WININSTALL.EXE - Dangerous
WININSTALL.EXE
Manual removal instructions:
Antivirus Report of WININSTALL.EXE:
wininstall.exe
We suggest you to remove WININSTALL.EXE from your computer as soon as possible.
WININSTALL.EXE is known as: Trojan.ADH [PCTools] Trojan.ADH [Symantec] Trojan.Win32.VB.alpe [Kaspersky Lab] Trojan.Win32.VB [Ikarus] packed with UPX [Kaspersky Lab].
MD5 of WININSTALL.EXE = AB8F527334017FEC45CC285A063E4340
WININSTALL.EXE size is 33088 bytes.
Full path on a computer: %TEMP%\WININSTALL.EXE
Related Files:
%COMMONDESKTOPDIR%\FLVTUBE PLAYER.LNK
%COMMONPROGRAMS%\FLVTUBE PLAYER\FLVTUBE PLAYER.LNK
%COMMONPROGRAMS%\FLVTUBE PLAYER\UNINSTALL FLVTUBE PLAYER.LNK
%APPDATA%\DONE.EXE
%APPDATA%\IC1.EXE
%APPDATA%\MICROSOFT\CRYPTO\RSA\S-1-5-21-606747145-764733703-839522115-1003\27F662D315ADD4E375C29D8F6E62EE68_A7BCC1A4-F7A4-4502-8650-8579E607F7F7
%TEMP%\7ZA.EXE
%TEMP%\A1.7Z
%TEMP%\NSG3.TMP\EUROP.EXE
%TEMP%\NSG3.TMP\GI.EXE
%TEMP%\NSG3.TMP\IC1.EXE
%TEMP%\NSG3.TMP\SLSPICE27.EXE
%TEMP%\NSG3.TMP\_TBP.EXE
%TEMP%\NSKE.TMP
%TEMP%\NSV13.TMP
%TEMP%\NSV14.TMP\PROCESSES.DLL
%TEMP%\NSZF.TMP\SYSTEM.DLL
%TEMP%\NSY5.TMP
%TEMP%\NSZF.TMP\BACKGROUND.PNG
%TEMP%\NSZF.TMP\BG-BUTTON.GIF
%TEMP%\NSZF.TMP\BG-CONTAINER.GIF
%TEMP%\NSZF.TMP\BG-GREY-WRAPPER.GIF
%TEMP%\NSZF.TMP\BG.GIF
%TEMP%\NSZF.TMP\BLOWFISH.DLL
%TEMP%\NSZF.TMP\BUTTON-ACTIVE.GIF
%TEMP%\NSZF.TMP\BUTTON-INACTIVE.GIF
%TEMP%\NSZF.TMP\BUTTON.GIF
%TEMP%\NSZF.TMP\COMPONENTS.HTML
%TEMP%\NSZF.TMP\COMPONENTS_NOADW.HTML
%TEMP%\NSZF.TMP\DOWNLOADS\116312.EX_
%TEMP%\NSZF.TMP\FINAL.HTML
%TEMP%\NSZF.TMP\FLVTUBEPLAYERSETUP.EXE
%TEMP%\NSZF.TMP\INETLOADEX.DLL
%TEMP%\NSZF.TMP\INSTALL.HTML
%TEMP%\NSZF.TMP\NSWG.DLL
%TEMP%\NSZF.TMP\PROGRESS.DLL
%TEMP%\NSZF.TMP\WELCOMEBG.GIF
%TEMP%\NSZF.TMP\WELCOMEPAGE.HTML
%TEMP%\NSZF.TMP\WELCOMEPAGE_NOADW.HTML
%TEMP%\STB1.EXE
%TEMP%\TWAIN.LOG
%TEMP%\TWAIN001.MTX
%TEMP%\WILLWND.EXE
%TEMP%\WININSTALL.EXE
%TEMP%\XT.EXE
%PROGRAMFILES%\FLVTUBE PLAYER\FLVTUBEPLAYER.EXE
%PROGRAMFILES%\FLVTUBE PLAYER\PLAYER.SWF
%PROGRAMFILES%\FLVTUBE PLAYER\PRELOAD.SWF
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\BUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\DOWNLOAD.GIF
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\LOGO.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SKIN.XML
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSCLOSEBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSMAXBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSMINBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\WINDOW.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\UNINSTALL.EXE
%WINDIR%\HTBDSTD2.DLL
%SYSTEM%\NEMKQTX-_TU3.EXE
%SYSTEM%\WBEM\PERFORMANCE\WMIAPRPL_NEW.INI
%SYSTEM%\XBEOB_RR8_HY3HS.DLL
WININSTALL.EXE | Trojan.ADH [PCTools] Trojan.ADH [Symantec] Trojan.Win32.VB.alpe [Kaspersky Lab] Trojan.Win32.VB [Ikarus] packed with UPX [Kaspersky Lab]. |
WININSTALL.EXE | Dangerous |
WININSTALL.EXE | High Risk |
WININSTALL.EXE is known as: Trojan.ADH [PCTools] Trojan.ADH [Symantec] Trojan.Win32.VB.alpe [Kaspersky Lab] Trojan.Win32.VB [Ikarus] packed with UPX [Kaspersky Lab].
MD5 of WININSTALL.EXE = AB8F527334017FEC45CC285A063E4340
WININSTALL.EXE size is 33088 bytes.
Full path on a computer: %TEMP%\WININSTALL.EXE
Related Files:
%COMMONDESKTOPDIR%\FLVTUBE PLAYER.LNK
%COMMONPROGRAMS%\FLVTUBE PLAYER\FLVTUBE PLAYER.LNK
%COMMONPROGRAMS%\FLVTUBE PLAYER\UNINSTALL FLVTUBE PLAYER.LNK
%APPDATA%\DONE.EXE
%APPDATA%\IC1.EXE
%APPDATA%\MICROSOFT\CRYPTO\RSA\S-1-5-21-606747145-764733703-839522115-1003\27F662D315ADD4E375C29D8F6E62EE68_A7BCC1A4-F7A4-4502-8650-8579E607F7F7
%TEMP%\7ZA.EXE
%TEMP%\A1.7Z
%TEMP%\NSG3.TMP\EUROP.EXE
%TEMP%\NSG3.TMP\GI.EXE
%TEMP%\NSG3.TMP\IC1.EXE
%TEMP%\NSG3.TMP\SLSPICE27.EXE
%TEMP%\NSG3.TMP\_TBP.EXE
%TEMP%\NSKE.TMP
%TEMP%\NSV13.TMP
%TEMP%\NSV14.TMP\PROCESSES.DLL
%TEMP%\NSZF.TMP\SYSTEM.DLL
%TEMP%\NSY5.TMP
%TEMP%\NSZF.TMP\BACKGROUND.PNG
%TEMP%\NSZF.TMP\BG-BUTTON.GIF
%TEMP%\NSZF.TMP\BG-CONTAINER.GIF
%TEMP%\NSZF.TMP\BG-GREY-WRAPPER.GIF
%TEMP%\NSZF.TMP\BG.GIF
%TEMP%\NSZF.TMP\BLOWFISH.DLL
%TEMP%\NSZF.TMP\BUTTON-ACTIVE.GIF
%TEMP%\NSZF.TMP\BUTTON-INACTIVE.GIF
%TEMP%\NSZF.TMP\BUTTON.GIF
%TEMP%\NSZF.TMP\COMPONENTS.HTML
%TEMP%\NSZF.TMP\COMPONENTS_NOADW.HTML
%TEMP%\NSZF.TMP\DOWNLOADS\116312.EX_
%TEMP%\NSZF.TMP\FINAL.HTML
%TEMP%\NSZF.TMP\FLVTUBEPLAYERSETUP.EXE
%TEMP%\NSZF.TMP\INETLOADEX.DLL
%TEMP%\NSZF.TMP\INSTALL.HTML
%TEMP%\NSZF.TMP\NSWG.DLL
%TEMP%\NSZF.TMP\PROGRESS.DLL
%TEMP%\NSZF.TMP\WELCOMEBG.GIF
%TEMP%\NSZF.TMP\WELCOMEPAGE.HTML
%TEMP%\NSZF.TMP\WELCOMEPAGE_NOADW.HTML
%TEMP%\STB1.EXE
%TEMP%\TWAIN.LOG
%TEMP%\TWAIN001.MTX
%TEMP%\WILLWND.EXE
%TEMP%\WININSTALL.EXE
%TEMP%\XT.EXE
%PROGRAMFILES%\FLVTUBE PLAYER\FLVTUBEPLAYER.EXE
%PROGRAMFILES%\FLVTUBE PLAYER\PLAYER.SWF
%PROGRAMFILES%\FLVTUBE PLAYER\PRELOAD.SWF
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\BUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\DOWNLOAD.GIF
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\LOGO.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SKIN.XML
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSCLOSEBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSMAXBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\SYSMINBUTTON.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\SKIN\SKIN1\WINDOW.BMP
%PROGRAMFILES%\FLVTUBE PLAYER\UNINSTALL.EXE
%WINDIR%\HTBDSTD2.DLL
%SYSTEM%\NEMKQTX-_TU3.EXE
%SYSTEM%\WBEM\PERFORMANCE\WMIAPRPL_NEW.INI
%SYSTEM%\XBEOB_RR8_HY3HS.DLL
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.