Archive for the 'Startup Type' Category

« Previous Entries
Next Entries »

djvlg2072387.exe is a trojan fakealert component

Sunday, February 8th, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: djvlg2072387
Filename: djvlg2072387.exe
Command: %appdata%\Google\djvlg2072387.exe
Startup Type: HKCU->run
HijackThis Category: O4
Description: trojan fakealert component
Notes: The trojan uses fake Security Center Alert to trick you into purchasing rogue antispyware

How to remove: How to remove Spyware.ISpynow, win32.zafi.b, Win32.Netsky.Q, Trojan.Zlob.G (Fake Security Center Alert)

Posted in O4, Run, Trojan | No Comments »

gaopdxqltiqmuy.sys is a rootkit/trojan

Sunday, February 8th, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: gaopdxqltiqmuy
Filename: gaopdxqltiqmuy.sys
Command: c:\windows\system32\drivers\gaopdxqltiqmuy.sys
Startup Type: Hidden driver
Description: Rootkit/trojan component

How to remove: How to remove trojan TDSSserv (TDSSserv.sys), clbdriver.sys and seneka.sys

Posted in Driver, Rootkit | No Comments »

boot.com is a autorun.inf trojan

Sunday, February 8th, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: boot
Filename: boot.com
Command: c:\resycled\boot.com
Startup Type: autorun.inf
Description: autorun.inf trojan component

How to remove: How to remove trojans that uses autorun.inf file

Posted in autorun.inf, Trojan | No Comments »

wjfvju is a malware

Sunday, February 8th, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: wjfvju
Startup Type:svchost
Combofix/RSIT Line:

R4 wjfvju;wjfvju;c:\windows\system32\SVCHOST.EXE -k wjfvju [2004-08-18 14336]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
wjfvju REG_MULTI_SZ wjfvju

Description: unknown malware component

Posted in Malware, SvcHost | No Comments »

WinHelp3x.exe is a malware

Sunday, February 8th, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: WinHelp3x
Filename: WinHelp3x.exe
Command: c:\windows\system32\WinHelp3x.exe
Startup Type: Service
Combofix/ RSIT Line:

R4 WinHelp3x;Windows Help System;c:\windows\system32\WinHelp3x.exe [2009-01-16 15910]

Description: unknown trojan component

Posted in Malware, Service | No Comments »

WinHelp31.exe is a malware

Monday, February 2nd, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: WinHelp31
Filename: WinHelp31.exe
Command: c:\windows\system32\WinHelp31.exe
Startup Type: Service
RSIT/Combofix Line:

R4 WinHelp31;Windows Help System1;c:\windows\system32\WinHelp31.exe [2009-01-16 41217]

Description: unknown malware

Posted in Malware, Service | No Comments »

SafeTest.exe is a malware

Monday, February 2nd, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: SafeTest
Filename: SafeTest.exe
Registry key:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“SafeTest”=”c:\windows\system32\SafeTest.exe” [2009-01-16 69484]

Command: c:\windows\system32\SafeTest.exe
Startup Type: HKLM->Run
HijackThis Category: O4
Description: unknown malware

Posted in Malware, O4, Run | No Comments »

S002.exe is a malware

Monday, February 2nd, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: S002
Filename: S002.exe
Command: C:\WINDOWS\system32\oaVWe\S002.exe
Startup Type: Service
RSIT/Combofix Line:

S2 RemoteStorages;Network Connections Management; C:\WINDOWS\system32\oaVWe\S002.exe [2009-01-19 43008]

Description: unknown malware

Posted in Malware, Service | No Comments »

DuBa.exe is a malware

Monday, February 2nd, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: DuBa
Filename: DuBa.exe
Command: C:\WINDOWS\system32\DuBa.exe
Startup Type: Service
RSIT/Combofix Line:

S2 KingDuuBa;KingDuBa Driver; C:\WINDOWS\system32\DuBa.exe [2009-01-19 304640]

Description: unknown malware
Notes:

Posted in Malware, Service | No Comments »

jgok.exe is a malware

Monday, February 2nd, 2009

This is an harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: jgok
Filename: jgok.exe
Command: C:\WINDOWS\system32\jgok.exe
Startup Type: Service
RSIT/Combofix Line:
Description: unknown malware

Posted in Malware, Service | No Comments »

« Previous Entries
Next Entries »