 Rootkit.Win32.TDSS.bzd McAfee 5627 2009.05.26 – Microsoft 1.4701 2009.05.27 Trojan:Win32/Alureon.gen!J NOD32 4108 2009.05.27 a variant of Win32/Kryptik.CV Symantec 1.4.4.12 2009.05.27 Packed.Generic.200 —————————————————————————————————————————- Additional information File size: 135168 bytes MD5   : d30f3b66f9fa178ac099add2a375b0be SHA1  : e000abf04ab9d37f84d398d5a86003c749dd04e4 SHA256: ea1939a9b554a0e705bae40934acfed72bf9f0a28cab9fb5d84190c9b9a4e120 —————————————————————————————————————————- Installation When the program […]
More…

Removed: autorun.inf

Malware: C:\sand-box\malware.exe Removed: C:\autorun.inf —————————————————————————————————————————- You must restore the original versions of these files: —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.25 Rogue:W32/SpyGuard.gen!A Kaspersky 7.0.0.125 2010.01.25 Packed.Win32.Tdss.e McAfee 5871 2010.01.24 DNSChanger.f.gen.a Microsoft 1.5405 2010.01.25 Trojan:Win32/Alureon.gen!J NOD32 4802 2010.01.24 a variant of Win32/Kryptik.CN Symantec 20091.2.0.41 2010.01.25 Backdoor.Tidserv —————————————————————————————————————————- Additional information File size: 32256 bytes MD5   : […]
More…

Removed: 6to4ex.dll

Malware: C:\sand-box\omll18.exe Removed: C:\WINDOWS\system32\6to4ex.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.23 Trojan-Dropper.Win32.Agent.blai McAfee 5869 2010.01.22 – Microsoft 1.5405 2010.01.23 – NOD32 4799 2010.01.23 – Symantec 20091.2.0.41 2010.01.23 – —————————————————————————————————————————- Additional information File size: 38932 bytes MD5   : d704c1205e610b45c7e33decfd7670fe SHA1  : 3a1e219658b7bdadcdd515a6c1b5b5cfc37b9782 SHA256: a0315e8e325fc804c18e76a00c5e714e075d5a4dc0b17808436c9036a1f687f6 —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: niu.exe, game.dll, xydzyh.exe, tsuwvyx.exe, fegfhk.exe, 797752.exe, yuclx.exe

Malware: C:\sand-box\niu.exe Removed: C:\WINDOWS\system32\niu.exe C:\WINDOWS\system32\game.dll C:\WINDOWS\system32\xydzyh.exe C:\Program Files\Internet Explorer\tsuwvyx.exe C:\Program Files\Far\fegfhk.exe C:\WINDOWS\system32\797752.exe C:\Program Files\Windows NT\Accessories\yuclx.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Gen:Trojan.Heur.cm0@eDLVy2mb Kaspersky 7.0.0.125 2010.01.23 Trojan-Downloader.Win32.VB.tzk McAfee 5869 2010.01.22 – Microsoft 1.5405 2010.01.23 Trojan:Win32/VB.RA NOD32 4798 2010.01.22 – Symantec 20091.2.0.41 2010.01.23 Downloader —————————————————————————————————————————- Additional information File size: 36864 bytes MD5   : f0c2e4ff591a4c7497726c30a54353ad SHA1  : […]
More…

Removed: Servicx.exe

Malware: new301.exe Removed: C:\WINDOWS\system32\Servicx.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 – Kaspersky 7.0.0.125 2010.01.23 Trojan-Downloader.Win32.Adload.nsm McAfee 5869 2010.01.22 Downloader-CBG Microsoft 1.5405 2010.01.23 – NOD32 4798 2010.01.22 Win32/StartPage.NPE Symantec 20091.2.0.41 2010.01.23 – —————————————————————————————————————————- Additional information File size: 418118 bytes MD5   : b91b751243128e3342c55ad265ba4da7 SHA1  : 5d21b422e1f277ba8bbbf0c44770e2e7648d315d SHA256: 18deaa2698153dd657c2ef44441ac7406ccb752133285bffbd9121844d29f2ac —————————————————————————————————————————- Installation When the program is executed, it […]
More…

Removed: mhzx.bat, gameclien.exe

Malware: mz.exe Removed: C:\WINDOWS\system32\mhzx.bat (C:\Program Files\WLmhzx\gameclien.exe) —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 – Kaspersky 7.0.0.125 2010.01.21 – McAfee 5868 2010.01.21 – Microsoft 1.5302 2010.01.21 – NOD32 4794 2010.01.21 – Symantec 20091.2.0.41 2010.01.21 Infostealer.Gampass —————————————————————————————————————————- Additional information File size: 18432 bytes MD5 : 1d8b530e57b5f1f723d04fb43e7adbc1 SHA1 : ec70a9ba4449bb2f7c505b91af9a052792909a8f SHA256: cd833911013cae46ce50c4b51519f55d875b3d811becdfe23a18b364538dd56a —————————————————————————————————————————- Installation When […]
More…

Removed: Print32.dll

Malware: msn.exe Removed: C:\WINDOWS\Windows7\Print32.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Adware.Generic.100463 Kaspersky 7.0.0.125 2010.01.21 not-a-virus:AdWare.Win32.AdMedia.ed McAfee 5868 2010.01.21 potentially unwanted program Adware-Cinmus Microsoft 1.5302 2010.01.21 Trojan:Win32/Cinmeng NOD32 4794 2010.01.21 probably a variant of Win32/Adware.Cinmus Symantec 20091.2.0.41 2010.01.21 Adware.Gen —————————————————————————————————————————- Additional information File size: 176720 bytes MD5 : a618780b96c4e567854728e852680094 SHA1 : c23c7d05e3858aa6074111b69b24cd68dd03e311 […]
More…

Removed: midimap.dll

Malware: C:\sand-box\mj.exe Removed: C:\WINDOWS\system32\midimap.dll —————————————————————————————————————————- You must restore the original versions of these files: C:\WINDOWS\system32\midimap.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.21 Trojan.Win32.Agent.dfpz McAfee 5868 2010.01.21 – Microsoft 1.5302 2010.01.21 – NOD32 4794 2010.01.21 probably a variant of Win32/PSW.OnLineGames.OSE Symantec 20091.2.0.41 2010.01.21 Trojan Horse —————————————————————————————————————————- Additional information File […]
More…

Removed: ss12D40003dll.dll

Malware: C:\sand-box\lszt.exe Removed: C:\WINDOWS\system32\ss12D40003dll.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Trojan.Generic.2973396 Kaspersky 7.0.0.125 2010.01.21 Trojan-Dropper.Win32.Grizl.ju McAfee 5868 2010.01.21 PWS-OnlineGames.gl Microsoft 1.5302 2010.01.21 TrojanDropper:Win32/Lolyda.F NOD32 4794 2010.01.21 Win32/PSW.OnLineGames.NYT Symantec 20091.2.0.41 2010.01.21 Infostealer.Gampass —————————————————————————————————————————- Additional information File size: 30880 bytes MD5 : 74d7d2e40400fbb0684499155361b95f SHA1 : 4bcd131ff70a14c04614c2e2b6395c4e0a290c2c SHA256: e2b062d28782bc6116e85182345a56c9bfbaba7947bb6737a8a3e6aee8871fb7 —————————————————————————————————————————- Installation When the program […]
More…

Removed: apphelp32.dll

Malware: C:\sand-box\ie.exe Removed: C:\WINDOWS\system32\apphelp32.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.21 Trojan.Win32.Pincav.pqr McAfee 5868 2010.01.21 Suspect-02!81CA30150F81 Microsoft 1.5302 2010.01.21 VirTool:Win32/CeeInject.gen!AZ NOD32 4794 2010.01.21 a variant of Win32/Injector.ALW Symantec 20091.2.0.41 2010.01.21 Adware.StartPage —————————————————————————————————————————- Additional information File size: 60720 bytes MD5 : 81ca30150f81a5ff97573c8043ab4737 SHA1 : 7f28a06770f8ebcab6c13d99860ea3a88b45bf5e SHA256: 4e23ca3896a5f0a6af6ce292d9388e177d62cf9f9bf08502cbaea4ef6f8141a2 —————————————————————————————————————————- Installation […]
More…

Removed: Recycle.exe

Malware: C:\sand-box\cq.exe Removed: C:\WINDOWS\Recycle.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Trojan.Downloader.Agent.XZO Kaspersky 7.0.0.125 2010.01.23 Worm.Win32.AutoRun.ajo McAfee 5869 2010.01.22 W32/Autorun.worm!hq Microsoft 1.5405 2010.01.23 Trojan:Win32/Agent.gen!J NOD32 4798 2010.01.22 a variant of Win32/Injector.DY Symantec 20091.2.0.41 2010.01.23 Trojan Horse —————————————————————————————————————————- Additional information File size: 49102 bytes MD5 : 48998d53340408f67d6d9c8ee9ac18dd SHA1 : 0ba8fce8dedb946d0f4ce73068393556f3c436c8 SHA256: d8dc1191be289d2a97ac23ef5456957966920fd6c6add39a506ae25329a997ee —————————————————————————————————————————- […]
More…

Removed: msepdm32.exe

Malware: 02b3fa5f31589c3a70deb6e6a26b6b38.exe Removed: C:\WINDOWS\system32\msepdm32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 – Kaspersky 7.0.0.125 2010.01.23 Trojan-Spy.Win32.Zbot.adxh McAfee 5869 2010.01.22 – Microsoft 1.5405 2010.01.23 PWS:Win32/Zbot.gen!R NOD32 4798 2010.01.22 a variant of Win32/Kryptik.BXJ Symantec 20091.2.0.41 2010.01.23 – —————————————————————————————————————————- Additional information File size: 594432 bytes MD5 : c01199630c58d217d6e266679dfb5a02 SHA1 : 08457b888c4d669389f77eb2ccd95cb821b647e6 SHA256: 3b7fa24066fdf2dbe80fd18cd3db14fc01f5fa661348a9cce6d334dbc12a983d —————————————————————————————————————————- Installation […]
More…

Removed: winsys.dll

Malware: 2.exe Removed: C:\WINDOWS\MICROSOFT\winsys.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.23 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.23 not-a-virus:AdWare.Win32.AdMedia.ed McAfee 5869 2010.01.22 potentially unwanted program Adware-Cinmus!j Microsoft 1.5405 2010.01.23 Trojan:Win32/Cinmus.O NOD32 4798 2010.01.22 Win32/Adware.Cinmus Symantec 20091.2.0.41 2010.01.23 Adware.Gen —————————————————————————————————————————- Additional information File size: 161742 bytes MD5 : ddb60e096955d4729ddc830dd0c0e9a2 SHA1 : dc45c99c74c4c80ca12bdff3f6d978be82e0cd6e SHA256: e84e3258ffdf26a4acd862de17268f6214420a5e53ada17e839ebc78292cc988 —————————————————————————————————————————- Installation […]
More…

Removed: DBS.EXE

Malware: DBS.EXE Removed: C:\Program Files\DBS.EXE —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 Trojan.Generic.2850096 Kaspersky 7.0.0.125 2010.01.21 Trojan.Win32.Pincav.nup McAfee 5868 2010.01.21 BackDoor-DOQ.gen.w Microsoft 1.5302 2010.01.21 VirTool:Win32/DelfInject.gen!X NOD32 4794 2010.01.21 probably a variant of Win32/Spy.Delf.OAE Symantec 20091.2.0.41 2010.01.21 Backdoor.Trojan —————————————————————————————————————————- Additional information File size: 57344 bytes MD5 : 98556bd2c84046ac8b5bb0a2859f3757 SHA1 : a28f0cabf928633aab8f37ac0465c54916cd7eb6 SHA256: 41baa769cc05e253d22abe909ecaf9ecb032c852b8c57392c804a4efb36d8cf7 […]
More…

Removed: winfdd.exe

Malware: C:\sand-box\bbb.exe Removed: C:\WINDOWS\system32\winfdd.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.22 – Kaspersky 7.0.0.125 2010.01.22 Trojan.Win32.Agent.dgar McAfee 5868 2010.01.21 – Microsoft 1.5302 2010.01.21 Trojan:Win32/Russkill.A NOD32 4795 2010.01.22 a variant of Win32/Delf.OXO Symantec 20091.2.0.41 2010.01.22 – —————————————————————————————————————————- Additional information File size: 71168 bytes MD5 : 6ab84adb1bcb02622c89af526a2a2fe8 SHA1 : 6b3cf1610022f2ca5952650c67a825447932a65f SHA256: 88b9fd77e5dad8f827a170ffee412f97306ed8202f3619b75ab4b7585382ac1b —————————————————————————————————————————- Installation […]
More…

Removed: taoba_1.dll, srcile.dll

Malware: C:\sand-box\yingzi.exe Removed: C:\WINDOWS\System32\taoba_1.dll C:\WINDOWS\System32\srcile.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.22 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.21 – Microsoft 1.5302 2010.01.21 – NOD32 4795 2010.01.22 a variant of Win32/Agent.QNU Symantec 20091.2.0.41 2010.01.22 Downloader —————————————————————————————————————————- Additional information File size: 55808 bytes MD5 : 15aad38d9588b5b40cdb755919e67ed9 SHA1 : d83733c61a3e5cd37f46d3878a2ffb7c0db3c787 SHA256: bf9ca935c32edc4fe1665fd34d083bacdffc1eab67a7ad5f2099d5637f13fce9 —————————————————————————————————————————- Installation When the program […]
More…

Removed: svchost.exe

Malware: server.exe Removed: C:\WINDOWS\system32\awServ\svchost.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 – Kaspersky 7.0.0.125 2010.01.21 Trojan.Win32.Refroso.aiuw McAfee 5867 2010.01.20 – Microsoft 1.5302 2010.01.20 – NOD32 4791 2010.01.20 probably a variant of Win32/Injector.AQN Symantec 20091.2.0.41 2010.01.21 – —————————————————————————————————————————- Additional information File size: 455129 bytes MD5 : 14aa4ae3008eeba8ddc6035acbbcf937 SHA1 : fb974d9a14205a36eeb75d8d5cacfece0b7eb96a SHA256: 84b41824d5c8543247d7b8c0d2db1094ef0755d43a81ffd479238a525197d0d0 —————————————————————————————————————————- […]
More…

Removed: vpmlsysguard.exe

Malware: eH999a4551V0100f070006R00000000102Td2cd092d201l0409K23fa2031320.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\icgwep\vpmlsysguard.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 – Kaspersky 7.0.0.125 2010.01.21 – McAfee 5867 2010.01.20 – Microsoft 1.5302 2010.01.20 – NOD32 4791 2010.01.20 – Symantec 20091.2.0.41 2010.01.21 Trojan.FakeAV —————————————————————————————————————————- Additional information File size: 256256 bytes MD5 : 6df2f469235c7f4da92d22d71d6a2bd8 SHA1 : f8c89baf5d3715fdb572f6f95d00fa7dbf36316b SHA256: b0236f5af7958fe116e9dc29ae11deadc37f858f02a3d7915fdff0cbcb1cc8b7 —————————————————————————————————————————- […]
More…

Removed: 4df1.dll

Malware: C:\sand-box\e.exe Removed: C:\WINDOWS\system32\4df1.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.21 MemScan:Trojan.Generic.1457051 Kaspersky 7.0.0.125 2010.01.21 Backdoor.Win32.ZZSlash.buk McAfee 5867 2010.01.20 – Microsoft 1.5302 2010.01.20 – NOD32 4791 2010.01.20 – Symantec 20091.2.0.41 2010.01.21 – —————————————————————————————————————————- Additional information File size: 803556 bytes MD5 : 34695f790f4e2c3a7985fb7ea3765a86 SHA1 : 9b7e5ab87ef29c84b828edcf922ec345539aabf3 SHA256: 0760ee3a297531041cc807dab0119c83dfaada7fee5b4432d5b8d75de14e0e4b —————————————————————————————————————————- Installation When the program […]
More…

Removed: Windows32.exe

Malware: Abrir.exe Removed: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows32.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.04 BehavesLike:Trojan.Downloader Kaspersky 7.0.0.125 2010.01.04 Trojan-Downloader.Win32.Banload.qgc McAfee 5850 2010.01.03 Generic Malware.eb Microsoft 1.5302 2010.01.04 TrojanDownloader:Win32/Banload.DX NOD32 4741 2010.01.04 probably a variant of Win32/TrojanDownloader.Banload Symantec 20091.2.0.41 2010.01.04 Suspicious.MH690.A —————————————————————————————————————————- Additional information File size: 205312 bytes MD5   : f20e92d4f3159f2abc5839c32dbc2746 SHA1  : bddbe803d7cc1d08fa1c167b8d19543077f2facd SHA256: […]
More…

Removed: cliconfg64.exe, winhlp64.exe

Malware: C:\sand-box\setup.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\cliconfg64.exe C:\Documents and Settings\Administrator\Local Settings\Temp\winhlp64.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.20 Packed.Win32.TDSS.aa McAfee 5866 2010.01.19 FakeAlert-FQ Microsoft 1.5302 2010.01.20 Trojan:Win32/Alureon.BT NOD32 4791 2010.01.20 a variant of Win32/Kryptik.BWS Symantec 20091.2.0.41 2010.01.20 – —————————————————————————————————————————- Additional information File size: 712704 bytes MD5   : f3c06c435bec76c6e1d9a3b47b059401 SHA1  : 7c930539745b8c92c081da2894339e2501dc4d34 […]
More…

Removed: Ma0ya0.exe

Malware: Removed: C:\WINDOWS\system32\Ma0ya0.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.20 Generic.Malware.FBdld!.69337805 Kaspersky 7.0.0.125 2010.01.20 Trojan.Win32.Scar.bdrm McAfee 5866 2010.01.19 Generic.dx!lht Microsoft 1.5302 2010.01.20 – NOD32 4787 2010.01.19 probably unknown NewHeur_PE Symantec 20091.2.0.41 2010.01.20 Trojan Horse —————————————————————————————————————————- Additional information File size: 7361 bytes MD5 : e7bf0e74a9ab882b0430395f1c196913 SHA1 : cec8669cb8702b1387c380eabb3f95485459864d SHA256: b8c9ac6813ccae8f81abc9ab7653e736a81b3ef1f11a3810c1cc04d6f4310ec7 —————————————————————————————————————————- Installation When […]
More…

Removed: biebei.exe

Malware: 67e19666cb7fbf90d31c43a6d030745a.exe Removed: C:\Documents and Settings\Administrator\biebei.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.19 Trojan.VB.Chinky.F Kaspersky 7.0.0.125 2010.01.19 Worm.Win32.VBNA.jdn McAfee 5865 2010.01.18 W32/VBNA.worm Microsoft 1.5302 2010.01.19 Worm:Win32/Vobfus.F NOD32 4784 2010.01.18 a variant of Win32/AutoRun.VB.GJ Symantec 20091.2.0.41 2010.01.19 W32.Changeup —————————————————————————————————————————- Additional information File size: 61440 bytes MD5   : c9117a206749527cd5e59b3ef6e31c1c SHA1  : 81dcbd70771e3ecbecb591a7104680c7350ac8ab SHA256: 72f7c9ce8eb2b722527d443193aaf7f3a2693f83b8b58e6656f6343f1f8639df —————————————————————————————————————————- Installation When […]
More…

Removed: winsk.exe

Malware: C:\sand-box\winsk.exe Removed: C:\Program Files\winsk\winsk.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 – Kaspersky 7.0.0.125 2010.01.17 Trojan-Dropper.Win32.VB.iyk McAfee 5864 2010.01.17 BackDoor-DZP Microsoft 1.5302 2010.01.17 VirTool:Win32/VBInject.U NOD32 4780 2010.01.17 Win32/Poison Symantec 20091.2.0.41 2010.01.17 Infostealer.Banker.C —————————————————————————————————————————- Additional information File size: 122299 bytes MD5 : a37edf3d8f5948f91d1c8ebf19234a94 SHA1 : fa654dc1df3abf99b0ea7d68e77d4c44b3bb4f49 SHA256: ccda03fec098b9a8292a30d2c8d25373da6c9ab3187a32837dfa711a0abe8b06 —————————————————————————————————————————- Installation When the […]
More…

Removed: winternet.exe

Malware: C:\sand-box\winternet.exe Removed: C:\sand-box\winternet.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 – Kaspersky 7.0.0.125 2010.01.18 Trojan-Downloader.Win32.VB.tzj McAfee 5864 2010.01.17 New Malware.d Microsoft 1.5302 2010.01.17 – NOD32 4780 2010.01.17 Win32/VB.ORM Symantec 20091.2.0.41 2010.01.18 – —————————————————————————————————————————- Additional information File size: 99328 bytes MD5 : 90f19fcd64a4f6517025a73bac172805 SHA1 : 574821b79567cb6a551e676cb612f9990398930c SHA256: 0d01927ff03f09e16b45b297f71a8e1776f59f9055c144b65f9aab789be7138a —————————————————————————————————————————- Installation When the […]
More…

Removed: sw1934.dll, wslive.exe

Malware: VersaoAdobeFlashPlayer.exe Removed: C:\WINDOWS\system32\sw1934.dll C:\WINDOWS\system32\wslive.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 – Kaspersky 7.0.0.125 2010.01.17 Trojan-Downloader.Win32.Agent.czli McAfee 5864 2010.01.17 Suspect-02!843230D51A93 Microsoft 1.5302 2010.01.17 – NOD32 4779 2010.01.17 a variant of Win32/TrojanDownloader.VB.NYR Symantec 20091.2.0.41 2010.01.17 Infostealer.Bancos —————————————————————————————————————————- Additional information File size: 15572 bytes MD5 : 843230d51a93c52714d69162c42cf143 SHA1 : d79d0f748bacfd6414a8e2168d9ace7126ff537a SHA256: eaa3b664183b8ae3f7db8c36d7c52cb82d89ff7d5eee275f0c703dbe6913c12a —————————————————————————————————————————- […]
More…

Removed:spoolsv.exe

Malware: postcard.gif.exe Removed: C:\WINDOWS\Temp\spoolsv\spoolsv.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 – Kaspersky 7.0.0.125 2010.01.17 Backdoor.IRC.Zapchast.zwrc McAfee 5864 2010.01.17 Generic BackDoor Microsoft 1.5302 2010.01.17 Backdoor:Win32/IRCFlood NOD32 4780 2010.01.17 REG/RunKeys.NAA Symantec 20091.2.0.41 2010.01.17 IRC.Backdoor.Trojan —————————————————————————————————————————- Additional information File size: 949984 bytes MD5 : 68a521cd1d46ae3b99d18f4c4dabe1b5 SHA1 : 7939051d772a1f92b12632f0a1d8bdb8d770ec93 SHA256: 427b6250c090951c0b9f5379136834b022557b15cfbb164d0e89fbade8fcf2bd —————————————————————————————————————————- Installation When the […]
More…

Removed: sysmhzx4.dll

Malware: C:\sand-box\ma1.exe Removed: C:\WINDOWS\system32\sysmhzx4.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.18 Dropped:Generic.Malware.Fdld.FC33437D Kaspersky 7.0.0.125 2010.01.18 Trojan-GameThief.Win32.Nilage.abd McAfee 5865 2010.01.18 – Microsoft 1.5302 2010.01.18 PWS:Win32/OnLineGames.FR NOD32 4784 2010.01.18 a variant of Win32/PSW.OnLineGames.ODD Symantec 20091.2.0.41 2010.01.18 Suspicious.DLoader —————————————————————————————————————————- Additional information File size: 27637 bytes MD5 : a6d6a30572712d3ca9efe649bdba74cf SHA1 : 8ce59ed44ada66009e784a944ea5e260358617d5 SHA256: 67fc981913b7206a552f43ad15f01e0345a908870d4b7647c90a35f4cfecb70d —————————————————————————————————————————- Installation […]
More…

Removed: apphelp32.dll

Malware: C:\sand-box\ie2.exe Removed: C:\WINDOWS\system32\apphelp32.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 Suspicious:W32/Riskware!Online Kaspersky 7.0.0.125 2010.01.17 Trojan.Win32.Pincav.ooa McAfee 5864 2010.01.17 Suspect-02!869FA2F1DA51 Microsoft 1.5302 2010.01.17 VirTool:Win32/CeeInject.gen!AZ NOD32 4780 2010.01.17 a variant of Win32/Injector.ALW Symantec 20091.2.0.41 2010.01.17 Adware.StartPage —————————————————————————————————————————- Additional information File size: 59696 bytes MD5 : 869fa2f1da51953973693e6dbf8a1b8e SHA1 : f003394c954635fc056a4c47e702349ad4463ee6 SHA256: 11c7cbf8eb5d7d9b76eb3757c098a920e739d8974a9b95cf290eb06a1569db96 —————————————————————————————————————————- Installation […]
More…

Removed: lsoss.exe

Malware: hel.exe Removed: C:\WINDOWS\system\lsoss.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 – Kaspersky 7.0.0.125 2010.01.17 Worm.Win32.AutoRun.hbk McAfee 5864 2010.01.17 – Microsoft 1.5302 2010.01.17 VirTool:Win32/VBInject.DN NOD32 4780 2010.01.17 probably a variant of Win32/Injector.APY Symantec 20091.2.0.41 2010.01.17 – —————————————————————————————————————————- Additional information File size: 167936 bytes MD5 : f3e1db2a78ab7fb9a753a0b55dbf0d17 SHA1 : a2ad7e6e4483ee645776b255c4f683e2adee1682 SHA256: 1f0a230e400ed1684d74dd67614f37646c9da4a18035532c11dd1fcbcea8bb9f —————————————————————————————————————————- […]
More…

Removed: GhostAV.exe

Malware: GhostAntivirusInstall_9__.exe Removed: C:\program files\Ghost Antivirus\GhostAV.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.18 – Kaspersky 7.0.0.125 2010.01.18 Trojan-Downloader.Win32.FraudLoad.gjv McAfee 5864 2010.01.17 Generic FakeAlert!du Microsoft 1.5302 2010.01.17 – NOD32 4781 2010.01.18 Win32/Adware.Antivirus2008 Symantec 20091.2.0.41 2010.01.18 Downloader.MisleadApp —————————————————————————————————————————- Additional information File size: 578560 bytes MD5 : 9eb0c33803a78d4f429db494c254208d SHA1 : a584b49cfae84236cebaee16b2b14d31c9decda6 SHA256: eec727b6c617195f7e206573579fe82be1ea2e4714806d0c79d0b48c8501dda2 —————————————————————————————————————————- Installation […]
More…

Removed: service.exe

Malware: ftp.exe Removed: C:\WINDOWS\system32\ctfmon\service.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.01.17 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.01.17 Virus.Win32.Parite.b McAfee 5864 2010.01.17 W32/Pate.b Microsoft 1.5302 2010.01.17 Virus:Win32/Parite.B NOD32 4779 2010.01.17 Win32/Parite.B Symantec 20091.2.0.41 2010.01.17 W32.Pinfi —————————————————————————————————————————- Additional information File size: 1256410 bytes MD5 : 53f91e374648387938e659d3b5578121 SHA1 : 0bb63056d53887d5aa9193c35f9e3b073cf8fed5 SHA256: 5477c3e929e5681587d5e2e1464a822922b3e060e943bd46f3a9a640d38c1bcf —————————————————————————————————————————- Installation When the program […]
More…