Server-FTP.Serv-U.6404

Description:	Unclassified Threat
Risk Level:	Medium
Date of First Occurence:	Monday, April 14, 2008
Software Developer:	(unknown)
Brief Info:	Unclassified threats are threats that are not properly sorted or threats having an unknown publisher.
Removal:	This threat can be removed using "Spyware Terminator"

REMOVER SPYWARE »

Geographical Distribution of Threat "Server-FTP.Serv-U.6404"

Threat Info

View All

Detected Items

Detected Files: %WINDIR%\ConfigSetRoot\Install\WPI\install\ServU\su6401.exe MD5: FBFE1CC41E1A7CDA06B9B0B76E2000DE Size:2882064 e:\TDDownload\ha_Serv-U\ha_Serv-U6406\ServUTray.exe MD5: 684C388AF388CC61B2F3C72EC601C24B Size:102400 D:\FTP\HB-ServU\HB-ServU\Serv-U\ServUTray.exe MD5: 7E21EB24ADC3F49F1141391BF5B97CCF Size:102400
Detected Files with variable Filenames: MD5: 632F26749CA8A0C17BD90581E0DC912B Size: 4988728 %SystemDiskRoot%\NEWSOFT2008_3\USB_RESPALDO\Downloads\Serv-U_FTP.Server-7.1.0.0-Corporate-Edition\Serv-U FTP.Server-7.1.0.0-Corporate-Edition\su7100.exe %SystemDiskRoot%\NEWSOFT2008_2\DVD_SOFTWARE\Serv-U FTP Server v7 Corporate Edition\su7100.exe %USERDOCUMENTS%\Corporate Critical Files\MG9K\ShellPrograms\ServUSetup.exe %USERPROFILE%\DoctorWeb\Quarantine\ServUSetup.exe %USERDOCUMENTS%\Downloads\ServUSetup.exe e:\PROGRAMAS\Ftp\ServUSetup.exe %DESKTOP%\Serv-U FTP Server 7.1.0.0 Corporate\su7100.exe %USERDOCUMENTS%\Ments\serv-u.7100\su7100.exe %SystemDiskRoot%\Utiles\FTserver\su7100.exe MD5: 1AD4F1D9722A92E9B8995F23F3FFEA17 Size: 102400 %PROGRAMFILES%\RhinoSoft.com\Serv-U\ServUTray.exe %SystemDiskRoot%\Utilits\Serv-U\ServUTray.exe j:\Program Files\RhinoSoft.com\Serv-U\ServUTray.exe MD5: 4ED6CFB7C17ECBE28826C839C3944E74 Size: 901120 %PROGRAMFILES%\RhinoSoft.com\Serv-U\ServUDaemon.exe e:\!Install\FTP\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT\MiNT\ServUDaemon.exe g:\Program\Lan & FTP\Serv-U FTP Server\MiNT\ServUDaemon.exe %DESKTOP%\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT\MiNT\ServUDaemon.exe g:\Downloads\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT\m-su6405\MiNT\ServUDaemon.exe w:\Programok\Serv-U FTP Server v6.4.0.5 Corporate.Edition\MiNT\ServUDaemon.exe %PROGRAMFILES%\RhinoSoft.com\Serv-U\crack\ServUDaemon.exe %PROGRAMFILES%\RhinoSoft.com\Serv-U\servudaemon.exe.ren %SystemDiskRoot%\Install\FTP server\ServU\MiNT\ServUDaemon.exe %SystemDiskRoot%\a\MiNT\ServUDaemon.exe D:\xp_green\Serv-U\ServUDaemon.exe and next 12 variations. MD5: 41BBE658B4D556EADF77B596C09B1EFB Size: 5630200 d:\My Software\Serv-U File Server 7.0.0.1 Corporate Edition\ServUSetup.exe e:\Allesmgliche\Neuer Ordner\su7302.exe %TEMP%\Temporres Verzeichnis 2 fr Desktop3.zip\su7302.exe %TEMP%\Temporres Verzeichnis 1 fr Desktop3.zip\su7302.exe %USERDOCUMENTS%\ARCHIVOS PARA INALAMBRICO\ServUSetup.exe %USERDOCUMENTS%\ALL BOB Y HOUSE RELATED\MI SOFTWARES\ServUSetup.exe %USERDOCUMENTS%\ALL BOB Y HOUSE RELATED\ALL MY DOWNLOADS - actualized till 28-06-05\ServUSetup.exe %DESKTOP%\ServUSetup(2).exe %DESKTOP%\ServUSetup.exe d:\Install\su7302.exe %SystemDiskRoot%\FABIO\PIGRHS\16 DE OCTUBRE\ServUSetup.exe and next 1 variations. MD5: DD945733AA67A587BE9E29FE69D165B2 Size: 102400 %PROGRAMFILES%\RhinoSoft.com\Serv-U\ServUTray.exe %PROGRAMFILES%\Serv-U\ServUTray.exe D:\Program Files\RhinoSoft.com\Serv-U\ServUTray.exe MD5: CFEFFB87282A1DAB64D329DF4A37B897 Size: 2653184 %PROGRAMFILES%\RhinoSoft.com\Serv-U\ServUAdmin.exe D:\Program Files\RhinoSoft.com\Serv-U\ServUAdmin.exe F:\Programmi\RhinoSoft.com\Serv-U\ServUAdmin.exe MD5: CEC52DC880E3C1338A9CA7566B16BE26 Size: 4998008 d:\09 - \02 - \06 - \Serv-U.7.0.0.3\su7003.exe d:\?n\Serv-U\su7003.exe d:\SUFTPs7[1].0.0.3\Serv-U FTP server 7.0.0.3\program\setup.exe MD5: A3FCDD720A61D20F224F41D3132429D3 Size: 5630424 %DESKTOP%\appz\serv u ftp.exe %DESKTOP%\Nouveau dossier\protection\divers\Serv-U Corporate 7.3.0.0-Figatelli\su7300.exe d:\FTP\\Serv-U_FTP_Server_v7.3.0.0\su7300.exe e:\FTP\ServUSetup.exe e:\FTP\Soft\RhinoSoft.Serv-U.Corporate.Edition.v7.3.0.0.SAY.GOODBYE.iNTERNAL.READ.NFO-DEViLiSiON\su7300.exe d:\\Serv-U FTP Server 7.3.0.0 Corporate\Serv-U FTP Server 7.3.0.0 Corporate.exe %SystemDiskRoot%\Users\\Desktop\Serv-U FTP Server 7.3.0.0 Corporate.exe e:\install\- Servers-\Serv-U FTP Server 7.3.0.0 Corporate Edition\ServUSetup.exe g:\Downloads\Serv-U.Corp.Edition.v7.3.0.0.Incl.Keygen.and.Patch_[LaMara8]\Serv-U.Corp.Edition.v7.3.0.0.Incl.Keygen.and.Patch_[LaMara8]\ServUSetup.exe c:\nieuwe pc richard\mijn documenten\Serv-U.Corp.Edition.v7.3.0.0.Incl.Keygen.and.Patch_[LaMara8]\ServUSetup.exe MD5: 0C731A1AC6DC795DF928A1F41AA92A5E Size: 4998816 j:\XP- VISTA \ 2008 \files\soft\Windows\Net\Serv-U 7.0.0.4\su7004.exe %DESKTOP%\ServUSetup.exe h:\Documents and Settings\vf\DoctorWeb\Quarantine\su7004.exe %SystemDiskRoot%\Downloads\FTPServer-ServUSetup\ServUSetup.exe %USERDOCUMENTS%\Downloads\su7004.exe d:\?n\Serv-U\Serv-U 7.0.0.4.exe %SystemDiskRoot%\System Volume Information\_restore{860208CC-A528-4118-82F0-A302B9E8447F}\RP68\A0005072.exe j:\ 2008 05\files\soft\Windows\Net\Serv-U 7.0.0.4\su7004.exe e:\ServUSetup.exe d:\FtpDir\programs\Serv-U FTP\ServUSetup.exe %USERPROFILE%\Local Settings\Application Data\Mozilla\Firefox\Profiles\mqr2yphd.default\Cache\B0483167d01 and next 2 variations. MD5: A03487ED15BB9EF6FB026A2EE94F9C1F Size: 4948552 i:\dl\Serv-U.File.Server.v7.0.0.1.Corporate.Edition.Cracked-MiNT\su7001.exe %USERDOCUMENTS%\Mes fichiers reus\ServUSetup\ServUSetup.exe j:\Downloads\su7001.exe %DESKTOP%\seviu\su7001.exe e:\NS\pc\Software\Internet\ServUSetup.exe %USERDOCUMENTS%\New Folder\su7001.exe %TEMP%\Rar$EX00.657\su7001.exe j:\Install Tools v.3.4\Serv-U File Server\su7001.exe f:\ram\Berlin\Serv-U.File.Server.v7.0.0.1.Corporate.Edition.Cracked-MiNT_xtremeit.org\Serv-U.File.Server.v7.0.0.1.Corporate.Edition.Cracked-MiNT\m-su701a\m-su701\su7001.exe e:\Music\My Music\Rammstein\Berlin\Serv-U.File.Server.v7.0.0.1.Corporate.Edition.Cracked-MiNT_xtremeit.org\Serv-U.File.Server.v7.0.0.1.Corporate.Edition.Cracked-MiNT\m-su701a\m-su701\su7001.exe %SystemDiskRoot%\Internet\DownloadTorrent\_DownCompleti\Serv-U File Server 7.0.0.1 Corporate Edition\su7001.exe MD5: A469F5FFEEB4ED1AF556CB91F23AB371 Size: 4948552 g:\Nieuwe installatie programma's\_Internet\_FTP\ServUSetup.exe e:\Backup\Downloads\Misc_080421\ServUSetup.exe d:\Share\Programs\FTP Servers\Serv-U FTP\ServUSetup.exe d:\FtpDir\programs\Serv-U FTP\ServUSetup.exe MD5: 262B20517C00CE489824E0A9A0D6BDAC Size: 901120 %PROGRAMFILES%\RhinoSoft.com\Serv-U\ServUDaemon.exe e:\TDDownload\ha_Serv-U\ha_Serv-U6406\ServUDaemon.exe %USERPROFILE%\DoctorWeb\Quarantine\servudaemon.exe MD5: 5E09D47FFBC9F0725CA1343B12104A9B Size: 315392 e:\TDDownload\ha_Serv-U\ha_Serv-U6406\SetupUtil.exe d:\Serv-U.V6.0cht\SetupUtil.exe %PROGRAMFILES%\RhinoSoft.com\Serv-U\SetupUtil.exe d:\System Volume Information\_restore{B4D8038B-F3C3-4ABB-A1A8-2B2596FAC771}\RP43\A0003706.exe MD5: 915CDD79FC7FDD8A9E1FD800D18B2944 Size: 4992408 %DESKTOP%\ServUSetup.exe e:\Programms\FTP\ser7100\su7101.exe %SystemDiskRoot%\Downloads\Software\ServUSetup.exe %SystemDiskRoot%\Documents and Settings\\DoctorWeb\Quarantine\su7101.exe %SystemDiskRoot%\Documents and Settings\\DoctorWeb\Quarantine\ServU FTP Server Setup.exe %SystemDiskRoot%\Documents and Settings\\DoctorWeb\Quarantine\A0008595.exe %SystemDiskRoot%\Documents and Settings\\DoctorWeb\Quarantine\A0008579.exe MD5: C67B4FE472B26EDC287F3EEB4B0B2745 Size: 5213256 f:\System Volume Information\_restore{5C533F41-3968-4E93-A68F-4ADFA643BB0B}\RP15\A0001659.exe D:\DESCARGAS\OPERA\Serv-U\ServUSetup.exe %DESKTOP%\ \ServUSetup.exe %DESKTOP%\New Folder (8)\ServUSetup.exe d:\ChipServ\net\FTP Server\ServUSetup[1].exe %DESKTOP%\Serv-U_v.7.2.0.1_Corporate\ServUSetup.exe e:\19ff5fe06db6d24952ec\Software y Actualizacion\ServUSetup.exe %USERPROFILE%\DoctorWeb\Quarantine\A0017457.exe %USERPROFILE%\DoctorWeb\Quarantine\A0017456.exe d:\ 17\Software\Programs\ServUSetup.exe d:\Software y Actualizacion\ServUSetup.exe MD5: 57D66B40058993AD8F18E327F5AC6746 Size: 5211184 i:\programe\Julja\Serv-U\su7200.exe d:\System Volume Information\_restore{4DDB0519-B32F-4D7E-B072-7343A1325A62}\RP125\A0017603.exe d:\ChipServ\net\FTP Server\ServUSetup.exe MD5: 1E91ED9479342EE0FC0BC4AF6A2DBD70 Size: 2849256 d:\RECYCLER\S-1-5-21-1993962763-1275210071-682003330-1003\Dd1996.Cracked-MiNT\ServUSetup.exe d:\Software\PC\Serv-U 6.4.0.6 Corporate Edition\su6406.exe d:\\\ServUSetup.exe %DESKTOP%\ServUSetup.exe g:\Programme\Serv-U FTP Server v6.0.0.2 Corporate Edition\ServUSetup.exe e:\BitComet\Downloads\susetup1.exe g:\Lachlan\Software\ServUSetup.exe %DESKTOP%\inf. a respaldar\pendrive2gb\PENDRIVE2GB\SERVIDOR\ServUSetup4.exe %DESKTOP%\inf. a respaldar\pendrive2gb\PENDRIVE2GB\SERVIDOR\ServUSetup3.exe %DESKTOP%\inf. a respaldar\pendrive2gb\PENDRIVE2GB\SERVIDOR\ServUSetup2.exe %DESKTOP%\inf. a respaldar\pendrive2gb\PENDRIVE2GB\SERVIDOR\ServUSetup.exe and next 10 variations.

Detecting items list:

Files by MD5 MD5: 4ED6CFB7C17ECBE28826C839C3944E74 Size: 901120 MD5: 1E91ED9479342EE0FC0BC4AF6A2DBD70 Size: 2849256 MD5: A03487ED15BB9EF6FB026A2EE94F9C1F Size: 4948552 MD5: 7E21EB24ADC3F49F1141391BF5B97CCF Size: 102400 MD5: 5E09D47FFBC9F0725CA1343B12104A9B Size: 315392 MD5: A469F5FFEEB4ED1AF556CB91F23AB371 Size: 4948552 MD5: 0C731A1AC6DC795DF928A1F41AA92A5E Size: 4998816 MD5: CEC52DC880E3C1338A9CA7566B16BE26 Size: 4998008 MD5: 4BE1E345B249CD69D52D79C4E293FFAA Size: 274432 MD5: 632F26749CA8A0C17BD90581E0DC912B Size: 4988728

« Go to Software Database

Pesquisar em nosso banco de dados de software

Navegar pelo Banco de dados

Últimas notícias sobre Malware

23. Setembro 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Notícias anteriores sobre malware »