Home / Spyware Encyclopedia / PSW.generic << Back

Recommendation to Automatically remove PSW.generic


Our products can remove PSW.generic and thousands of other Virus and Spyware automatically and instantly.

PSW.generic Details


  • Category PSW
  • Discovered 10/25/2024 4:12:15 PM
  • Modified 10/25/2024 5:51:41 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans steals passwords, normally system passwords from victim machines. They search for system files which contain confidential information such as passwords and Internet access telephone numbers and then send this information to an email address coded into the body of the Trojan. The 'master' or user of the illegal program will then retrieve and misuse this information. Most common behavior: 1. Ask for password using fake window 2. Change ICQ, MSN and AOL configuration 3. Get cached Windows passwords

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
2ab429eb.exe 578309Ada99.com1.4.0.03f2524ffc80b13ae5e6efe3359e64e5d 
220e8b2d.exe 4000  60827a2332f44fa01823f617d35cddd2 
30edaa2cb6ef263002731d622d6d9c42.exe 57344  30edaa2cb6ef263002731d622d6d9c42 
e3fc1cb02a2e2315efdeac08a1ddc912.exe 851456 0.0.0.0e3fc1cb02a2e2315efdeac08a1ddc912 
0977d4240d69d112f9ee96fc0fb6cf68.exe 682496 0.0.0.00977d4240d69d112f9ee96fc0fb6cf68 
73aee0447e092397cbff4adaa2d4d9fb.exe 419840 0.0.0.073aee0447e092397cbff4adaa2d4d9fb 
19dbb464804c56d0602b5344feb68116.exe 269312Oracle Corporation8.0.1440.119dbb464804c56d0602b5344feb68116 
b9083e9fb2615824214f0c29ac6f7b05.exe 527360AIMP DevTeam3.2.0.1165b9083e9fb2615824214f0c29ac6f7b05 
be9db8a42177c678cce344e48243454a.exe 436736 0.0.0.0be9db8a42177c678cce344e48243454a 
86b6ad24ae0634579db5806e3ea905da.exe 133482 0.0.0.086b6ad24ae0634579db5806e3ea905da 

The following Registry Entries were created:
..\System\CurrentControlSet\Enum\root\legacy_winserverviewrs\(Default)
..\System\CurrentControlSet\Services\winserverviewrs\(Default)
..\Software\Classes\2ab429eb.mynshandler\(Default)
..\Software\Classes\Clsid\{e8cfc029-8420-4eae-adef-915bdc77e1dc}\(Default)
..\System\CurrentControlSet\Enum\root\legacy_winserverview\(Default)
..\System\CurrentControlSet\Services\WinServerView\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.