test.exe - Dangerous
%sysdir%\test.exe
Manual removal instructions:
Antivirus Report of %sysdir%\test.exe:
%sysdir%\test.exe
Test.exe is a mass-mailing worm W32.Stubbot.A@mm.
Test.exe opens a back door on TCP port 6677.
Test.exe spreads via open network shares.
Test.exe tries to terminate antiviral programs installed on a user computer.
Test.exe monitors user Internet activity and private information.
It sends stolen data to a hacker site.
Related files:
%System%\svthx.exe
%System%\Test
%System%\Test.exe
%System%\Test.pif
%System%\haha.pif
%System%\Details.pif
%System%\Decrypted_mail.pif
%System%\Instructions-howtofix.txt.pif
%System%\Protected.Storage.Encrypted.XOR.34h.pif
Adds the value:
"Windows Update Center" = "%System%\svthx.exe"
"Shell" = "Explorer.exe svthx.exe"
to the Windows startup registry keys.
Removal:
Kill Test.exe process and remove Test.exe from Windows startup.
%sysdir%\test.exe | Malware |
%sysdir%\test.exe | Dangerous |
%sysdir%\test.exe | High Risk |
Test.exe opens a back door on TCP port 6677.
Test.exe spreads via open network shares.
Test.exe tries to terminate antiviral programs installed on a user computer.
Test.exe monitors user Internet activity and private information.
It sends stolen data to a hacker site.
Related files:
%System%\svthx.exe
%System%\Test
%System%\Test.exe
%System%\Test.pif
%System%\haha.pif
%System%\Details.pif
%System%\Decrypted_mail.pif
%System%\Instructions-howtofix.txt.pif
%System%\Protected.Storage.Encrypted.XOR.34h.pif
Adds the value:
"Windows Update Center" = "%System%\svthx.exe"
"Shell" = "Explorer.exe svthx.exe"
to the Windows startup registry keys.
Removal:
Kill Test.exe process and remove Test.exe from Windows startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.