Technical details:
Categories: Adware
Netpumper Folders:
[%APPDATA%]\NetPumper
[%COMMON_PROGRAMS%]\NetPumper
[%PROGRAM_FILES%]\NetPumper
Netpumper Files:
[%PROGRAM_FILES%]\NetPumper\NetPumper.exe
[%PROGRAM_FILES%]\NetPumper\NetPumperIEProxy.exe
[%PROGRAM_FILES%]\NetPumper\NetPumperNNProxy.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Application.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Audio.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Video.dll
[%PROGRAM_FILES%]\NetPumper\shutdown.exe
[%PROGRAM_FILES%]\NetPumper\TurnLog.exe
[%PROGRAM_FILES%]\NetPumper\NetPumper.exe
[%PROGRAM_FILES%]\NetPumper\NetPumperIEProxy.exe
[%PROGRAM_FILES%]\NetPumper\NetPumperNNProxy.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Application.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Audio.dll
[%PROGRAM_FILES%]\NetPumper\NPNetPumper_Video.dll
[%PROGRAM_FILES%]\NetPumper\shutdown.exe
[%PROGRAM_FILES%]\NetPumper\TurnLog.exe
Netpumper Registry Keys:
HKEY_CLASSES_ROOT\clsid\{1aa406ab-f581-42ab-b4d1-31d2e13819ef}
HKEY_CLASSES_ROOT\clsid\{e19b133d-184e-4bba-8a70-38489c9dd31b}
HKEY_CLASSES_ROOT\interface\{056738ed-e15c-11d6-b876-0050bf5d85c7}
HKEY_CLASSES_ROOT\interface\{a8b0f390-e6bf-4027-a4d4-1e4363f5e27b}
HKEY_CLASSES_ROOT\interface\{a9e33220-0b05-11d7-88d2-444553540000}
HKEY_CLASSES_ROOT\interface\{e0abbf96-17dc-44ca-96d0-6217064a97ba}
HKEY_CLASSES_ROOT\mime\database\content type\application\x-netpumper-detector
HKEY_CLASSES_ROOT\netpumper.addurl
HKEY_CLASSES_ROOT\netpumpernnproxy.netscapeinterface
HKEY_CLASSES_ROOT\typelib\{1145a909-a836-44b8-b03a-48d858b0f43e}
HKEY_CLASSES_ROOT\typelib\{f7258f6e-9f60-49c0-8c82-f0a0993d68e0}
HKEY_CURRENT_USER\software\microsoft\internet explorer\menuext\download with netpumper
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\netpumper_is1
HKEY_LOCAL_MACHINE\software\netpumper
Netpumper Registry Values:
HKEY_CLASSES_ROOT\.xnpd
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CLASSES_ROOT\.xnpd
HKEY_CURRENT_USER\software\netscape\netscape navigator\automation protocols
HKEY_CURRENT_USER\software\netscape\netscape navigator\automation protocols
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
Netpumper indications of infection
This symptoms of Netpumper detection are the files, registry, and network communication referenced in the technical details section.Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.
Also Be Aware of the Following Threats:
Remove Alpha Cleaner Ransomware
Removing SillyDl.DEH Trojan
Sambus RAT Symptoms
Posts
No comments:
Post a Comment