Winsos

Description:	Rogue Security Program
Risk Level:	Low
Date of First Occurence:	Thursday, April 17, 2008
Software Developer:	(unknown)
Brief Info:	Rogue/Suspect Anti-Spyware Product "Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
Removal:	This threat can be removed using "Spyware Terminator"

REMOVER SPYWARE »

Geographical Distribution of Threat "Winsos"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\Winsos\winsosdefrag.exe MD5: BD95F3223AD408E276C64834BDA6B43C Size:229376 %PROGRAMFILES%\Winsos\WD120ZIP.DLL MD5: 3803D2E181A627FF5656AA3690503600 Size:364544 MD5: 38E2160BBC751893205E18BD393F5247 Size:364544 %PROGRAMFILES%\Winsos\WD120XML.DLL MD5: C08C7EFDD05A5A939273C5AB93C2601F Size:475136 MD5: 8CB5F960E7E1BD308AE9AE01159EB120 Size:475136 %PROGRAMFILES%\Winsos\WD120XLS.DLL MD5: BC8C361EFA0A185D8E3C2E711AF485F5 Size:258048 MD5: 9EC7F1B56A5F8F12246B2CCAD6A571C2 Size:217088 %PROGRAMFILES%\Winsos\WD120TEST.DLL MD5: 8366FDA242726A21904C4979E2573010 Size:116224 MD5: 8BF35EB0B8895F04E62AC1FC38BF7CAF Size:114176 %PROGRAMFILES%\Winsos\WD120RTF.DLL MD5: 9A1229928B8EE1C0C8FB3A227C69DE71 Size:606208 MD5: E24434E26C11467C04B65EC2D8300040 Size:606208 %PROGRAMFILES%\Winsos\WD120PRN.DLL MD5: B2BA613C18DDE66A3E98DC0094134D90 Size:700416 MD5: 13063D5F39ABE9C6827C501323BCCBD9 Size:675840 %PROGRAMFILES%\Winsos\WD120PDF.DLL MD5: 247A613E16E97D62C215D247FCD7FDC9 Size:524288 MD5: D674D828579D3EABCD1A2A3A1C5F19DA Size:524288 %PROGRAMFILES%\Winsos\WD120IMG2.DLL MD5: 2E8B3BE9D84C984636E3F2A41680C468 Size:856064 MD5: 5614CDF16EBEE27FB1739C438C4EF17B Size:851968 %PROGRAMFILES%\Winsos\WD120HTML.DLL MD5: 925FE5272BE5B150F8121564A5ED810B Size:565248 MD5: 1985C29D2452750B5D7CF2751366B890 Size:548864 %PROGRAMFILES%\Winsos\WD120GRF.DLL MD5: B40AF0EF7293AF5B842316388C9B647E Size:246784 MD5: F9F7ECC9799E1C220F0BD1EEA7A73C91 Size:248832 %PROGRAMFILES%\Winsos\WD120ETAT.DLL MD5: A67B1F29DA3594C5C261E657D262924D Size:376832 MD5: 2913C82E826FC5C4BF22FD1240BD3649 Size:372736 %PROGRAMFILES%\Winsos\WD120CPL.DLL MD5: FF8C5B0264601995D2A7479954FF7A19 Size:397312 MD5: F4482DB254CCDD7FD370CD7493FEFF7E Size:397312 %PROGRAMFILES%\Winsos\WD120COD.DLL MD5: 48733E7EFC2A6B1E72766C93C19ADD97 Size:1114112 MD5: 93AA7029AF57C3B42176C8577C4EF744 Size:1101824 %PROGRAMFILES%\Winsos\VIDE.exe MD5: FC1753C8A824958BA63A7629985376D4 Size:20480 %PROGRAMFILES%\Winsos\update.exe MD5: 3BCC5D20CBD4662FD7D6BE433E1FF721 Size:206181 MD5: 171D7276492F7F0F66B969391C505175 Size:204175 %PROGRAMFILES%\Winsos\PSAPI.DLL MD5: 1F2B0D8D55227D9FFAA258095E452536 Size:23040 %PROGRAMFILES%\Winsos\connect.exe MD5: 7C263939FC488EA86E843DFA23513733 Size:687458 %PROGRAMFILES%\Winsos\WD120ACTION.DLL MD5: 255DA065D54F0682293C0A7D94871452 Size:229376 MD5: 77C9B7226C0E47A9187A22E41EBF6356 Size:229376 %PROGRAMFILES%\Winsos\WD120MAT.DLL MD5: E7B801166883E6206B81A9B1575E5D67 Size:98816 MD5: 46B264B10FF16D27D7135B067C70C756 Size:97792 %PROGRAMFILES%\Winsos\WD120OLE.DLL MD5: 4C570E9DA343C1F01A238D5C970D2AA4 Size:110592 MD5: 97A5F5006B19B2CE68589502E5AEAA24 Size:110592 %PROGRAMFILES%\Winsos\WD120IMG.DLL MD5: 7817E47B83917B96FAE0B0B0D3EDBC30 Size:675840 MD5: FEEE8B11BF71756F9C6CAB62D58D9315 Size:675840 %PROGRAMFILES%\Winsos\WD120OBJ.DLL MD5: 77F2ED0F4F741EA2DE9D10BE9E6310EF Size:2511872 MD5: FE10B2C0C4ED21FFBCAF750E0661DF41 Size:2464256 %PROGRAMFILES%\Winsos\WD120COM.DLL MD5: 04517749FC66A743AFDCF3B1B2C7E11C Size:901120 MD5: C457690F9C0B898C8145C3E3AF3DF395 Size:729088 %PROGRAMFILES%\Winsos\WD120STD.DLL MD5: 362850FA2820D5884D38EA6F467463D8 Size:496640 MD5: B83CF02CEFFB39491234CF93F408B5E3 Size:493056 %PROGRAMFILES%\Winsos\WD120VM.DLL MD5: A54E5710BFAE8D5454185B547F703199 Size:1745408 MD5: 2BD44641881C8B88F967C33AD2CB6010 Size:1710080 %PROGRAMFILES%\Winsos\WINSOS.EXE MD5: 44E6555B75C9CA5D774DA13FED0F9751 Size:2152893 MD5: 89719145A89FAB77A6E17B22F5D65F1F Size:2152904 MD5: 1F077EEDDD77DE78B1972656792D45A5 Size:2434604 MD5: 1C63243C1E200D85D16CE234C6D425B2 Size:2141233 MD5: FA6299C43C5F520E529AA4BC40DE1E39 Size:777567 %PROGRAMFILES%\WINSOS\WINSOS.EXE MD5: 8561AB6D8C20F584D07014F3B8E48C01 Size:2116102 %PROGRAMFILES%\Winsos\WINSOS.exe MD5: 15FAA5351C056A6BACEB513CACDF444D Size:2376242 MD5: C2405CCB48AE772DF7D91F332C336ED3 Size:2434492 %PROGRAMFILES%\Winsos\WD80VM.DLL MD5: 133888C6BF0EC5BC7761B7BE421DAA98 Size:962621 %PROGRAMFILES%\Winsos\WD80STD.DLL MD5: 728D5FFCA72C027AACC21995595D9132 Size:618552 %PROGRAMFILES%\Winsos\WD80OLE.DLL MD5: EB798A1DB7A1AAA37EC98F26180B4045 Size:106548 %PROGRAMFILES%\Winsos\WD80OBJ.DLL MD5: 7744434FE96627CE3D98F97A1A27983B Size:1604664 %PROGRAMFILES%\Winsos\WD80MAT.DLL MD5: B46D93B35776502D11C45FF7AE0AD47D Size:110644 %PROGRAMFILES%\Winsos\WD80IMG.DLL MD5: AB8D545C7454D8FB2D563AA393DBD397 Size:573492 %PROGRAMFILES%\Winsos\WD80COM.DLL MD5: 3FBA5E1F182A45123F8469056C263A00 Size:462900 %PROGRAMFILES%\Winsos\WD110ZIP.DLL MD5: 4810BD50AC0401AA08882FC7B15AB21E Size:327680 %PROGRAMFILES%\Winsos\WD110XML.DLL MD5: 07F0DB713BC675A2C3135406D629DCC7 Size:446464 %PROGRAMFILES%\Winsos\WD110VM.DLL MD5: CFD09ABB1034A4D5ACE6431F3F446126 Size:1416192 %PROGRAMFILES%\Winsos\WD110STD.DLL MD5: 3E05003BECDD9B68BE216859A408F6FC Size:448000 %PROGRAMFILES%\Winsos\WD110OLE.DLL MD5: 60158B9B6D0ED39810C96F8ECDD3BB98 Size:106496 %PROGRAMFILES%\Winsos\WD110OBJ.DLL MD5: DC0A9ADF047CBA7C9D843E9B4495E9A7 Size:2227712 %PROGRAMFILES%\Winsos\WD110MAT.DLL MD5: BA10B1B2E45E80097EED4B2A0BD19C59 Size:95232 %PROGRAMFILES%\Winsos\WD110IMG.DLL MD5: 69F9A05A9FA6F3AE6F5B024DA4697E98 Size:626688 %PROGRAMFILES%\Winsos\WD110GRF.DLL MD5: E4A8EA0E506CCE97D2D8843B0E28D611 Size:241152 %PROGRAMFILES%\Winsos\WD110COM.DLL MD5: F223EEF517B23BEDE7AA51CB7268A094 Size:557056 %PROGRAMFILES%\Winsos\unins000.exe MD5: 334E7D71C7168382AA76385E0F042297 Size:687056 MD5: F333DBAC44103757745C65D9BAF59479 Size:695578 %PROGRAMFILES%\Winsos\unins001.exe MD5: 6ADECBEE793BD94D8C10E312C513AC95 Size:643065
Detected Files with variable Filenames: MD5: 912D4929B6F2C6B8C8B4DDFEB74DB236 Size: 698833 %PROGRAMFILES%\Winsos\unins000.exe %PROGRAMFILES%\Winsos\unins001.exe %PROGRAMFILES%\Winsos\unins002.exe

Detecting items list:

Files by Name %PROGRAMFILES%\Winsos\anti-spy.exe %PROGRAMFILES%\Winsos\backup.exe %PROGRAMFILES%\Winsos\diag.exe %PROGRAMFILES%\Winsos\HELP.exe %PROGRAMFILES%\Winsos\unins000.exe %PROGRAMFILES%\Winsos\update.exe %PROGRAMFILES%\Winsos\VIDE.exe %PROGRAMFILES%\Winsos\WINSOS.EXE %START_PROGRAMS%\WINSOS\WINSOS.lnk %START_PROGRAMS%\WINSOS\WWW.WINSOS.COM.lnk %DESKTOP%\WINSOS.lnk
Files by Directories %PROGRAMFILES%\Winsos %START_PROGRAMS%\WINSOS
Registry Keys HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WINSOS SOFTWARE LIMITED_is1
Registry Values HKCU\Software\Microsoft\Windows\CurrentVersion\Run ValueName=WINSOS VERIFY

« Go to Software Database

Pesquise na nossa Base de Dados de Software

A base de dados Software

Últimas notícias sobre Malware

23. Setembro 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Notícias antigas de malware »