Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / PSW.generic << Back

Recommendation to Automatically remove PSW.generic

Our products can remove PSW.generic and thousands of other Virus and Spyware automatically and instantly.

PSW.generic Details

Category PSW
Discovered 10/25/2024 4:12:15 PM
Modified 10/25/2024 5:51:41 PM
Threat Level Medium
Category Description
This family of Trojans steals passwords, normally system passwords from victim machines. They search for system files which contain confidential information such as passwords and Internet access telephone numbers and then send this information to an email address coded into the body of the Trojan. The 'master' or user of the illegal program will then retrieve and misuse this information. Most common behavior: 1. Ask for password using fake window 2. Change ICQ, MSN and AOL configuration 3. Get cached Windows passwords

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
2ab429eb.exe	578309	Ada99.com	1.4.0.0	3f2524ffc80b13ae5e6efe3359e64e5d
8ae95f77.exe	5373952		0.0.0.0	3fb71bd3ff7e05aa24283b449ee1feb8
hz_sys_temtray.dll	802681			e2a83e9e24eeeb6ac366a7526effebf4
b84858d1.exe	49169			6481ff17ce46d879d7213a4885840efc
ntsys.dll	384000			42036b34e0a580d690a1cd718533d0fe
9029c831e4e28aa3cd1ddba29699ee121557d498cfafb085f6cbaed608235ab5e0e483badf9ead153a1a9fe30bb020568a4.exe	66132			539207da0cab2add7b009ad5bd87c168
f0ac6ea2a5ba02ad31349102307f2a5c.exe	379392	Xellsoft	2.7.7	f0ac6ea2a5ba02ad31349102307f2a5c
b1476a4288eb50d386396b1ad070c0ba.exe	222720	Google Inc.	45.0.2454.93	b1476a4288eb50d386396b1ad070c0ba
bd6cc21d835cf6133ecee3df3f98e05a.exe	1344000		0.0.0.0	bd6cc21d835cf6133ecee3df3f98e05a
bf9f6b82e4ec167b30172e2e83df0492.exe	964096	eMzusCKT	74.92.5.79	bf9f6b82e4ec167b30172e2e83df0492

The following Registry Entries were created:

..\System\CurrentControlSet\Enum\root\legacy_winserverviewrs\(Default)

..\System\CurrentControlSet\Services\winserverviewrs\(Default)

..\Software\Classes\2ab429eb.mynshandler\(Default)

..\Software\Classes\Clsid\{e8cfc029-8420-4eae-adef-915bdc77e1dc}\(Default)

..\System\CurrentControlSet\Enum\root\legacy_winserverview\(Default)

..\System\CurrentControlSet\Services\WinServerView\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove PSW.generic

PSW.generic Details

Useful Links