Home / Spyware Encyclopedia / PSW.generic << Back

Recommendation to Automatically remove PSW.generic


Our products can remove PSW.generic and thousands of other Virus and Spyware automatically and instantly.

PSW.generic Details


  • Category PSW
  • Discovered 10/25/2024 4:12:15 PM
  • Modified 10/25/2024 5:51:41 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans steals passwords, normally system passwords from victim machines. They search for system files which contain confidential information such as passwords and Internet access telephone numbers and then send this information to an email address coded into the body of the Trojan. The 'master' or user of the illegal program will then retrieve and misuse this information. Most common behavior: 1. Ask for password using fake window 2. Change ICQ, MSN and AOL configuration 3. Get cached Windows passwords

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
hz_sys_temtray.dll 802681  e2a83e9e24eeeb6ac366a7526effebf4 
220e8b2d.exe 4000  60827a2332f44fa01823f617d35cddd2 
hz_sys_temtrayrs.dll 809344  6049c35329e5dd8488fe723b3b9293e3 
3dd296e8.exe 50855  3d756a13b4d7533bca04fb2afb4a35bf 
30edaa2cb6ef263002731d622d6d9c42.exe 57344  30edaa2cb6ef263002731d622d6d9c42 
4f18471b7e0fb5f4acb07780ff311130.vir.exe 205824(Personal) No company1.0.0.04f18471b7e0fb5f4acb07780ff311130 
18395db7d4e8996b5c935e1b81413b0f.exe 151552 1.0.0.018395db7d4e8996b5c935e1b81413b0f 
b537a99f849c60d490f8aba109fdcf81.exe 461832AGORA Software BV3.1.0.0b537a99f849c60d490f8aba109fdcf81 
ad823b233d15074b9557493482d62f1c.exe 1048056GitHub1.1.1.0ad823b233d15074b9557493482d62f1c 
c2a1640a385b160523efd27ffb474b40.vir.exe 534016 1.0.0.0c2a1640a385b160523efd27ffb474b40 

The following Registry Entries were created:
..\System\CurrentControlSet\Enum\root\legacy_winserverviewrs\(Default)
..\System\CurrentControlSet\Services\winserverviewrs\(Default)
..\Software\Classes\2ab429eb.mynshandler\(Default)
..\Software\Classes\Clsid\{e8cfc029-8420-4eae-adef-915bdc77e1dc}\(Default)
..\System\CurrentControlSet\Enum\root\legacy_winserverview\(Default)
..\System\CurrentControlSet\Services\WinServerView\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware