Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / PSW.generic << Back

Recommendation to Automatically remove PSW.generic

Our products can remove PSW.generic and thousands of other Virus and Spyware automatically and instantly.

PSW.generic Details

Category PSW
Discovered 10/25/2024 4:12:15 PM
Modified 10/25/2024 5:51:41 PM
Threat Level Medium
Category Description
This family of Trojans steals passwords, normally system passwords from victim machines. They search for system files which contain confidential information such as passwords and Internet access telephone numbers and then send this information to an email address coded into the body of the Trojan. The 'master' or user of the illegal program will then retrieve and misuse this information. Most common behavior: 1. Ask for password using fake window 2. Change ICQ, MSN and AOL configuration 3. Get cached Windows passwords

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
2ab429eb.exe	578309	Ada99.com	1.4.0.0	3f2524ffc80b13ae5e6efe3359e64e5d
3dd296e8.exe	50855			3d756a13b4d7533bca04fb2afb4a35bf
21543aaff300ea931935283675fef580ad6ab6e631afbff79e644961ec69ded7758b544330c42ad2ba65734002e5079d6bc.exe	61952			8053a14653915d9ceb68178f2497d8cb
30edaa2cb6ef263002731d622d6d9c42.exe	57344			30edaa2cb6ef263002731d622d6d9c42
560b07eff68262bb80434ebb487cc4e2.exe	622601	تHщндhx	3.7.6.1	560b07eff68262bb80434ebb487cc4e2
8d1977649324960e6fadce633d016d17.exe	29748		1.0.0.0	8d1977649324960e6fadce633d016d17
19dbb464804c56d0602b5344feb68116.exe	269312	Oracle Corporation	8.0.1440.1	19dbb464804c56d0602b5344feb68116
b9083e9fb2615824214f0c29ac6f7b05.exe	527360	AIMP DevTeam	3.2.0.1165	b9083e9fb2615824214f0c29ac6f7b05
beb6368184f000d8fcf0d673ba1de8de.exe	224256	CyberLink Corp.	5.0.0.0909	beb6368184f000d8fcf0d673ba1de8de
bb5e1389f13a131385d08845818eadf1.exe	688640	Corel Corporation	17.1.0.572	bb5e1389f13a131385d08845818eadf1

The following Registry Entries were created:

..\System\CurrentControlSet\Enum\root\legacy_winserverviewrs\(Default)

..\System\CurrentControlSet\Services\winserverviewrs\(Default)

..\Software\Classes\2ab429eb.mynshandler\(Default)

..\Software\Classes\Clsid\{e8cfc029-8420-4eae-adef-915bdc77e1dc}\(Default)

..\System\CurrentControlSet\Enum\root\legacy_winserverview\(Default)

..\System\CurrentControlSet\Services\WinServerView\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove PSW.generic

PSW.generic Details

Useful Links