Home / Spyware Encyclopedia / PSW.generic << Back

Recommendation to Automatically remove PSW.generic


Our products can remove PSW.generic and thousands of other Virus and Spyware automatically and instantly.

PSW.generic Details


  • Category PSW
  • Discovered 3/20/2019 2:44:45 PM
  • Modified 3/23/2019 2:12:48 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans steals passwords, normally system passwords from victim machines. They search for system files which contain confidential information such as passwords and Internet access telephone numbers and then send this information to an email address coded into the body of the Trojan. The 'master' or user of the illegal program will then retrieve and misuse this information. Most common behavior: 1. Ask for password using fake window 2. Change ICQ, MSN and AOL configuration 3. Get cached Windows passwords

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATURE
..\input\4832_trojan-psw.generic_20091205\2ab429eb.exe 578309Ada99.com1.4.0.03f2524ffc80b13ae5e6efe3359e64e5d
..\temp\4832_trojan-psw.generic_20091205\2ab429eb.exe 578309Ada99.com1.4.0.03f2524ffc80b13ae5e6efe3359e64e5d
..\input\4832_trojan-psw.generic_20091205\8ae95f77.exe 5373952 0.0.0.03fb71bd3ff7e05aa24283b449ee1feb8
..\temp\4832_trojan-psw.generic_20091205\8ae95f77.exe 5373952 0.0.0.03fb71bd3ff7e05aa24283b449ee1feb8
..\hz_sys_temtrayrs.dll 809344  6049c35329e5dd8488fe723b3b9293e3
..\input\12064_trojan-psw.generic_20091214\c69e55b6.exe 115942  4e940a1461a7e104ddeb1b7294ededfa
..\temp\12064_trojan-psw.generic_20091214\c69e55b6.exe 115942  4e940a1461a7e104ddeb1b7294ededfa
..\ntsys.dll 384000  42036b34e0a580d690a1cd718533d0fe
..\ntsys.dll 384000  42036b34e0a580d690a1cd718533d0fe
..\maxtemp\00110011\samples\30edaa2cb6ef263002731d622d6d9c42.exe 57344  30edaa2cb6ef263002731d622d6d9c42

The following Registry Entries were created:
..\System\CurrentControlSet\Enum\root\legacy_winserverviewrs\(Default)
..\System\CurrentControlSet\Services\winserverviewrs\(Default)
..\Software\Classes\2ab429eb.mynshandler\(Default)
..\Software\Classes\Clsid\{e8cfc029-8420-4eae-adef-915bdc77e1dc}\(Default)
..\System\CurrentControlSet\Enum\root\legacy_winserverview\(Default)
..\System\CurrentControlSet\Services\WinServerView\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automaticallyby tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Spyware Encyclopedia << Back

Spyware Detector can detect & quarantine this Malware


Download Updates

Useful Links

Copyright © Max Secure Software. All rights reserved.