VALIDATOR.EXE is Trojan Gataka

July 16, 2012 by NightWatcher
Filed under: Malware 
: Solved!

Fix it immediately:

We checked some samples of VALIDATOR.EXE and detected the file VALIDATOR.EXE as threat.
Remove the VALIDATOR.EXE file from your computer right now.
Removal tool: http://www.unhackme.com

Malware Analysis of VALIDATOR.EXE
Full path on a computer: %AppData%\Apple\{33E2E2AE-6646-4225-A86B-EA12283B234C}\Validator.exe

Detected by UnHackMe:

Item Name: Validator
Author: Unknown
Related File: %APPDATA%\APPLE\{33E2E2AE-6646-4225-A86B-EA12283B234C}\VALIDATOR.EXE
Type: Registry Run

Removal Results: Success
Number of reboot: 1

VALIDATOR.EXE is known as:

Trojan.Gataka

VALIDATOR.EXE hash:

  • MD5: 55c1296cdacbc7fe125628bc17677f9e
How to quickly detect VALIDATOR.EXE presence?

Registry:
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Validator: “%AppData%\Apple\{33E2E2AE-6646-4225-A86B-EA12283B234C}\Validator.exe”
Folders:
  • %AppData%\Apple
  • %AppData%\TeamViewer
Files:
  • %AppData%\Apple\{33E2E2AE-6646-4225-A86B-EA12283B234C}\Validator.exe


Recommended: UnHackMe anti-rootkit and anti-malware

Premium software: RegRun Security Suite (Good choice for removal and protection)

Written by

Malware Hunter.

Tags: Gataka, Trojan, VALIDATOR.EXE

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.