Split.vx
|
Description:
|
Spyware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, May 06, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Split/vx compromises your computer's security.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SUPPRIMER SPYWARE »
Geographical Distribution of Threat "Split.vx"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\maxd641.exe
MD5: 0E5411E753E30A0BDCA79F63CB84D582 Size:13824
MD5: 78D178FA91517B19BB60CC213057AEB3 Size:13312
%SYSDIR%\ddr64.dll
MD5: A3AFAF3D0A674C0F8EB71BB868A21FB4 Size:27
%SYSDIR%\bre32.dll
MD5: DE36BA14C18E88607BCFE1A360D59217 Size:39
MD5: 347ACFFB6D8DF3AA4B9E7A263C39F474 Size:39
MD5: 6746248019882197E5980F8C6214E8EA Size:39
%SYSDIR%\MAXDregwiz.exe
MD5: 00EC9E6C4307EEE704EE2341781013B4 Size:49152
%SYSDIR%\qvxgamet4.exe
MD5: F047724DA42A388E9ECE223BEF89C99A Size:25825
MD5: 330AB6F31B9B40A5FADBA4A588F0041E Size:106
%SYSDIR%\qvxgamet2.exe
MD5: 78D27D285815A36DEAEB2406589E6739 Size:13824
%SYSDIR%\maxd64.exe
MD5: 8012EEB9694BD3EF807CFCFFE71BBD21 Size:13102
%SYSDIR%\latest.exe
MD5: D957FE731379EBE1A273D14D0A45AC61 Size:57342
MD5: 3A7E5B143F68DBF7CA5F848AF54CAE88 Size:57342
%SYSDIR%\maxd1.exe
MD5: 81051BCC2CF1BEDF378224B0A93E2877 Size:2
%SYSDIR%\sysvcs.exe
MD5: C637A8BDD8D93A4E55523281E6A08BA9 Size:57342
%SYSDIR%\split1.exe
MD5: 6BE9B7A11E15248D1DAE8306C3F4C8F3 Size:12125
MD5: 9DA59CDEC92F8D73F09103937D762CC7 Size:16081
%SYSDIR%\svwhost.exe
MD5: B3998A509A3F2229DC6F5414F18BFE1B Size:3582113
%USERPROFILE%\Local Settings\Temporary Internet Files\Content.IE5\U1A830TH\ztoolwin[1].exe
MD5: 6A77AC16F3580A0E3809BA2500AD7B8A Size:823672
- Detected Files with variable Filenames:
MD5: DF68B6ED20CC54364B024A29972C84DD Size: 1790464
%SystemDiskRoot%\Windows.old.001\Users\virginie\EuroScripT\EuroScripT\EuroScripT.exe
%SystemDiskRoot%\Windows.old.001\$Recycle.Bin\S-1-5-21-282927919-1401421890-3587031189-1000\$RN99CXL\EuroScripT\EuroScripT.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX14.375\Asi Script\TunceL Script.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX14.171\Asi Script\TunceL Script.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX06.937\Asi Script\TunceL Script.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX00.062\Asi Script\TunceL Script.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX07.500\Asi Script\TunceL Script.exe
%USERPROFILE%\Local Settings\Temp\Rar$EX07.563\Asi Script\TunceL Script.exe
Detecting items list:
- Files by Name
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\gdnOT2261.exe
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\ztool.exe
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\zgame*.exe
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\ztool*.exe
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\test.exe
%userprofile%\Local Settings\Temporary Internet Files\Content.IE5\*\latest.exe
%sysdir%\maxd*.exe
%sysdir%\birdihuy32.dll
%sysdir%\msicf32.exe
%sysdir%\birdihuy.dll
%systemdiskroot%\birdihuy.dll
%systemdiskroot%\birdihuy.dll
%systemdiskroot%\birdihuy32.dll
%systemdiskroot%\birdihuy32.dll
%sysdir%\chp.dll
%sysdir%\ddr64.dll
%sysdir%\chp.dll
%TEMP%\zbz.bat
%TEMP%\*\spoolm.exe
%sysdir%\latest.exe
%sysdir%\split1.exe
%sysdir%\docent*.dll
%sysdir%\qvxgame*.exe
%sysdir%\svwhost.dll
%windir%\system\svwhost.dll
%sysdir%\split2.exe
%sysdir%\svwhost.exe
%windir%\system\svwhost.exe
%windir%\temp\*\spoolm.exe
%systemdiskroot%\recycler\svchost.exe
%systemdiskroot%\recycler\svchost.exe
%systemdiskroot%\recycler\svchost.dll
%systemdiskroot%\recycler\svchost.dll
%windir%\driversdata\svchost.exe
%sysdir%\sysvcs.exe
%sysdir%\wmedia16.exe
%sysdir%\paradise.raw.exe
%TEMP%\dmx*.tmp
%sysdir%\bre.dll
%sysdir%\bre32.dll
- Files by MD5
MD5: 59CCFF12F3A714E3A06175AC45152D03 Size: 8192
- Registry Keys
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\docent0
«
Go to Software Database
