Home / Spyware Encyclopedia / IM.Rampage << Back

Recommendation to Automatically remove IM.Rampage


Our products can remove IM.Rampage and thousands of other Virus and Spyware automatically and instantly.

IM.Rampage Details


  • Category IM
  • Discovered 3/31/2011 7:19:28 PM
  • Modified 1/23/2020 5:17:26 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
chgsprt.sys 8144  eeef18d4d40ae88177955663ffc1ec0a 
Trojan-AOL.Win32.Rampage 258166 1.0.0.05a0076d27bc7fef2e93488d516b423d023/01/2020
OUT.BIN 913    
OUT.BIN 885    
OUT.BIN 88197    
OUT.BIN 941    
TROJAN-DROPPER.WIN32.SMALL.SX.EXE 34304  1482c847f1deb2597e659a8819b20f0b 
TROJAN-DROPPER.WIN32.SMALL.SY.EXE 35840  20dda16fdf8509331497e0a3babf000a 
HPCHuninstaller.exe 2048  2dc701e92292b92d057c2da4f0e7a27a 
TROJAN-DROPPER.WIN32.SMALL.TA.EXE 16869  2f272a91d93cc7e024d5ee67e04835b6 

The following Registry Entries were created:
..\System\CurrentControlSet\Services\estsprt\(Default)
..\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\"eplrr9"\"{80C400C5-A4E7-40BA-8387-F4C461E0108E}"
..\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\"System"\"{06C7ED5C-8177-4E95-84B1-20FDE5253C23}"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"websrvk"\"%DAS.AU.LS%\Temp\k1234.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Systems Restart"\"Rundll32.exe snim.dll, DllRegisterServer"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E6CB5474-623A-4622-8BDA-8CD585BE6E7E}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnInstallSearch\(Default)
..\Software\Classes\Clsid\{E6CB5474-623A-4622-8BDA-8CD585BE6E7E}\(Default)
..\Software\Classes\Clsid\{C30D4881-1FED-47F7-9DAD-9D5659253B46}\(Default)
..\Software\Classes\Clsid\{80C400C5-A4E7-40BA-8387-F4C461E0108E}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.