IM-Worm.Sohanad.t
|
Description:
|
Worm
|
|
Risk Level:
|
Critical
|
|
Date of First Occurence:
|
Wednesday, April 23, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Computer worm is malicious software application designed to spread via computer networks.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "IM-Worm.Sohanad.t"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\SSVICHOSST.exe
MD5: E64863EC4DD52EEFF6C3A3B2E665B1EB Size:239905
MD5: 55A4F55402BD94C000B1E63E1F974004 Size:239905
MD5: E26AA35C6BFB378E2713AB0F008B653C Size:240128
- Detected Files with variable Filenames:
MD5: 198FA37FA6602370A23A6294426A436B Size: 239905
L:\FOUND.000\FOUND.000.exe
L:\noga\SAV9.0_en\SAV9.0_en.exe
L:\noga\SAV9.0_en\Tools\Tools.exe
L:\noga\SAV9.0_en\Tools\WebInst\WebInst.exe
L:\noga\SAV9.0_en\Tools\WebInst\webinst\webinst.exe
L:\noga\SAV9.0_en\Tools\WebInst\Unsigned\Unsigned.exe
L:\noga\SAV9.0_en\Tools\UNINSTLL\UNINSTLL.exe
L:\noga\SAV9.0_en\Tools\UNINSTLL\Scripts\Scripts.exe
L:\noga\SAV9.0_en\Tools\Sample\Sample.exe
L:\noga\SAV9.0_en\Tools\Nosuprt\Nosuprt.exe
L:\noga\SAV9.0_en\Tools\Nosuprt\Packager\Packager.exe
and next 329 variations.
MD5: D0FDB2852B99F14B03E309F92A26539E Size: 273155
%WINDIR%\SVICHOOST.exe
%SYSDIR%\SVICHOOST.exe
MD5: CED4A162D5583A71482ADE3FDD81BDC4 Size: 239905
e:\D BACKUP\Umapathi Personal Files\Figs\IMAGE\Real\Real.exe
e:\D BACKUP\Umapathi Personal Files\gunter\HITS\RSLeela\RSLeela.exe
e:\D BACKUP\Umapathi Personal Files\gunter\HITS\docs\docs.exe
e:\D BACKUP\Umapathi Personal Files\gunter\HITS\txt\txt.exe
e:\D BACKUP\Umapathi Personal Files\gunter\HITS\HITS.exe
e:\D BACKUP\Umapathi Personal Files\gunter\gunter.exe
d:\Funny\funny\SSVICHOSST.exe
%ALLUSERSDOCUMENTS%\SSVICHOSST.exe
%ALLUSERSDOCUMENTS%\New Folder.exe
%ALLUSERSDOCUMENTS%\My Videos\My Videos.exe
%ALLUSERSDOCUMENTS%\My Pictures\Sample Pictures\Sample Pictures.exe
and next 6 variations.
MD5: 41F399AD6769A06A991A14D7AAA45CFD Size: 240128
%WINDIR%\SSVICHOSST.exe
%SYSDIR%\SSVICHOSST.exe
MD5: F4A7BEE8E0D9225A7DE05B6BCBB3562D Size: 239905
%SYSDIR%\SSVICHOSST.exe
%SYSDIR%\system32.exe
%USERPROFILE%\Local Settings\Temp\temp.exe
%WINDIR%\windows.exe
%WINDIR%\SSVICHOSST.exe
%PROGRAMFILES%\program files.exe
%FAVORITES%\Links\Links.exe
%FAVORITES%\Favorites.exe
%DESKTOP%\New Briefcase\Icd-p28_addl.sp.acb.kota\ICD-P28_ADDL.SP.ACB.KOTA.exe
%DESKTOP%\New Briefcase\Icd-p28_addl.sp.acb.kota\E\E.exe
%DESKTOP%\New Briefcase\Icd-p28_addl.sp.acb.kota\D\D.exe
and next 176 variations.
MD5: BBA1A10264562F6B777516E2AB02F184 Size: 239905
%WINDIR%\SSVICHOSST.exe
%SYSDIR%\SSVICHOSST.exe
MD5: E987AE1FA1BED136D232975A70FF020E Size: 239905
%WINDIR%\SSVICHOSST.exe
%SYSDIR%\SSVICHOSST.exe
MD5: 55A4F55402BD94C000B1E63E1F974004 Size: 239905
%SYSDIR%\SSVICHOSST.exe
%WINDIR%\SSVICHOSST.exe
%SYSDIR%\system32.exe
%WINDIR%\windows.exe
%PROGRAMFILES%\program files.exe
%FAVORITES%\Favorites.exe
%FAVORITES%\Links\Links.exe
%DESKTOP%\Desktop.exe
%START_MENUALL%\Start Menu.exe
%START_PROGRAMSALL%\Programs.exe
%START_PROGRAMSALL%\Crawler Toolbar\Crawler Toolbar.exe
and next 2256 variations.
Detecting items list:
- Files by MD5
MD5: 198FA37FA6602370A23A6294426A436B Size: 239905
MD5: EFFF56FB5A5B3859E241263BCEDEF49C Size: 497953
MD5: F4A7BEE8E0D9225A7DE05B6BCBB3562D Size: 239905
MD5: D0FDB2852B99F14B03E309F92A26539E Size: 273155
MD5: 495DE04859A29D37E0D953D397C41E4E Size: 648669
MD5: 3B82401167D1A7AC04CEC48B9A501654 Size: 811520
MD5: 54647F1628AB90A2A5598A8A9E90B939 Size: 222461
MD5: E987AE1FA1BED136D232975A70FF020E Size: 239905
MD5: DD20CF5B03E101BAEE018FDF2DC6FF6B Size: 268355
MD5: 35C3CD6ADC8C31010F113AAFF3E380C8 Size: 244483
«
Go to Software Database
