Virusburst
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, May 27, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Virusburst is an adware that issue fake warnings on your computer that it is infected with spyware and will convinced the user to purchased the full version.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Virusburst"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\virusburst\VirusBurst.exe
MD5: 1FD613D3629814D9298BEC3710B162A9 Size:1507328
%SYSDIR%\dcvwaah.dll
MD5: 99B49D0195FF7A9736EF5F021A41E76F Size:77824
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%programfiles%\virusburst\virusburst.exe
%sysdir%\eowygj.dll
%sysdir%\duxzj.dll
%sysdir%\xtgwjrm.dll
%sysdir%\gtpbx.dll
%sysdir%\DCVWAAH.DLL
%sysdir%\oebxpba.dll
%DESKTOP%\VirusBursters.lnk
%START_PROGRAMS%\VirusBursters\Uninstall VirusBursters 6.2.lnk
%START_PROGRAMS%\VirusBursters\VirusBursters 6.2 Website.lnk
%START_PROGRAMS%\VirusBursters\VirusBursters 6.2.lnk
- Files by MD5
MD5: C93F8267D99CADC32CC65FC2768F5E83 Size: 176128
- Files by Directories
%programfiles%\virusburst
%START_PROGRAMS%\VirusBursters
- Files by CLSID or Name
CLSID=e944d14a-03aa-43e3-9d0e-4f50c4d1b005
CLSID=728E63B0-5165-4E98-9C83-EF987EEB66C9
CLSID=7fa55359-7223-410f-bc82-efb3e3ded07f
CLSID=40dcff6e-af8d-4183-8ebe-a82270ac449e
CLSID=4fc003c3-87a0-489c-85cd-878246eb2d18
CLSID=CCFB2B33-F4DB-B63D-ABDC-C7384ED93B34
- Registry Keys
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusBursters
HKLM\SOFTWARE\VirusBursters
HKCR\TypeLib\{728E63B0-5165-4E98-9C83-EF987EEB66C9}
HKCR\Interface\{05DDEB15-33E0-4DE3-B7CD-84E2E011D889}
HKCR\Interface\{0B386DB3-239C-41D6-85CB-CA728F31F3FC}
HKCR\Interface\{2E94C834-9EFA-4C46-B032-A185C69EBC53}
HKCR\Interface\{34D2738B-701F-454A-9198-25924CF75E92}
HKCR\Interface\{3863C215-13E6-4E29-9921-78CE0A6F272A}
HKCR\Interface\{420EE180-CE72-40AC-83CB-B55DCB68CCF1}
HKCR\Interface\{638C512D-C04A-4E06-A9A3-8127C4E5B4E7}
HKCR\Interface\{63CA0A34-071D-4780-A5BD-28F0CFC3E512}
HKCR\Interface\{73467269-7B9F-4F66-B381-D914A7ACECEB}
HKCR\Interface\{7DF33004-9121-4FD5-93B6-6376060D2D3A}
HKCR\Interface\{A7308DE2-D644-488D-80D5-071710F5B840}
HKCR\Interface\{ABA193DF-6C52-4D02-975A-94A85B32DC3C}
HKCR\Interface\{AFB40450-78FE-4F01-BE69-A76A8C396304}
HKCR\Interface\{C793C7C5-E89F-48EC-83C9-06AC097E8CB9}
HKCR\Interface\{CAD91BD2-75E7-4E5F-A939-4ECC2D512918}
HKCR\Interface\{E120C137-922C-434C-8A02-2A8D27B3E2D2}
HKLM\SOFTWARE\VirusBurst
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusBurst
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\VirusBurst.exe
- Registry Values
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=VirusBurst
«
Go to Software Database
