MalwareWipe
|
Description:
|
Rogue Security Program
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Friday, May 09, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Rogue/Suspect Anti-Spyware Product
"Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "MalwareWipe"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\MalwareWipe\MalwareWipe.exe
MD5: 0370D1B2D75E6C1EB35FEABC7E125EC1 Size:1544192
MD5: F78330F48D6B873394C1747D00F3671A Size:1527808
MD5: 5D62DD7E4A22136D42DF6AADB3820BED Size:1544192
MD5: 113C80FCD021B3282CF391E38A2C0A69 Size:1531904
%PROGRAMFILES%\MalwareWipe\DbgHelp.Dll
MD5: 647C65CFE03C00114A9B5D351DB4B23E Size:634880
%PROGRAMFILES%\MalwareWipe\msvcr71.dll
MD5: 86F1895AE8C5E8B17D99ECE768A70732 Size:348160
%PROGRAMFILES%\MalwareWipe\msvcp71.dll
MD5: 561FA2ABB31DFA8FAB762145F81667C2 Size:499712
%PROGRAMFILES%\MalwareWipe\uninst.exe
MD5: 2AFEA8079479F0E2956E5498E230F68B Size:35071
MD5: 256E51CE189ED7C2E71928C7FF9711E9 Size:35583
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%ProgramFiles%\MalwareWipe\db.dat
%ProgramFiles%\MalwareWipe\MalwareWipe.exe
%ProgramFiles%\MalwareWipe\MalwareWipe.url
%ProgramFiles%\MalwareWipe\uninst.exe
%APPDATA%\Microsoft\Internet Explorer\Quick Launch\MalwareWipe ?.*.lnk
%DESKTOP%\MalwareWipe.lnk
%START_PROGRAMS%\MalwareWipe\MalwareWipe ?.? Website.lnk
%START_PROGRAMS%\MalwareWipe\MalwareWipe ?.*.lnk
%START_PROGRAMS%\MalwareWipe\Uninstall MalwareWipe ?.*.lnk
%START_MENU%\MalwareWipe ?.*.lnk
- Files by Directories
%ProgramFiles%\MalwareWipe
%START_PROGRAMS%\MalwareWipe
- Files by CLSID or Name
CLSID=A5C70510-5A01-B2A5-CF84-D6DC13859967
- Registry Keys
HKLM\SOFTWARE\Classes\AppID\{70F17C8C-1744-41B6-9D07-575DB448DCC5}
HKLM\SOFTWARE\Classes\AppID\MalwareWipe.EXE
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MalwareWipe.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareWipe
HKLM\SOFTWARE\MalwareWipe
- Registry Values
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=MalwareWipe
«
Go to Software Database