VirusBurst Ransomware

VirusBurst virus description
Technical details:
Categories: Ransomware

VirusBurst Folders:
[%PROGRAMS%]\Virus-Bursters
[%PROGRAMS%]\VirusBurster
[%PROGRAM_FILES%]\vb
[%PROGRAM_FILES%]\vb
[%PROGRAM_FILES%]\Virus-Burst
[%PROGRAM_FILES%]\Virus-Bursters
[%PROGRAM_FILES%]\VirusBurst
[%PROGRAM_FILES%]\VirusBurst
[%PROGRAM_FILES%]\VirusBurster
[%PROGRAM_FILES%]\VirusBursters

VirusBurst Files:
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\vb 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\vb 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\Virus-Burst 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\Virus-Bursters 6.3.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\VirusBurster 6.2.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\VirusBurster 6.3.lnk
[%DESKTOP%]\Virus-Burst.lnk
[%DESKTOP%]\VirusBurst.lnk
[%DESKTOP%]\VirusBurst.lnk
[%DESKTOP%]\VirusBurster.lnk
[%PROFILE%]\cmd.exe
[%PROFILE%]\cmd.exe
[%PROFILE%]\start
[%PROFILE%]\start
[%PROGRAMS%]\VirusBurst\Uninstall VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\Uninstall VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1 Website.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1 Website.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1.lnk
[%PROGRAM_FILES%]\vb\ignored.lst
[%PROGRAM_FILES%]\vb\vb.exe
[%PROGRAM_FILES%]\vb\virbur.ini
[%PROGRAM_FILES%]\Virus-Burst\virbur.ini
[%PROGRAM_FILES%]\Virus-Burst\Virus-Burst.exe
[%PROGRAM_FILES%]\VirusBurst\blacklist.txt
[%PROGRAM_FILES%]\VirusBurst\blacklist.txt
[%PROGRAM_FILES%]\VirusBurst\ignored.lst
[%PROGRAM_FILES%]\VirusBurst\ignored.lst
[%PROGRAM_FILES%]\VirusBurst\Lang\English.ini
[%PROGRAM_FILES%]\VirusBurst\msvcp71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcp71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcr71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcr71.dll
[%PROGRAM_FILES%]\VirusBurst\ref.dat
[%PROGRAM_FILES%]\VirusBurst\ref.dat
[%PROGRAM_FILES%]\VirusBurst\uninst.exe
[%PROGRAM_FILES%]\VirusBurst\uninst.exe
[%PROGRAM_FILES%]\VirusBurst\vb.ini
[%PROGRAM_FILES%]\VirusBurst\vb.ini
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.exe
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.exe
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.url
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.url
[%STARTMENU%]\Virus-Burst 6.1.lnk
[%STARTMENU%]\VirusBurst 6.1.lnk
[%SYSTEM%]\eowygj.dll
[%SYSTEM%]\popspig
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\vb 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\vb 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\Virus-Burst 6.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\Virus-Bursters 6.3.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\VirusBurster 6.2.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\VirusBurster 6.3.lnk
[%DESKTOP%]\Virus-Burst.lnk
[%DESKTOP%]\VirusBurst.lnk
[%DESKTOP%]\VirusBurst.lnk
[%DESKTOP%]\VirusBurster.lnk
[%PROFILE%]\cmd.exe
[%PROFILE%]\cmd.exe
[%PROFILE%]\start
[%PROFILE%]\start
[%PROGRAMS%]\VirusBurst\Uninstall VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\Uninstall VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1 Website.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1 Website.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1.lnk
[%PROGRAMS%]\VirusBurst\VirusBurst 6.1.lnk
[%PROGRAM_FILES%]\vb\ignored.lst
[%PROGRAM_FILES%]\vb\vb.exe
[%PROGRAM_FILES%]\vb\virbur.ini
[%PROGRAM_FILES%]\Virus-Burst\virbur.ini
[%PROGRAM_FILES%]\Virus-Burst\Virus-Burst.exe
[%PROGRAM_FILES%]\VirusBurst\blacklist.txt
[%PROGRAM_FILES%]\VirusBurst\blacklist.txt
[%PROGRAM_FILES%]\VirusBurst\ignored.lst
[%PROGRAM_FILES%]\VirusBurst\ignored.lst
[%PROGRAM_FILES%]\VirusBurst\Lang\English.ini
[%PROGRAM_FILES%]\VirusBurst\msvcp71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcp71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcr71.dll
[%PROGRAM_FILES%]\VirusBurst\msvcr71.dll
[%PROGRAM_FILES%]\VirusBurst\ref.dat
[%PROGRAM_FILES%]\VirusBurst\ref.dat
[%PROGRAM_FILES%]\VirusBurst\uninst.exe
[%PROGRAM_FILES%]\VirusBurst\uninst.exe
[%PROGRAM_FILES%]\VirusBurst\vb.ini
[%PROGRAM_FILES%]\VirusBurst\vb.ini
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.exe
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.exe
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.url
[%PROGRAM_FILES%]\VirusBurst\VirusBurst.url
[%STARTMENU%]\Virus-Burst 6.1.lnk
[%STARTMENU%]\VirusBurst 6.1.lnk
[%SYSTEM%]\eowygj.dll
[%SYSTEM%]\popspig

VirusBurst Registry Keys:
HKEY_CLASSES_ROOT\AVZipEnchancer.Chl
HKEY_CLASSES_ROOT\CLSID\{6076d2b1-634c-4685-843b-f826045ea5dc}
HKEY_CLASSES_ROOT\CLSID\{6570b782-1a41-4053-b2c9-12c7fcf0d84d}
HKEY_CLASSES_ROOT\CLSID\{CCFB2B33-F4DB-B63D-ABDC-C7384ED93B34}
HKEY_CLASSES_ROOT\CLSID\{CCFB2B33-F4DB-B63D-ABDC-C7384ED93B34}
HKEY_CLASSES_ROOT\CLSID\{e944d14a-03aa-43e3-9d0e-4f50c4d1b005}
HKEY_CLASSES_ROOT\Interface\{016859C2-97B6-45FC-816B-A3B91BA10A0F}
HKEY_CLASSES_ROOT\Interface\{03713ADE-819C-43D9-B138-67828D4C0405}
HKEY_CLASSES_ROOT\Interface\{05DDEB15-33E0-4DE3-B7CD-84E2E011D889}
HKEY_CLASSES_ROOT\Interface\{05DDEB15-33E0-4DE3-B7CD-84E2E011D889}
HKEY_CLASSES_ROOT\Interface\{0B386DB3-239C-41D6-85CB-CA728F31F3FC}
HKEY_CLASSES_ROOT\Interface\{0B386DB3-239C-41D6-85CB-CA728F31F3FC}
HKEY_CLASSES_ROOT\Interface\{0BDF8F38-347C-4810-BDA6-2F85C1050B26}
HKEY_CLASSES_ROOT\Interface\{0D5364E2-8FD5-4AEE-8353-79ABE11BC89B}
HKEY_CLASSES_ROOT\Interface\{111792AF-85B4-4768-AB91-682174B14B90}
HKEY_CLASSES_ROOT\Interface\{18A1A6BB-8AE3-47E3-B9D4-75ABFE0CAC03}
HKEY_CLASSES_ROOT\Interface\{1F2FC7B3-F2A0-4717-96B4-01D787DA9949}
HKEY_CLASSES_ROOT\Interface\{230E8C2A-1317-49FD-A022-4E68AED75668}
HKEY_CLASSES_ROOT\Interface\{2D1254A1-4A1A-4339-9DE5-D05CADD5C44C}
HKEY_CLASSES_ROOT\Interface\{2E64DCDD-94BB-4CAB-A93A-4416A3585DA0}
HKEY_CLASSES_ROOT\Interface\{2E94C834-9EFA-4C46-B032-A185C69EBC53}
HKEY_CLASSES_ROOT\Interface\{2E94C834-9EFA-4C46-B032-A185C69EBC53}
HKEY_CLASSES_ROOT\Interface\{2F34C08C-E0AF-4EB2-AFCF-3A13DC489FA6}
HKEY_CLASSES_ROOT\Interface\{34D2738B-701F-454A-9198-25924CF75E92}
HKEY_CLASSES_ROOT\Interface\{34D2738B-701F-454A-9198-25924CF75E92}
HKEY_CLASSES_ROOT\Interface\{3863C215-13E6-4E29-9921-78CE0A6F272A}
HKEY_CLASSES_ROOT\Interface\{3863C215-13E6-4E29-9921-78CE0A6F272A}
HKEY_CLASSES_ROOT\Interface\{3E8641B2-0EA7-43B4-B8B5-895F155D9A9D}
HKEY_CLASSES_ROOT\Interface\{420EE180-CE72-40AC-83CB-B55DCB68CCF1}
HKEY_CLASSES_ROOT\Interface\{420EE180-CE72-40AC-83CB-B55DCB68CCF1}
HKEY_CLASSES_ROOT\Interface\{423FA7B8-5671-41DD-9C4D-B36607F31BCE}
HKEY_CLASSES_ROOT\Interface\{4259549C-361C-471D-BBCD-90671B818338}
HKEY_CLASSES_ROOT\Interface\{49D486E8-1932-492D-B1BD-B4D638BEBD84}
HKEY_CLASSES_ROOT\Interface\{49E2EB9D-A5E6-450E-9708-251876BF3E7F}
HKEY_CLASSES_ROOT\Interface\{57859C9A-F115-4074-B7BC-AD69711EF51A}
HKEY_CLASSES_ROOT\Interface\{638C512D-C04A-4E06-A9A3-8127C4E5B4E7}
HKEY_CLASSES_ROOT\Interface\{638C512D-C04A-4E06-A9A3-8127C4E5B4E7}
HKEY_CLASSES_ROOT\Interface\{63CA0A34-071D-4780-A5BD-28F0CFC3E512}
HKEY_CLASSES_ROOT\Interface\{63CA0A34-071D-4780-A5BD-28F0CFC3E512}
HKEY_CLASSES_ROOT\Interface\{68C625EA-B8E3-4FC1-9F6E-8A1B50AA9C8C}
HKEY_CLASSES_ROOT\Interface\{6F821290-E277-4F87-B4BD-AE48564EF21D}
HKEY_CLASSES_ROOT\Interface\{707B2F9D-B855-4730-BB5D-44669B4F11E4}
HKEY_CLASSES_ROOT\Interface\{73467269-7B9F-4F66-B381-D914A7ACECEB}
HKEY_CLASSES_ROOT\Interface\{73467269-7B9F-4F66-B381-D914A7ACECEB}
HKEY_CLASSES_ROOT\Interface\{7DF33004-9121-4FD5-93B6-6376060D2D3A}
HKEY_CLASSES_ROOT\Interface\{7DF33004-9121-4FD5-93B6-6376060D2D3A}
HKEY_CLASSES_ROOT\Interface\{87172D4B-FA72-406F-996E-2C6817B8E1FF}
HKEY_CLASSES_ROOT\Interface\{9BA6B541-EB04-44C9-9156-9573DB5345A5}
HKEY_CLASSES_ROOT\Interface\{9EC1C26F-0480-4BBC-BC69-7AC270388D0B}
HKEY_CLASSES_ROOT\Interface\{A7308DE2-D644-488D-80D5-071710F5B840}
HKEY_CLASSES_ROOT\Interface\{A7308DE2-D644-488D-80D5-071710F5B840}
HKEY_CLASSES_ROOT\Interface\{A8718256-70C8-4914-8F64-B8B9C1A64AAA}
HKEY_CLASSES_ROOT\Interface\{ABA193DF-6C52-4D02-975A-94A85B32DC3C}
HKEY_CLASSES_ROOT\Interface\{ABA193DF-6C52-4D02-975A-94A85B32DC3C}
HKEY_CLASSES_ROOT\Interface\{AFB40450-78FE-4F01-BE69-A76A8C396304}
HKEY_CLASSES_ROOT\Interface\{AFB40450-78FE-4F01-BE69-A76A8C396304}
HKEY_CLASSES_ROOT\Interface\{C3A42538-303B-4541-915D-C79AD9C75EB8}
HKEY_CLASSES_ROOT\Interface\{C48AE974-0D27-47D6-A3E9-881CF3301F72}
HKEY_CLASSES_ROOT\Interface\{C61736BF-F408-4475-B41D-8DDD96F86342}
HKEY_CLASSES_ROOT\Interface\{C793C7C5-E89F-48EC-83C9-06AC097E8CB9}
HKEY_CLASSES_ROOT\Interface\{C793C7C5-E89F-48EC-83C9-06AC097E8CB9}
HKEY_CLASSES_ROOT\Interface\{CAD91BD2-75E7-4E5F-A939-4ECC2D512918}
HKEY_CLASSES_ROOT\Interface\{CAD91BD2-75E7-4E5F-A939-4ECC2D512918}
HKEY_CLASSES_ROOT\Interface\{D9037DA6-C9DF-4FCB-9C2E-2A1F10786FEA}
HKEY_CLASSES_ROOT\Interface\{DA02B168-8841-4248-BF22-67E2EC5958C3}
HKEY_CLASSES_ROOT\Interface\{DA457340-9643-476D-A41A-09496677B2A3}
HKEY_CLASSES_ROOT\Interface\{E120C137-922C-434C-8A02-2A8D27B3E2D2}
HKEY_CLASSES_ROOT\Interface\{E120C137-922C-434C-8A02-2A8D27B3E2D2}
HKEY_CLASSES_ROOT\Interface\{E505FB9B-6CB3-44C5-9F0E-B01121076CC9}
HKEY_CLASSES_ROOT\Interface\{EB94E265-AC37-40C1-A656-044F38ED31D6}
HKEY_CLASSES_ROOT\TypeLib\{00B3D2B1-1EAD-4611-A348-9ECBC4C565A7}
HKEY_CLASSES_ROOT\TypeLib\{728E63B0-5165-4E98-9C83-EF987EEB66C9}
HKEY_CLASSES_ROOT\TypeLib\{728E63B0-5165-4E98-9C83-EF987EEB66C9}
HKEY_CLASSES_ROOT\TypeLib\{C17EB50A-667E-43B4-A53E-5B73F46AA009}
HKEY_CLASSES_ROOT\VSEnchancer.Chl
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Virus-Burst.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\VirusBurst.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\VirusBurst.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusBurst
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusBurst
HKEY_LOCAL_MACHINE\SOFTWARE\Virus-Burst
HKEY_LOCAL_MACHINE\SOFTWARE\VirusBurst
HKEY_LOCAL_MACHINE\SOFTWARE\VirusBurst

VirusBurst Registry Values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Virus-Burst.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\VirusBurst.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad


VirusBurst indications of infection

This symptoms of VirusBurst detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
CWS.TheRealSearch Hijacker Information
Scpact Trojan Cleaner

No comments: