3104975.exe - Dangerous
3104975.exe
Manual removal instructions:
Antivirus Report of 3104975.exe:
3104975.exe
We suggest you to remove 3104975.exe from your computer as soon as possible.
3104975.exe is Trojan/Backdoor.
Kill the process 3104975.exe and remove 3104975.exe from Windows startup.
Malware: C:\sand-box\erdown.exe
Removed: C:\WINDOWS\fonts\services.exe
C:\WINDOWS\system32\msbyylfy.dll (random filname)
Classification:Antivirus Version Last Update Result
F-Secure 9.0.15370.0 2010.03.27 Suspicious:W32/Malware!Gemini
Kaspersky 7.0.0.125 2010.03.27 Trojan-Downloader.Win32.Genome.apng
McAfee 5932 2010.03.26 -
Microsoft 1.5605 2010.03.27 -
NOD32 4978 2010.03.26 a variant of Win32/PSW.WOW.NOP
Additional information
File size: 18432 bytes
MD5 : 4a7bbd7e0de0c56704d034722182aec4
SHA1 : 920bfe65bcf08399ec4a6b851b91760e26669bfd
SHA256: 72c7dc5d668c254451c619aa925cea61a48deae46c59d33e5f82135dab884245
http://greatis.com/blog/how-to-remove-ma...
| 3104975.exe | Malware |
| 3104975.exe | Dangerous |
| 3104975.exe | High Risk |
3104975.exe is Trojan/Backdoor.
Kill the process 3104975.exe and remove 3104975.exe from Windows startup.
Malware: C:\sand-box\erdown.exe
Removed: C:\WINDOWS\fonts\services.exe
C:\WINDOWS\system32\msbyylfy.dll (random filname)
Classification:Antivirus Version Last Update Result
F-Secure 9.0.15370.0 2010.03.27 Suspicious:W32/Malware!Gemini
Kaspersky 7.0.0.125 2010.03.27 Trojan-Downloader.Win32.Genome.apng
McAfee 5932 2010.03.26 -
Microsoft 1.5605 2010.03.27 -
NOD32 4978 2010.03.26 a variant of Win32/PSW.WOW.NOP
Additional information
File size: 18432 bytes
MD5 : 4a7bbd7e0de0c56704d034722182aec4
SHA1 : 920bfe65bcf08399ec4a6b851b91760e26669bfd
SHA256: 72c7dc5d668c254451c619aa925cea61a48deae46c59d33e5f82135dab884245
http://greatis.com/blog/how-to-remove-ma...
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.