Removed: ave.exe (FakeAV XP AntiMalware aka Antivirus XP 2010)

Malware: C:\sand-box\fid.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: .exe Author: Unknown Related File: “C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe” /START “%1″ %* Type: Main File Extensions Item Name: ave.exe Author: Unknown Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\AVE.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: [...]

Removed: ..\Application Data\ave.exe (Fake Antivirus XP 2010 – malware changes its name every time Windows starts)

Malware: C:\sand-box\9d7f6d5b600546373cafc42bc5a2a670.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.04.02 Trojan-Spy:W32/Zbot.gen!G Kaspersky 7.0.0.125 2010.04.02 Packed.Win32.Katusha.j McAfee 5937 2010.03.31 – Microsoft 1.5605 2010.04.02 Trojan:Win32/FakeRean NOD32 4995 2010.04.02 a variant of Win32/Kryptik.DFO —————————————————————————————————————————- Additional information File size: 195584 bytes MD5   : b4492af4de0daae0dc91c5c81c3956b6 SHA1  : 968d29a9efe3401dc458d32d9df5fdd0ff9a4a03 SHA256: 70a91b85687d288548a3fab819040f05626c56248fde37fe1d315a1bf5208d3d —————————————————————————————————————————- Installation When the program [...]

Removed: _VOIDD.SYS, USREXT.DLL, FONTVIEWXP.EXE, USRPROT.EXE (Fake AV – User Protection, aka Antivirus XP 2010)

Malware: C:\sand-box\adobeflashplayerv10.0.45.2.exe Removed: C:\WINDOWS\_VOIDEQQHXRNIXR\_VOIDD.SYS C:\PROGRA~1\USERPR~1\USREXT.DLL C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\FONTVIEWXP.EXE C:\PROGRAM FILES\USER PROTECTION\USRPROT.EXE —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.25 Trojan-Downloader:W32/Agent.OBP Kaspersky 7.0.0.125 2010.03.25 – McAfee 5930 2010.03.24 – Microsoft 1.5605 2010.03.25 – NOD32 4972 2010.03.24 Win32/TrojanDownloader.FakeAlert.AVO —————————————————————————————————————————- Additional information File size: 20992 bytes MD5 : 9e446c421b0e8b121069836936d898a9 SHA1 : 2440e2a763a22017768d827a441bf59a3ee35d12 SHA256: abf966786b2151ce463d085c25645a75f94041242004882ae2b3f400d61f64b6 —————————————————————————————————————————- Installation When the [...]

Removed: ave.exe (FakeAV – XP AntiMalware 2010, aka Antivirus XP 2010)

Malware: C:\sand-box\3af31e07dde54af9a849a1f6256328ca.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.23 – Kaspersky 7.0.0.125 2010.03.22 – McAfee 5928 2010.03.22 – Microsoft 1.5605 2010.03.22 Trojan:Win32/FakeRean NOD32 4966 2010.03.22 a variant of Win32/Kryptik.DFO —————————————————————————————————————————- Additional information File size: 204800 bytes MD5 : 0e127b49bf372a4189b59f7aae0555f6 SHA1 : b1a8342910c546bd117e7bafd508e68fdc380207 SHA256: 1db7faf308fde71a50a937e2aa82960d3d318fd154670874584f2a651633097c —————————————————————————————————————————- Installation [...]

Removed: ave.exe (Fake AV – Antispyware XP – old name Antivirus XP 2010)

Malware: C:\sand-box\6cec5ab7a3a9127f14c5abe1e1c2790d.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.19 Gen:Heur.Krypt.26 Kaspersky 7.0.0.125 2010.03.19 – McAfee 5925 2010.03.19 – Microsoft 1.5605 2010.03.19 – NOD32 4959 2010.03.19 a variant of Win32/Kryptik.DBC —————————————————————————————————————————- Additional information File size: 203776 bytes MD5   : 94fd818ffbccb44a8bfab1d0759e1b79 SHA1  : a075f8bb1802ee7af775f8e518e6124cb658fa1a SHA256: 38f89a9f27cfbc9288550198702ef17687e1cd305484445b9bcc13e823c6b8b2 —————————————————————————————————————————- Installation When the program [...]

Removed: ave.exe (Fake AV – XP Smart Security 2010, old name Antivirus XP 2010)

Malware: C:\sand-box\fid.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.20 Gen:Heur.Krypt.26 Kaspersky 7.0.0.125 2010.03.20 Trojan.Win32.FraudPack.aowt McAfee 5925 2010.03.19 – Microsoft 1.5605 2010.03.19 – NOD32 4959 2010.03.19 a variant of Win32/Kryptik.DBC —————————————————————————————————————————- Additional information File size: 201216 bytes MD5 : dc42bb84ffcd6036b8eefdf26fad9ef8 SHA1 : b1383b739b72da64ae31a4c9064778ca075594c1 SHA256: 514992e4ca7c42bd41be4f841b0b1827b3e8397c0f6aee2336f93aefdd8aba81 —————————————————————————————————————————- Installation [...]

Removed: ave.exe (Fake AV – Total XP Security – old name – Antivirus XP 2010)

Malware: C:\sand-box\feed.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.18 – Kaspersky 7.0.0.125 2010.03.18 – McAfee 5923 2010.03.17 – Microsoft 1.5605 2010.03.17 – NOD32 4954 2010.03.18 Win32/Adware.XPAntiSpyware.AA —————————————————————————————————————————- Additional information File size: 201728 bytes MD5   : 669cb94519d39ba684747f1637ae76a9 SHA1  : fa049d51d9d9b79f04b76deb0721673c579fd5c0 SHA256: be763d2225345f058de282983f0e8bdd6a6753e62cb6733a7c84161112f1d98e —————————————————————————————————————————- Installation When the program is executed, it [...]

Removed: ave.exe (Fake AV – Antivirus XP 2010)

Malware: C:\sand-box\9e34670d9cac24e39deb21bd6de08cf9.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\ave.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.16 Trojan.Generic.KD.4145 Kaspersky 7.0.0.125 2010.03.16 – McAfee 5922 2010.03.16 – Microsoft 1.5605 2010.03.16 Trojan:Win32/FakeRean NOD32 4950 2010.03.16 a variant of Win32/Kryptik.DBC —————————————————————————————————————————- Additional information File size: 200704 bytes MD5   : 53cebd78d4f2b15da7118f8e64d4b9ff SHA1  : 3d993bca6f17a018f936bbe382c6aacd1c6c1242 SHA256: 23353babf24cfc7ba0c2f56b4b32135cd7f414f384c917721d8b8387a589fa8a —————————————————————————————————————————- Installation When the program [...]

Removed: av.exe (Fake AV – Antivirus XP 2010)

Malware: b0b0900f98d56f96dd2b88341900bb02.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\av.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.16 Trojan.Generic.KD.4162 Kaspersky 7.0.0.125 2010.03.16 Trojan.Win32.FraudPack.aouf McAfee 5922 2010.03.16 – Microsoft 1.5605 2010.03.16 Trojan:Win32/FakeRean NOD32 4950 2010.03.16 a variant of Win32/Kryptik.DBC —————————————————————————————————————————- Additional information File size: 187392 bytes MD5 : bff7294be51a2a0f22245c934a4650e5 SHA1 : 7929465738f4dd52e8ba5866f2e9ece1fab8dabf SHA256: 5c65731f1b2ed90218b472cb4951c552fa16e0eb631d14a204f6a029c3895e65 —————————————————————————————————————————- Installation [...]

Removed: av.exe (Fake AV – Antivirus XP 2010)

Malware: C:\sand-box\1100_0005.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Application Data\av.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.03.09 Trojan:W32/Fakerean.290 Kaspersky 7.0.0.125 2010.03.09 Trojan.Win32.FraudPack.aoer McAfee 5915 2010.03.09 – Microsoft 1.5502 2010.03.09 Trojan:Win32/FakeRean NOD32 4929 2010.03.09 a variant of Win32/Kryptik.CUY —————————————————————————————————————————- Additional information File size: 186880 bytes MD5 : b114e8e51136f5d85f4fb20f0db6748b SHA1 : d46bf1cd874e521df11e402989814dc1d7fca4e8 SHA256: 3ca76b61588da1f02bc871ca322ca240809ad0c29173798d5792ce73eda6705c —————————————————————————————————————————- Installation [...]

• Greatis Software

  • Free Download
  • Send a file

• AverScanner

  AverScaner- EveryDay Malware Scan

• Testimonials

  People say

  Greg

  I spent over 10 hours trying to manually hunt down and remove a rootkit and browser hijacker from my computer. That was a mistake!

  This virus/malware could not be removed by Norton, ZoneLabs, MS Essentials; etc.

  In about 1 hour, I was able to download your software, create the CD-ROM, watch the instruction video and kill 3 ROOKITS from my PC. (Your software hunted down the rootkits and killed them like Spetsnaz going after the enemy!) Get it!

  Joseph

  Your product is the only one on the market that has found and removed rootkits from my system, three rootkits to be precise. I have used other products but they don't measure up to UnHackMe.

  Bob

  The UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy!

  Click Here to Update All your PC's Outdated drivers

• Categories

  • Adware
  • Backdoor
  • Fake Driver-Codec
  • Fake System Tool
  • FakeAV
  • Locker
  • Malware
  • Malware Domain
  • Not-a-Virus
  • Rootkit
  • unknown
  • Virus
  • Worm

• Recent Posts

  • STKSCAN.DLL is Trojan Sirefef.BP
  • %Local Appdata%\3308c706\X is Rootkit ZeroAccess
  • PCDRNT.DLL is Rootkit ZeroAccess
  • MAYA70DOCSERVER.DLL is Rootkit ZeroAccess
  • INETACCELERATOR.EXE is Trojan Foreign
  • _EX-68.EXE is Trojan Banload
  • OTYTKF.EXE is Worm Palevo
  • FUNSHIONINSTALL.EXE is Trojan Delf
  • MAXTUDOXDB.EXE is Trojan CFI
  • MSDSCSC.EXE is Backdoor Finlosky

• 
• Remember: the best way to remove rootkits is from the outside!

  

• Blogroll

  • RegRun Security Suite. Detects and removes rootkits/malware/adware that your antivirus could not.
  • RegRun Warrior – Removing rootkits is best done from the outside!
  • UnHackMe – rootkit & malware killer

• Popular

  1. 3%QKM.EXE is Trojan Kryptik
  2. 2%BETTERINSTALLER.EXE is Adware Somoto
  3. 1%U997.EXE is not a virus UltraSurf
  4. 1%MSLOOP.DLL is Rootkit Zero Access
  5. 1%TEMP:WINUPD.EXE is BackDoor TDSS
  6. 1%GREP.3XE is Trojan Tool-NirCmd
  7. 1%MVSCAVAP.EXE is Trojan Banker6
  8. 1%PCOTP.EXE is Trojan Offend
  9. 1%HPDSKFLT.DLL is Rootkit ZeroAccess
  10. 1%XUAT.EXE is Trojan Rimecud
  11. 1%CHINDE.EXE is Trojan Jorik
  12. 1%SYSTEMINSTALLATION.EXE is Trojan Llac
  13. 1%RADCLOCK.DLL is Rootkit ZeroAccess
  14. 1%F16.EXE is Trojan FakeAV
  15. 1%MRTSTUB.EXE is Trojan Banker
  16. 1%DLLHSTS.EXE is Trojan LockScreen
  17. 1%HKAVGLRJ.EXE is Trojan Banker
  18. 1%PROCEXP111.DLL is Rootkit ZeroAccess
  19. 1%QUESTBASIC.EXE is AdWare AdLoad
  20. 1%TOSCOSRV.DLL is Rootkit ZeroAccess

• Tags

  3308c706 Adware Agent Ainslot ATAPI.SYS AutoRun autorun.inf Backdoor Bancos Banker Banload BHO Bifrose Buzus Delf Fake AntiVirus FakeAV Injector IRCBot Jorik KeyLogger Koobface Kraddare Kryptik lsass.exe Malware Domain Oficla OnLineGames Palevo Rebhip Rootkit Scar services.exe SpyEye svchost.exe Taterf TDSS Trojan VB VBInject VBKrypt Virus winlogon.exe Worm ZeroAccess