Home / Spyware Encyclopedia / Clicker.Axec << Back

Recommendation to Automatically remove Clicker.Axec


Our products can remove Clicker.Axec and thousands of other Virus and Spyware automatically and instantly.

Clicker.Axec Details


  • Category Clicker
  • Discovered 1/30/2008 11:03:00 AM
  • Modified 8/11/2023 3:35:38 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans redirects victim machines to specified websites or other Internet resources. Clickers either send the necessary commands to the browser or replace system files where standard Internet urls are stored. Clickers are used: 1. To raise the hit-count of a specific site for advertising purposes. 2. To organize a DoS attack on a specified server or site. 3. To lead the victim to an infected resource where the machine will be attacked by other malware (viruses or Trojans).

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
svcsupp2.dll 176128  7a35c1ee66d57d3a33f608214a4eb14e 
wmedia32.exe 188416  43f7995a9dd666100753065c62c5b5e7 
wmedia32.exe 44701  1b7180cddc05af7594463f61739be242 
ba8e0f7f3e03e94a6c1df1ad84a2cebb.exe 10977  ba8e0f7f3e03e94a6c1df1ad84a2cebb 
cffdde3b7085ed3bfecf015c77319e93.exe 10859  cffdde3b7085ed3bfecf015c77319e93 
5bfb46ebb4f415c26a7616047179eb7c.exe 8091  5bfb46ebb4f415c26a7616047179eb7c 
491f5b04d0fc999906f4c36a2a4dcc6a1f42f67ea6968b41175265a359a01931.exe 10194  4346434e134d5c3e21ad82a1f412b236 
5918ced95caf1fd678c756e49c03b085.vir.exe 8064  5918ced95caf1fd678c756e49c03b085 
trojan-clicker.win32.axec.exe 10522  024ed2b85e0e0316ec8417b1a2b5214311/12/2019
Trojan-Clicker.Win32.Axec 10522  024ed2b85e0e0316ec8417b1a2b5214311/12/2019

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"rnbw"\"%WIN.SYS32%\rnbw\ggikindk.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"boby"\"%WIN.SYS32%\csrs.scr"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"TROJAN-SPY.WIN32.BANKER.BEC"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BEC.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Protection"\"%WIN%\nprotects.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"LG32-SWAP"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BD.EXE"
..\Software\Classes\{5415486-112364-77845-44457}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WineWork"\"%WIN.SYS32%\WorkFile.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"SYSTEM32"\"%WIN.SYS32%\SYSTEM32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WMEDIA32"\"WMEDIA32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"msrunonce"\""%win.sys%\iexplorer.exe""

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.