2qw9.exe – trojan VB

April 7, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

The file 2qw9.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete 2qw9.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of 2qw9.exe Executed: kp.jpg.exe Removed: 2qw9.exe. Full path: C:\Documents and Settings\Administrator\Local Settings\Temp\2qw9.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: hiwi Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\2QW9.EXE [...]

Tags: 2qw9.exe, Trojan, VB

Managee.exe – trojan VB

April 7, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

The file Managee.exe is malware related. You must delete the file Managee.exe immediately! Delete the file Managee.exe without delay! Kill the process Managee.exe and remove Managee.exe from Windows startup. Malware Analysis of Managee.exe Executed: ck.jpg.exe Removed: Managee.exe. Full path: C:\WINDOWS\Temp\Managee.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Manager Author: Related File: C:\WINDOWS\TEMP\MANAGEE.EXE Type: Explorer Run Item [...]

Tags: Managee.exe, Trojan, VB

System.exe – trojan PSW.VB

March 25, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

Is the file System.exe located on your computer? Then your computer is infected. We highly recommend you to remove System.exe from your computer as soon as possible. System.exe is Trojan/Backdoor. Kill the process System.exe and remove System.exe from the Windows startup. Malware Analysis of System.exe Executed: 7a7ebfa00464e7a64f3c81f73471f0fc.exe Removed: System.exe. Full path: C:\Documents and Settings\Administrator\Application Data\System.exe [...]

Tags: PSW, system.exe, Trojan, VB

IEMaoBar.dll – trojan VB

March 11, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

The file IEMaoBar.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete IEMaoBar.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of IEMaoBar.dll Executed: a89fe783735b03c640398476c706c82c.exe Removed: IEMaoBar.dll. Full path: C:\Program Files\IEMao\IEMaoBar.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: {0008CBE3-7D12-263A-15FD-39D13B9D1132} Author: Related File: C:\PROGRA~1\IEMAO\IEMAO.DLL Type: Browser Helper [...]

Tags: IEMaoBar.dll, Trojan, VB

GoogleDownload.exe – trojan-downloader VB

March 10, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

The file GoogleDownload.exe is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete GoogleDownload.exe we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of GoogleDownload.exe Executed: out.exe Removed: GoogleDownload.exe. Full path: C:\Documents and Settings\Administrator\Application Data\GoogleDownload.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: GoogleDownload Author: Related File: C:\DOCUMENTS AND [...]

Tags: GoogleDownload.exe, trojan-downloader, VB

proviso.dll – trojan VB

March 1, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

The file proviso.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete proviso.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of proviso.dll Executed: C:\sand-box\provisoup.exe Removed: proviso.dll. Full path: C:\Program Files\proviso\proviso.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: {C4AC8E18-5468-41A4-82F3-43286FEF68C9} Author: XP PLUS Related File: C:\PROGRAM FILES\PROVISO\PROVISO.DLL [...]

Tags: proviso.dll, Trojan, VB

Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\init.exe (trojan VB)

February 9, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: schost.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\init.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: ar Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\INIT.EXE Type: Registry Run Item Name: init.exe Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\INIT.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ar Value: “C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\init.exe ” Files: C:\Documents and [...]

Tags: init.exe, Trojan, VB

Removed: csrss.exe, lsass.exe, msn11.exe, winpro.exe (trojan VB)

February 5, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: indir.exe Removed: C:\WINDOWS\csrss.exe C:\WINDOWS\lsass.exe C:\WINDOWS\msn11.exe C:\WINDOWS\winpro.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: csrss Author: 23423423ewere Related File: C:\WINDOWS\CSRSS.EXE Type: Registry Run Item Name: csrss.exe Author: Related File: C:\WINDOWS\CSRSS.EXE Type: Running Processes Item Name: winpro.exe Author: www.hamaci.org Related File: C:\WINDOWS\WINPRO.EXE Type: Running Processes Item Name: lsass.exe Author: mIRC Co. Ltd. Related File: C:\WINDOWS\LSASS.EXE Type: Running [...]

Tags: csrss.exe, lsass.exe, msn11.exe, Trojan, VB, winpro.exe

Removed: C:\Documents and Settings\Administrator\Application Data\molesto.exe (trojan Removed: C:\Documents and Settings\Administrator\Application Data\molesto.exe (trojan VB)

January 22, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: commadcrypt.exe Removed: C:\Documents and Settings\Administrator\Application Data\molesto.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: Microsoft ofice Author: E3ADZupf13hwsY Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOLESTO.EXE Type: Explorer Run Item Name: {3C605DDA-E610-FEBE-DA56-EDDC89BE0FED} Author: Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOLESTO.EXE Type: ActiveSetup Item Name: molesto.exe Author: Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOLESTO.EXE Type: Running Processes Removal Results: Success Number [...]

Tags: molesto.exe, Trojan, VB

Removed: C:\WINDOWS\canima.exe, C:\WINDOWS\Tasks\At1.job … C:\WINDOWS\Tasks\At288.job; Restored: C:\WINDOWS\system32\imm32.dll (trojan VB)

January 20, 2011 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: gx.exe Removed: C:\WINDOWS\canima.exe C:\WINDOWS\Tasks\At1.job … C:\WINDOWS\Tasks\At288.job Restored: C:\WINDOWS\system32\imm32.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: Nationadddljid Author: Related File: C:\WINDOWS\canima.exe Type: Auto Services Item Name: canima.exe Author: Unknown Related File: C:\WINDOWS\CANIMA.EXE Type: Detected using Heuristic Algorithm Item Name: At1 Author: Related File: C:\DOWN0\PC_FOR_TEST000C2982064B.EXE Type: Scheduled Tasks /…/ Item Name: At288 Author: Related File: C:\DOWN0\PC_FOR_TEST000C2982064B.EXE Type: [...]

Tags: At1.job ... At288.job, canima.exe, imm32.dll, Trojan, VB

Removed: svchots.exe, system.vbs (trojan VB)

August 18, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: amor.exe Removed: C:\WINDOWS\system\svchots.exe C:\WINDOWS\system\system.vbs —————————————————————————————————————————- Detected by UnHackMe: Item Name: svchots.exe Author: Unknown Related File: C:\WINDOWS\SYSTEM\SVCHOTS.EXE Type: Running Processes Item Name: Microsoft Author: Unknown Related File: C:\WINDOWS\SYSTEM\SYSTEM.VBS Type: Registry Run Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Microsoft Value: “C:\WINDOWS\system\system.vbs” Files: C:\WINDOWS\system\svchots.exe C:\WINDOWS\system\system.bat C:\WINDOWS\system\system.vbs —————————————————————————————————————————- Antivirus [...]

Tags: svchots.exe, system.vbs, VB

Removed: C:\WINDOWS\ol.exe (trojan VB)

August 15, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: FacePhoto.exe Removed: C:\WINDOWS\ol.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: ol Author: Related File: C:\WINDOWS\OL.EXE Type: Registry Run Item Name: ol.exe Author: Related File: C:\WINDOWS\OL.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ol Value: “C:\WINDOWS\ol.exe” Files: C:\WINDOWS\system32\DartCertificate.dll C:\WINDOWS\system32\DartSecure2.dll C:\WINDOWS\system32\DartSock.dll C:\WINDOWS\system32\SubclassingSink.tlb C:\WINDOWS\system32\YmsgCrypt.dll C:\WINDOWS\ol.exe —————————————————————————————————————————- Antivirus [...]

Tags: ol.exe, VB

Removed: C:\sand-box\bbpj1.exe (Registry key: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\GbpGSvc – trojan VB)

July 10, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: C:\sand-box\bbpj1.exe Removed: C:\sand-box\bbpj1.exe (Registry key: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\GbpGSvc) —————————————————————————————————————————- Detected by UnHackMe: Item Name: GbpGSvc Author: Microsoft Corporation Related File: C:\SAND-BOX\BBPJ1.EXE Type: Registry Run Item Name: bbpj1.exe Author: Microsoft Corporation Related File: C:\SAND-BOX\BBPJ1.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\GbpGSvc Files: C:\WINDOWS\system32\ccrpTmr6.dll C:\WINDOWS\system32\COMCTL32.OCA —————————————————————————————————————————- [...]

Tags: GbpGSvc, VB

Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\geurge.exe (trojan VB)

June 28, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: C:\sand-box\gold.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\geurge.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: ewrgetuj Author: YHyqb Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\GEURGE.EXE Type: Registry Run Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ewrgetuj Value: “C:\DOCUME~1\%USERNAME%\LOCALS~1\Temp\geurge.exe” Files: C:\Documents and Settings\Administrator\Local Settings\Temp\geurge.exe —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.06.15 [...]

Tags: geurge.exe, VB

Removed: C:\Documents and Settings\%USERNAME%\Local Settings\Temp\917ded.exe (trojan VB)

June 14, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: C:\sand-box\err4.txt.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\917ded.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: h612wm Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\917DED.EXE Type: Explorer Run Item Name: 917ded.exe Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\917DED.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\h612wm Value: “C:\DOCUME~1\%USERNAME%\LOCALS~1\Temp\917ded.exe” Files: C:\Documents and Settings\%USERNAME%\Local [...]

Tags: 917ded.exe, VB

Removed: updmngr.exe (variant of VB trojan)

May 5, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: inicio.exe Removed: C:\WINDOWS\system32\updmngr.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: load Author: Unknown Related File: C:\WINDOWS\system32\updmngr.exe Type: Win.ini Item Name: updmngr.exe Author: Related File: C:\WINDOWS\SYSTEM32\UPDMNGR.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.05.05 Trojan:W32/Agent.DJEA Kaspersky 7.0.0.125 2010.05.05 Trojan.Win32.VB.aeob Microsoft 1.5703 2010.05.04 – NOD32 [...]

Tags: updmngr.exe, VB

Removed: uxq9by.exe (variant of VB trojan)

May 5, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: C:\sand-box\xv4.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\uxq9by.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: 50pfo Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\UXQ9BY.EXE Type: Explorer Run Item Name: uxq9by.exe Author: Unknown Related File: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\UXQ9BY.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.05.04 Suspicious:W32/Malware!Gemini Kaspersky 7.0.0.125 2010.05.04 – [...]

Tags: uxq9by.exe, VB

Removed: bradasys.jpg.exe (variant of VB trojan)

April 27, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: C:\sand-box\bradasys.jpg.exe Removed: C:\sand-box\bradasys.jpg.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: GbpSsv Author: ALS TECNOLOGIA Related File: C:\SAND-BOX\BRADASYS.JPG.EXE Type: Registry Run Item Name: bradasys.jpg.exe Author: Related File: C:\SAND-BOX\BRADASYS.JPG.EXE Type: Running Processes Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.04.27 Generic.Banker.VB.03AA6E18 Kaspersky 7.0.0.125 2010.04.27 Trojan.Win32.VB.aejl Microsoft 1.5703 2010.04.27 [...]

Tags: ALS TECNOLOGIA, bradasys.jpg, GbpSsv, VB

Removed: C:\WINDOWS\cftmon.exe (variant of VB trojan)

April 27, 2010 by NightWatcher · Leave a Comment
Filed under: Malware

Malware: plugxbr.jpg.exe Removed: C:\WINDOWS\cftmon.exe —————————————————————————————————————————- Detected by UnHackMe in “Multi AV scan” mode: CFTMON.EXE Default location: C:\WINDOWS\CFTMON.EXE MD5: 316345519FBA285DB705E272446BB560 SHA1: 8C8A4C15 12CD38C4 286BBB54 2C3AB4B9 5429270B File Size: 112 640 Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.04.26 GenPack:Trojan.Generic.3655517 Kaspersky 7.0.0.125 2010.04.26 Trojan.Win32.VB.sey Microsoft 1.5703 2010.04.26 – [...]

Tags: cftmon.exe, VB

« Previous Page

Greatis Software
- Free Download
- Send a file
AverScanner

AverScaner- EveryDay Malware Scan
Testimonials

People say

Greg
I spent over 10 hours trying to manually hunt down and remove a rootkit and browser hijacker from my computer. That was a mistake!
This virus/malware could not be removed by Norton, ZoneLabs, MS Essentials; etc.
In about 1 hour, I was able to download your software, create the CD-ROM, watch the instruction video and kill 3 ROOKITS from my PC. (Your software hunted down the rootkits and killed them like Spetsnaz going after the enemy!) Get it!
Joseph
Your product is the only one on the market that has found and removed rootkits from my system, three rootkits to be precise. I have used other products but they don't measure up to UnHackMe.
Bob
The UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy!

Click Here to Update All your PC's Outdated drivers
Categories
- Adware
- Backdoor
- Fake Driver-Codec
- Fake System Tool
- FakeAV
- Malware
- Malware Domain
- Not-a-Virus
- Ransomware
- Rootkit
- unknown
- Virus
- Worm
Recent Posts

Remember: the best way to remove rootkits is from the outside!
Blogroll
Popular
Tags

3308c706 Adware Agent Ainslot ATAPI.SYS AutoRun autorun.inf Backdoor Bancos Banker Banload BHO Bifrose Buzus Darkbot Delf Fake AntiVirus FakeAV Injector IRCBot Jorik KeyLogger Kraddare lsass.exe Malware Domain Oficla OnLineGames Palevo Rebhip Rootkit Scar services.exe SpyEye svchost.exe Taterf TDSS Trojan VB VBInject VBKrypt Virus Votwup winlogon.exe Worm ZeroAccess

Greatis Software

AverScanner

Testimonials

People say

Categories

Recent Posts

Blogroll

Popular

Tags