Vapidab Trojan

Vapidab virus description
Technical details:
Categories: Trojan,Downloader
Vapidab Aliases:
[Kaspersky]Hoax.Win32.Renos.kj,Trojan-Downloader.Win32.VB.bql;
[Other]Mal/Emogen-O

Vapidab Folders:
[%PROGRAM_FILES%]\e-zshopper
[%SYSTEM%]\acespy

Vapidab Files:
[%SYSTEM%]\ace16win.dll
[%SYSTEM%]\dpqaqlqx.bin
[%SYSTEM%]\sznf.ascii
[%SYSTEM%]\vxddsk.exe
[%SYSTEM%]\wml.exe
[%WINDOWS%]\764.exe
[%WINDOWS%]\7search.dll
[%WINDOWS%]\aconti.exe
[%WINDOWS%]\aconti.ini
[%WINDOWS%]\aconti.log
[%WINDOWS%]\aconti.sdb
[%WINDOWS%]\acontidialer.txt
[%WINDOWS%]\adbar.dll
[%WINDOWS%]\daxtime.dll
[%WINDOWS%]\dp0.dll
[%WINDOWS%]\eventlowg.dll
[%WINDOWS%]\flt.dll
[%WINDOWS%]\hotporn.exe
[%WINDOWS%]\jd2002.dll
[%WINDOWS%]\kkcomp$.exe
[%WINDOWS%]\ngd.dll
[%WINDOWS%]\pbar.dll
[%WINDOWS%]\spredirect.dll
[%WINDOWS%]\vxddsk.exe
[%WINDOWS%]\wbeInst$.exe
[%WINDOWS%]\wml.exe
[%WINDOWS%]\xadbrk_.exe
[%WINDOWS%]\xxxvideo.exe
[%SYSTEM%]\ace16win.dll
[%SYSTEM%]\dpqaqlqx.bin
[%SYSTEM%]\sznf.ascii
[%SYSTEM%]\vxddsk.exe
[%SYSTEM%]\wml.exe
[%WINDOWS%]\764.exe
[%WINDOWS%]\7search.dll
[%WINDOWS%]\aconti.exe
[%WINDOWS%]\aconti.ini
[%WINDOWS%]\aconti.log
[%WINDOWS%]\aconti.sdb
[%WINDOWS%]\acontidialer.txt
[%WINDOWS%]\adbar.dll
[%WINDOWS%]\daxtime.dll
[%WINDOWS%]\dp0.dll
[%WINDOWS%]\eventlowg.dll
[%WINDOWS%]\flt.dll
[%WINDOWS%]\hotporn.exe
[%WINDOWS%]\jd2002.dll
[%WINDOWS%]\kkcomp$.exe
[%WINDOWS%]\ngd.dll
[%WINDOWS%]\pbar.dll
[%WINDOWS%]\spredirect.dll
[%WINDOWS%]\vxddsk.exe
[%WINDOWS%]\wbeInst$.exe
[%WINDOWS%]\wml.exe
[%WINDOWS%]\xadbrk_.exe
[%WINDOWS%]\xxxvideo.exe

Vapidab Registry Keys:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{00000012-890e-4aac-afd9-eff6954a34dd}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{029e02f0-a0e5-4b19-b958-7bf2db29fb13}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{12f02779-6d88-4958-8ad3-83c12d86adc7}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{1adbcce8-cf84-441e-9b38-afc7a19c06a4}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{53c330d6-a4ab-419b-b45d-fd4411c1fef4}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{54645654-2225-4455-44a1-9f4543d34546}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{669695bc-a811-4a9d-8cdf-ba8c795f261e}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6abc861a-31e7-4d91-b43b-d3c98f22a5c0}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{a4a435cf-3583-11d4-91bd-0048546a1450}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{b8875bfe-b021-11d4-bfa8-00508b8e9bd3}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c2680e10-1655-4a0e-87f8-4259325a84b7}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c4ca6559-2cf1-48b6-96b2-8340a06fd129}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c5af2622-8c75-4dfb-9693-23ab7686a456}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{ca1d1b05-9c66-11d5-a009-000103c1e50b}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{d8efadf1-9009-11d6-8c73-608c5dc19089}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{e9306072-417e-43e3-81d5-369490beef7c}

Vapidab indications of infection

This symptoms of Vapidab detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Bancos.HTU Trojan Cleaner
Win32.VB.bc Trojan Removal
Symes Backdoor Information

0 comments

Pigeon.EWY Trojan

Pigeon.EWY virus description
Technical details:
Categories: Trojan

Pigeon.EWY indications of infection

This symptoms of Pigeon.EWY detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Ozzy Trojan Information

0 comments

SillyDl.CEN Trojan

SillyDl.CEN virus description
Technical details:
Categories: Trojan

SillyDl.CEN indications of infection

This symptoms of SillyDl.CEN detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Harbag Trojan Information

0 comments

Erahdd Trojan

Erahdd virus description
Technical details:
Categories: Trojan,Hacker Tool
Erahdd Aliases:
[Kaspersky]Trojan.EraseHDD.g;
[Panda]Trj/EraseHDD.G;
[Computer Associates]Erahdd.G!Trojan

Erahdd indications of infection

This symptoms of Erahdd detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Covesmer Trojan Removal instruction

0 comments

Ksniff Trojan

Ksniff virus description
Technical details:
Categories: Trojan,Spyware
Ksniff Aliases:
[Panda]Trojan Horse;
[Computer Associates]Win32/Ksniff!Spy!Trojan

Ksniff indications of infection

This symptoms of Ksniff detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Bancos.HTA Trojan Cleaner
Removing Win32.Agent Trojan

0 comments

BAT.Descript Trojan

BAT.Descript virus description
Technical details:
Categories: Trojan

BAT.Descript indications of infection

This symptoms of BAT.Descript detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Remove IROffer.303d Trojan
Removing SillyDl.DBZ Trojan

0 comments

Bancos.CGP Trojan

Bancos.CGP virus description
Technical details:
Categories: Trojan

Bancos.CGP indications of infection

This symptoms of Bancos.CGP detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
ffinder.com Hijacker Removal instruction
Remove BY Trojan
Removing VB.fu Trojan
Pigeon.AIK Trojan Information
Little.Pieces Trojan Symptoms

0 comments

CWS Downloader Trojan

CWS Downloader virus description
Technical details:
Categories: Trojan,Downloader

CWS Downloader Files:
[%PROGRAM_FILES%]\AutoPrint\srvany.exe
[%PROGRAM_FILES%]\AXIS Communications\AXIS ThinWizard\SRVANY.EXE
[%PROGRAM_FILES%]\Favorite Ware\Reminder.exe
[%PROGRAM_FILES%]\Gateway\EzTune\DTSRVC.exe
[%PROGRAM_FILES%]\Gateway\EzTune\dtsslsrv.exe
[%PROGRAM_FILES%]\gnway\ddns\gnsrv.exe
[%PROGRAM_FILES%]\LAN-Control\srvany.exe
[%PROGRAM_FILES%]\Network Monitor\netmon.exe
[%PROGRAM_FILES%]\Power Translator\LogoMedia TranslateDotNet Server.exe
[%PROGRAM_FILES%]\Priva\Priva Office\tools\srvany.exe
[%PROGRAM_FILES%]\RAdmin\r_server.exe
[%PROGRAM_FILES%]\Remote Task Manager\rtmservice.exe
[%PROGRAM_FILES%]\SAMSUNG\FW LiveUpdate\FWManager.exe
[%PROGRAM_FILES%]\SAPpc\SapGui\srvany.exe
[%PROGRAM_FILES%]\timbuktu pro\tb2launch.exe
[%PROGRAM_FILES%]\WinAntiVirus 2005 Pro\AVKernel.exe
[%PROGRAM_FILES%]\WinAntiVirus Pro 2006\FWSvc.exe
[%PROGRAM_FILES_COMMON%]\SNAPST~1\Common\X10nets.exe
[%PROGRAM_FILES_COMMON%]\WinTools\WToolsS.exe
[%PROGRAM_FILES_COMMON%]\X10\Common\X10nets.exe
[%SYSTEM%]\$sys$filesystem\$sys$DRMServer.exe
[%SYSTEM%]\acs.exe
[%SYSTEM%]\altsvc.exe
[%SYSTEM%]\aniServ.exe
[%SYSTEM%]\CfgSrvc.exe
[%SYSTEM%]\dllcache\win32\winlogon.exe
[%SYSTEM%]\drivers\etc\smss.exe
[%SYSTEM%]\FreezeScreenSaver.exe
[%SYSTEM%]\lsas.exe
[%SYSTEM%]\msCMTsrvc.exe
[%SYSTEM%]\ndesjcoq6.exe
[%SYSTEM%]\rtmservice.exe
[%SYSTEM%]\r_server.exe
[%SYSTEM%]\slee503.exe
[%SYSTEM%]\SnoopFreeSvc.exe
[%SYSTEM%]\Srvany.exe
[%SYSTEM%]\ujqdrj.exe
[%SYSTEM%]\windlls.exe
[%SYSTEM%]\x10nets.exe
[%WINDOWS%]\am9yZGFu\command.exe
[%WINDOWS%]\aQ\command.exe
[%WINDOWS%]\b3duZXI\command.exe
[%WINDOWS%]\c2FpZg\command.exe
[%WINDOWS%]\cmFj\command.exe
[%WINDOWS%]\IA\command.exe
[%WINDOWS%]\iejs.exe
[%WINDOWS%]\IGRvbg\command.exe
[%WINDOWS%]\Lg\command.exe
[%WINDOWS%]\QmFyYmFyYSBNIEhhd2tpbnM\command.exe
[%WINDOWS%]\QnJpYW4\command.exe
[%WINDOWS%]\QWFyb25z\command.exe
[%WINDOWS%]\RGFycmVu\command.exe
[%WINDOWS%]\RmFtLiBkZSBHcmVlZg\command.exe
[%WINDOWS%]\RWR3YXJkIEZvcnRlc2N1ZQ\command.exe
[%WINDOWS%]\S3Jpc3Rlbg\command.exe
[%WINDOWS%]\SG9tZQ\command.exe
[%WINDOWS%]\Sm9lIFN0ZXJu\command.exe
[%WINDOWS%]\SmFtYWhs\command.exe
[%WINDOWS%]\SmFtZXMgRCBWb3lsZXM\command.exe
[%WINDOWS%]\SmFtZXMgTGF1cmVuY2UgV2hpdGluZw\command.exe
[%WINDOWS%]\SmVhbmV0dGUgTGV1c2luaw\command.exe
[%WINDOWS%]\SmVmZiBNb3JhbGVz\command.exe
[%WINDOWS%]\SmVmZnJleQ\command.exe
[%WINDOWS%]\SnU\command.exe
[%WINDOWS%]\SnVhbiBGIExlemFtYQ\command.exe
[%WINDOWS%]\srvany.exe
[%WINDOWS%]\svcproc.exe
[%WINDOWS%]\SW5tYW4\command.exe
[%WINDOWS%]\SYSTEM\DRIVER\ntsrv.exe
[%WINDOWS%]\SYSTEM\DRIVER\ntuser.exe
[%WINDOWS%]\T0VN\command.exe
[%WINDOWS%]\T3duZXI\command.exe
[%WINDOWS%]\TGFycnkgTWFjaW9jaQ\command.exe
[%WINDOWS%]\TGlhbmUgV2hpdG5leQ\command.exe
[%WINDOWS%]\Tm9taXM\command.exe
[%WINDOWS%]\TmljayBTdGVyY3phbGE\command.exe
[%WINDOWS%]\TUlOSCBMRQ\command.exe
[%WINDOWS%]\TW9sbHkgQXJub2xk\command.exe
[%WINDOWS%]\twain_32\SiPix\SCBlink2\srvany.exe
[%WINDOWS%]\TWF0dCBaZXR6\command.exe
[%WINDOWS%]\TWU\command.exe
[%WINDOWS%]\U2V3YSBTaW5nYWw\command.exe
[%WINDOWS%]\U3RhbiBTbWl0aA\command.exe
[%WINDOWS%]\U3RlcGhlbiBBcndpbmU\command.exe
[%WINDOWS%]\UEI\command.exe
[%WINDOWS%]\UGF0IERlc2hhdw\command.exe
[%WINDOWS%]\UHJlZmVycmVkIEN1c3RvbWVy\command.exe
[%WINDOWS%]\UkQ\command.exe
[%WINDOWS%]\Um9iZXJ0bw\command.exe
[%WINDOWS%]\UXVhbGNvbW0\command.exe
[%WINDOWS%]\V2lsbCBNaXRjaGVsbA\command.exe
[%WINDOWS%]\VXNlcg\command.exe
[%WINDOWS%]\WGlhb0Jyb3RoZXI\command.exe
[%WINDOWS%]\YmI\command.exe
[%WINDOWS%]\YmVybmFyZCBj\command.exe
[%WINDOWS%]\YWRtaW4\command.exe
[%WINDOWS%]\zeta.exe
[%WINDOWS%]\ZHk\command.exe
[%WINDOWS%]\Zm8\command.exe
[%PROGRAM_FILES%]\AutoPrint\srvany.exe
[%PROGRAM_FILES%]\AXIS Communications\AXIS ThinWizard\SRVANY.EXE
[%PROGRAM_FILES%]\Favorite Ware\Reminder.exe
[%PROGRAM_FILES%]\Gateway\EzTune\DTSRVC.exe
[%PROGRAM_FILES%]\Gateway\EzTune\dtsslsrv.exe
[%PROGRAM_FILES%]\gnway\ddns\gnsrv.exe
[%PROGRAM_FILES%]\LAN-Control\srvany.exe
[%PROGRAM_FILES%]\Network Monitor\netmon.exe
[%PROGRAM_FILES%]\Power Translator\LogoMedia TranslateDotNet Server.exe
[%PROGRAM_FILES%]\Priva\Priva Office\tools\srvany.exe
[%PROGRAM_FILES%]\RAdmin\r_server.exe
[%PROGRAM_FILES%]\Remote Task Manager\rtmservice.exe
[%PROGRAM_FILES%]\SAMSUNG\FW LiveUpdate\FWManager.exe
[%PROGRAM_FILES%]\SAPpc\SapGui\srvany.exe
[%PROGRAM_FILES%]\timbuktu pro\tb2launch.exe
[%PROGRAM_FILES%]\WinAntiVirus 2005 Pro\AVKernel.exe
[%PROGRAM_FILES%]\WinAntiVirus Pro 2006\FWSvc.exe
[%PROGRAM_FILES_COMMON%]\SNAPST~1\Common\X10nets.exe
[%PROGRAM_FILES_COMMON%]\WinTools\WToolsS.exe
[%PROGRAM_FILES_COMMON%]\X10\Common\X10nets.exe
[%SYSTEM%]\$sys$filesystem\$sys$DRMServer.exe
[%SYSTEM%]\acs.exe
[%SYSTEM%]\altsvc.exe
[%SYSTEM%]\aniServ.exe
[%SYSTEM%]\CfgSrvc.exe
[%SYSTEM%]\dllcache\win32\winlogon.exe
[%SYSTEM%]\drivers\etc\smss.exe
[%SYSTEM%]\FreezeScreenSaver.exe
[%SYSTEM%]\lsas.exe
[%SYSTEM%]\msCMTsrvc.exe
[%SYSTEM%]\ndesjcoq6.exe
[%SYSTEM%]\rtmservice.exe
[%SYSTEM%]\r_server.exe
[%SYSTEM%]\slee503.exe
[%SYSTEM%]\SnoopFreeSvc.exe
[%SYSTEM%]\Srvany.exe
[%SYSTEM%]\ujqdrj.exe
[%SYSTEM%]\windlls.exe
[%SYSTEM%]\x10nets.exe
[%WINDOWS%]\am9yZGFu\command.exe
[%WINDOWS%]\aQ\command.exe
[%WINDOWS%]\b3duZXI\command.exe
[%WINDOWS%]\c2FpZg\command.exe
[%WINDOWS%]\cmFj\command.exe
[%WINDOWS%]\IA\command.exe
[%WINDOWS%]\iejs.exe
[%WINDOWS%]\IGRvbg\command.exe
[%WINDOWS%]\Lg\command.exe
[%WINDOWS%]\QmFyYmFyYSBNIEhhd2tpbnM\command.exe
[%WINDOWS%]\QnJpYW4\command.exe
[%WINDOWS%]\QWFyb25z\command.exe
[%WINDOWS%]\RGFycmVu\command.exe
[%WINDOWS%]\RmFtLiBkZSBHcmVlZg\command.exe
[%WINDOWS%]\RWR3YXJkIEZvcnRlc2N1ZQ\command.exe
[%WINDOWS%]\S3Jpc3Rlbg\command.exe
[%WINDOWS%]\SG9tZQ\command.exe
[%WINDOWS%]\Sm9lIFN0ZXJu\command.exe
[%WINDOWS%]\SmFtYWhs\command.exe
[%WINDOWS%]\SmFtZXMgRCBWb3lsZXM\command.exe
[%WINDOWS%]\SmFtZXMgTGF1cmVuY2UgV2hpdGluZw\command.exe
[%WINDOWS%]\SmVhbmV0dGUgTGV1c2luaw\command.exe
[%WINDOWS%]\SmVmZiBNb3JhbGVz\command.exe
[%WINDOWS%]\SmVmZnJleQ\command.exe
[%WINDOWS%]\SnU\command.exe
[%WINDOWS%]\SnVhbiBGIExlemFtYQ\command.exe
[%WINDOWS%]\srvany.exe
[%WINDOWS%]\svcproc.exe
[%WINDOWS%]\SW5tYW4\command.exe
[%WINDOWS%]\SYSTEM\DRIVER\ntsrv.exe
[%WINDOWS%]\SYSTEM\DRIVER\ntuser.exe
[%WINDOWS%]\T0VN\command.exe
[%WINDOWS%]\T3duZXI\command.exe
[%WINDOWS%]\TGFycnkgTWFjaW9jaQ\command.exe
[%WINDOWS%]\TGlhbmUgV2hpdG5leQ\command.exe
[%WINDOWS%]\Tm9taXM\command.exe
[%WINDOWS%]\TmljayBTdGVyY3phbGE\command.exe
[%WINDOWS%]\TUlOSCBMRQ\command.exe
[%WINDOWS%]\TW9sbHkgQXJub2xk\command.exe
[%WINDOWS%]\twain_32\SiPix\SCBlink2\srvany.exe
[%WINDOWS%]\TWF0dCBaZXR6\command.exe
[%WINDOWS%]\TWU\command.exe
[%WINDOWS%]\U2V3YSBTaW5nYWw\command.exe
[%WINDOWS%]\U3RhbiBTbWl0aA\command.exe
[%WINDOWS%]\U3RlcGhlbiBBcndpbmU\command.exe
[%WINDOWS%]\UEI\command.exe
[%WINDOWS%]\UGF0IERlc2hhdw\command.exe
[%WINDOWS%]\UHJlZmVycmVkIEN1c3RvbWVy\command.exe
[%WINDOWS%]\UkQ\command.exe
[%WINDOWS%]\Um9iZXJ0bw\command.exe
[%WINDOWS%]\UXVhbGNvbW0\command.exe
[%WINDOWS%]\V2lsbCBNaXRjaGVsbA\command.exe
[%WINDOWS%]\VXNlcg\command.exe
[%WINDOWS%]\WGlhb0Jyb3RoZXI\command.exe
[%WINDOWS%]\YmI\command.exe
[%WINDOWS%]\YmVybmFyZCBj\command.exe
[%WINDOWS%]\YWRtaW4\command.exe
[%WINDOWS%]\zeta.exe
[%WINDOWS%]\ZHk\command.exe
[%WINDOWS%]\Zm8\command.exe

CWS Downloader Registry Keys:
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy__11f*00df*00e4*0006#*00b7*00ba*00c4*00d6`i
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ 11F%DF%E4%06#%B7%BA%C4%D6`I
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\$sys$DRMServer
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\%8F 6Q%D4%F5%13'%AA%B4%C6%D08
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ACS
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ANISERVICE
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AppSched
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AppSched10
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Asset Management Daemon
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AutoPrintPro
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AVKernel
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Blink2PnP
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CfgSrvc
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\cmdservice
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DanaReg
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DanaSubst
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DistRestart
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Domino
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DTSRVC
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Endcust
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\FreezeScreenSaver
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\FWSvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GHServer
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gnwayDDNS
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HsspConfig
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IBAffinity
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LAN-MySQL
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LogDataMgr
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LogoMedia TranslateDotNet Server
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Maximizer1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msCMTSrvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netbios Helper Service
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netddehard
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Network Monitor
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Network Switching Alerter
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTBOOT
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTLOAD
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTSVCMGR
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Office Mail
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PosysMirror
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\promtdbmsserver
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\promtmonitor
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PSecret
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PsqlWge
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QcomPostInstall
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RecTracBroker
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RRAANXGN
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RTM
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\r_server
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SAP IGS Service
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SLEE_503_SERVICE
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SnoopFreeSvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SurferService
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SvcProc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sv_logger
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tadxrgsb6
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tb2Launch
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ThinWizard
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TunnelBroker
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Windows smss
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\wintoolssvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\x10nets
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ZESOFT

CWS Downloader Registry Values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run-
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

CWS Downloader indications of infection

This symptoms of CWS Downloader detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Win32.Startpage.BN!downloader Trojan Removal instruction
BO.plugin.RCR Backdoor Symptoms
Schrunch Trojan Cleaner

0 comments

WM.Gangsterz Trojan

WM.Gangsterz virus description
Technical details:
Categories: Trojan,Backdoor,Downloader,DoS
WM.Gangsterz Aliases:
[Kaspersky]Macro.Word.Gang;
[Eset]WM/Gangsterz.A virus;
[Panda]WM/Gansterz.A;
[Computer Associates]WordMacro/Gangsterz.A

WM.Gangsterz indications of infection

This symptoms of WM.Gangsterz detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Removing AlwaysUpdateNews Adware
Removing SillyDl.CGV Trojan
Removing Casino Trojan
adrevolver.com Tracking Cookie Symptoms
SillyDl.CLB Trojan Symptoms

0 comments

TrojanDropper.Win32.Gluer Trojan

TrojanDropper.Win32.Gluer virus description
Technical details:
Categories: Trojan
TrojanDropper.Win32.Gluer Aliases:
[Panda]Trojan Horse.LC

TrojanDropper.Win32.Gluer indications of infection

This symptoms of TrojanDropper.Win32.Gluer detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Power.Linking.Profits.com BHO Cleaner
Removing BootMerlin Trojan
Pigeon.EWE Trojan Cleaner
TrojanClicker.Win32.Ipons Trojan Removal
Removing Alia Trojan

0 comments

Delf.rc Trojan

Delf.rc virus description
Technical details:
Categories: Trojan

Delf.rc Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

Delf.rc indications of infection

This symptoms of Delf.rc detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Lamers.Death Backdoor Symptoms
Remove Tool.Zombie Trojan
ZKeylog Spyware Removal instruction
CashDialer Adware Removal instruction
Remove Game Trojan

0 comments

Pigeon.EHG Trojan

Pigeon.EHG virus description
Technical details:
Categories: Trojan

Pigeon.EHG indications of infection

This symptoms of Pigeon.EHG detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Remove TrackDownload Trojan
Pigeon.AYF Trojan Removal instruction
Bancos.GRD Trojan Cleaner

0 comments

Mezzia Trojan

Mezzia virus description
Technical details:
Categories: Trojan

Mezzia Files:
[%DESKTOP%]\New Folder\cakewalk_sonar_4_keygen.exe
[%DESKTOP%]\New Folder\cakewalk_sonar_4_keygen.exe

Mezzia indications of infection

This symptoms of Mezzia detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Outwar Trojan Symptoms
Removing Agent.AWW Trojan
Doklin Trojan Removal
Win32.Spyboter Trojan Information

0 comments

SillyDl.BBR Trojan

SillyDl.BBR virus description
Technical details:
Categories: Trojan

SillyDl.BBR indications of infection

This symptoms of SillyDl.BBR detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Pigeon.AXL Trojan Removal instruction
Trytoo Trojan Symptoms
Removing ClientMan.bho1 BHO

0 comments

Vxidl.AXG Trojan

Vxidl.AXG virus description
Technical details:
Categories: Trojan

Vxidl.AXG indications of infection

This symptoms of Vxidl.AXG detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Removing SuperBar Adware
Blss Trojan Removal instruction
W95.Merinos Trojan Removal
Glenwiry Trojan Removal instruction

0 comments

Tofger.ah Spyware

Tofger.ah virus description
Technical details:
Categories: Spyware

Tofger.ah indications of infection

This symptoms of Tofger.ah detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Removing Taiwan Trojan
Cancerbero Trojan Removal instruction
PWS.Iyus Trojan Cleaner
IEDriver Adware Removal instruction

0 comments

Hort Trojan

Hort virus description
Technical details:
Categories: Trojan,Backdoor,Downloader,DoS
Hort Aliases:
[Eset]Horse.1576 virus,Horse.1610 virus,Horse.1158 virus,Horse.1776 virus,Horse.1160 virus;
[McAfee]Hort.1576,Hort.1610,Hort,Hort.1776;
[Panda]Horse 5,Horse 3,Horse 2 B,Horse 4,Horse B Family;
[Computer Associates]Horse 5,Horse 3,Horse 1,Horse 4

Hort Files:
[%DESKTOP%]\ebay.url
[%FAVORITES%]\amazon.com.url
[%FAVORITES%]\amazon.url
[%FAVORITES%]\ebay.url
[%FAVORITES%]\expedia.com.url
[%FAVORITES%]\links\ebay.url
[%SYSTEM%]\msrev23.dll
[%SYSTEM%]\msrev43.dll
[%DESKTOP%]\ebay.url
[%FAVORITES%]\amazon.com.url
[%FAVORITES%]\amazon.url
[%FAVORITES%]\ebay.url
[%FAVORITES%]\expedia.com.url
[%FAVORITES%]\links\ebay.url
[%SYSTEM%]\msrev23.dll
[%SYSTEM%]\msrev43.dll

Hort Registry Keys:
HKEY_CLASSES_ROOT\clsid\{2cab0356-88e3-4902-a85d-379689c625e1}
HKEY_CLASSES_ROOT\clsid\{746455fe-d059-47e7-af0e-140e03f5a447}
HKEY_CLASSES_ROOT\clsid\{8940e505-72c6-44de-be85-1d746780efbf}
HKEY_CLASSES_ROOT\crypt.core
HKEY_CLASSES_ROOT\crypt.core.1
HKEY_CLASSES_ROOT\interface\{370f6327-41c4-4fa6-a2df-1ba57ee0fbb9}
HKEY_CLASSES_ROOT\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577}
HKEY_CLASSES_ROOT\interface\{7edc96e1-5dd3-11d4-b185-0050dab79376}
HKEY_CLASSES_ROOT\interface\{830d3aed-2fa9-454f-b266-d931862bbf34}
HKEY_CLASSES_ROOT\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273}
HKEY_CLASSES_ROOT\interface\{8ebb1743-9a2f-11d4-8a7e-0050da2ee1be}
HKEY_CLASSES_ROOT\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582}
HKEY_CLASSES_ROOT\interface\{a986f4db-792e-4571-8974-0bb6e024766f}
HKEY_CLASSES_ROOT\interface\{bccab53d-0895-40c3-a942-a03538ce227a}
HKEY_CLASSES_ROOT\interface\{c03351a3-6755-11d4-8a73-0050da2ee1be}
HKEY_CLASSES_ROOT\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39}
HKEY_CLASSES_ROOT\interface\{c4fee4a6-4b8b-11d4-8a6d-0050da2ee1be}
HKEY_CLASSES_ROOT\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c}
HKEY_CLASSES_ROOT\interface\{ef0372dc-f552-11d3-8528-0050dab79376}
HKEY_CLASSES_ROOT\interface\{ef0372de-f552-11d3-8528-0050dab79376}
HKEY_CLASSES_ROOT\typelib\{5e594162-60a9-487d-84b8-dbdd716cb862}
HKEY_CLASSES_ROOT\typelib\{baf13496-8f72-47a1-9cee-09238efc75f0}
HKEY_CLASSES_ROOT\typelib\{fdb10602-aa12-4e76-aae2-2b328a3e950a}
HKEY_LOCAL_MACHINE\software\classes\typelib\{8a044396-5da2-11d4-b185-0050dab79376}
HKEY_LOCAL_MACHINE\software\microsoft\direct2d
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{746455fe-d059-47e7-af0e-140e03f5a447}

Hort Registry Values:
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\fileexts\.ldb\openwithlist

Hort indications of infection

This symptoms of Hort detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Billboard Trojan Symptoms
Removing Henbang Trojan
Removing Agent.fd Trojan
AIMaster Trojan Information

0 comments

Buschtrommel.Beta Trojan

Buschtrommel.Beta virus description
Technical details:
Categories: Trojan,Backdoor,RAT
Buschtrommel.Beta Aliases:
[Kaspersky]Backdoor.Bushtrommel.a,Backdoor.Bushtrommel.b;
[Eset]Win32/Bushtrommel.A trojan,Win32/Bushtrommel.B trojan;
[McAfee]BackDoor-PN;
[F-Prot]security risk or a "backdoor" program;
[Computer Associates]Backdoor/Bushtrommel.B.Server

Buschtrommel.Beta indications of infection

This symptoms of Buschtrommel.Beta detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Removing Duddie Trojan

0 comments

HeadAche Trojan

HeadAche virus description
Technical details:
Categories: Trojan
HeadAche Aliases:
[Panda]Joke/Headache

HeadAche indications of infection

This symptoms of HeadAche detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
PC.Invader.alfa Backdoor Removal
Remove Bancos.HSI Trojan
Zindeart Trojan Removal instruction

0 comments

Bancos.HED Trojan

Bancos.HED virus description
Technical details:
Categories: Trojan

Bancos.HED indications of infection

This symptoms of Bancos.HED detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Backdoor.BO2K.plugin.Cast Trojan Removal
Removing Acropolis Trojan
SystemProcess Adware Symptoms
Bancos.GRW Trojan Removal

0 comments

Netster.Smart.Browse BHO

Netster.Smart.Browse virus description
Technical details:
Categories: BHO,Toolbar

Netster.Smart.Browse Files:
[%PROFILE%]\netster.dll
[%SYSTEM%]\netster.dll
[%SYSTEM%]\_netster.dll
[%WINDOWS%]\system\netster.dll
[%WINDOWS%]\system\_netster.dll
[%PROFILE%]\netster.dll
[%SYSTEM%]\netster.dll
[%SYSTEM%]\_netster.dll
[%WINDOWS%]\system\netster.dll
[%WINDOWS%]\system\_netster.dll

Netster.Smart.Browse Registry Keys:
HKEY_CLASSES_ROOT\clsid\{359f7e49-1ea0-4671-92e9-61e32fe25c5e}
HKEY_CLASSES_ROOT\clsid\{856d6a8e-a24c-498a-a55a-2b25c606a6b4}
HKEY_CLASSES_ROOT\clsid\{acc63168-5876-439b-95bc-3bae59ca860c}
HKEY_CLASSES_ROOT\clsid\{b98f79f4-3619-49fb-a7e7-b737e58c5727}
HKEY_CLASSES_ROOT\interface\{aa644580-8f8a-4f8b-9263-42e14c7c2fcb}
HKEY_CLASSES_ROOT\interface\{b4fadc3f-7c5f-4fc8-a050-dbeb2c119dd5}
HKEY_CLASSES_ROOT\interface\{eed9bcbf-d40e-408f-8080-e4afc9fddb36}
HKEY_CLASSES_ROOT\interface\{f5619700-a76a-462b-abdd-6372ff10eab7}
HKEY_CLASSES_ROOT\netster.bho
HKEY_CLASSES_ROOT\netster.bho.1
HKEY_CLASSES_ROOT\netster.initscript
HKEY_CLASSES_ROOT\netster.initscript.1
HKEY_CLASSES_ROOT\netster.netsterband
HKEY_CLASSES_ROOT\netster.netsterband.1
HKEY_CLASSES_ROOT\netster.netsterph
HKEY_CLASSES_ROOT\netster.netsterph.1
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{b98f79f4-3619-49fb-a7e7-b737e58c5727}
HKEY_CLASSES_ROOT\typelib\{e1c643a6-8b7b-4f28-b652-f712fe4f7402}
HKEY_LOCAL_MACHINE\software\classes\clsid\{856d6a8e-a24c-498a-a55a-2b25c606a6b4}
HKEY_LOCAL_MACHINE\software\classes\clsid\{b98f79f4-3619-49fb-a7e7-b737e58c5727}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{b98f79f4-3619-49fb-a7e7-b737e58c5727}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\{856d6a8e-a24c-498a-a55a-2b25c606a6b4}
HKEY_LOCAL_MACHINE\software\netster

Netster.Smart.Browse Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar

Netster.Smart.Browse indications of infection

This symptoms of Netster.Smart.Browse detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
DKS Trojan Information
SCN Toolbar Information
BestSearchEngine Trojan Information
Forbot.gen Backdoor Removal instruction
oxado.com Tracking Cookie Removal

0 comments

SillyDl.DNA Trojan

SillyDl.DNA virus description
Technical details:
Categories: Trojan
SillyDl.DNA Aliases:
[Kaspersky]Trojan-Proxy.Win32.Wopla.ac;
[Other]TrojanProxy:Win32/Wopla.Z

SillyDl.DNA Registry Values:
HKEY_CURRENT_USER\software\microsoft\windows nt\currentversion\windows
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

SillyDl.DNA indications of infection

This symptoms of SillyDl.DNA detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Bancos.ART Trojan Removal instruction
Mango Trojan Information

0 comments
Subscribe to: Posts (Atom)