Home / Spyware Encyclopedia / Clicker.Axec << Back

Recommendation to Automatically remove Clicker.Axec


Our products can remove Clicker.Axec and thousands of other Virus and Spyware automatically and instantly.

Clicker.Axec Details


  • Category Clicker
  • Discovered 1/30/2008 11:03:00 AM
  • Modified 8/11/2023 3:35:38 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans redirects victim machines to specified websites or other Internet resources. Clickers either send the necessary commands to the browser or replace system files where standard Internet urls are stored. Clickers are used: 1. To raise the hit-count of a specific site for advertising purposes. 2. To organize a DoS attack on a specified server or site. 3. To lead the victim to an infected resource where the machine will be attacked by other malware (viruses or Trojans).

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
blpmdgac.exe 18944  ceec7f81eb5bbe3e5049e0556d31341a 
ggbeiojc.exe 18944  ceec7f81eb5bbe3e5049e0556d31341a 
ggikindk.exe 18944  ceec7f81eb5bbe3e5049e0556d31341a 
ldockcmc.exe 18944  ceec7f81eb5bbe3e5049e0556d31341a 
svcsupp2.dll 176128  7a35c1ee66d57d3a33f608214a4eb14e 
wmedia32.exe 188416  43f7995a9dd666100753065c62c5b5e7 
wmedia32.exe 44701  1b7180cddc05af7594463f61739be242 
wmedia32.exe 50280  13bbd60a8ac32ef4cb68969966c8c429 
367d848b542feb7b92c05965d3aac7c4.exe 10201  367d848b542feb7b92c05965d3aac7c4 
bf0539b8e784bf35cbc147060d02b6d7.exe 10319  bf0539b8e784bf35cbc147060d02b6d7 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"rnbw"\"%WIN.SYS32%\rnbw\ggikindk.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"boby"\"%WIN.SYS32%\csrs.scr"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"TROJAN-SPY.WIN32.BANKER.BEC"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BEC.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Protection"\"%WIN%\nprotects.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"LG32-SWAP"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BD.EXE"
..\Software\Classes\{5415486-112364-77845-44457}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WineWork"\"%WIN.SYS32%\WorkFile.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"SYSTEM32"\"%WIN.SYS32%\SYSTEM32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WMEDIA32"\"WMEDIA32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"msrunonce"\""%win.sys%\iexplorer.exe""

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.