Home / Spyware Encyclopedia / Clicker.Axec << Back

Recommendation to Automatically remove Clicker.Axec


Our products can remove Clicker.Axec and thousands of other Virus and Spyware automatically and instantly.

Clicker.Axec Details


  • Category Clicker
  • Discovered 1/30/2008 11:03:00 AM
  • Modified 8/11/2023 3:35:38 PM
  • Threat Level Medium
  • Category Description
    This family of Trojans redirects victim machines to specified websites or other Internet resources. Clickers either send the necessary commands to the browser or replace system files where standard Internet urls are stored. Clickers are used: 1. To raise the hit-count of a specific site for advertising purposes. 2. To organize a DoS attack on a specified server or site. 3. To lead the victim to an infected resource where the machine will be attacked by other malware (viruses or Trojans).

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
svcsupp2.dll 176128  7a35c1ee66d57d3a33f608214a4eb14e 
wmedia32.exe 188416  43f7995a9dd666100753065c62c5b5e7 
wmedia32.exe 44701  1b7180cddc05af7594463f61739be242 
wmedia32.exe 50280  13bbd60a8ac32ef4cb68969966c8c429 
cffdde3b7085ed3bfecf015c77319e93.exe 10859  cffdde3b7085ed3bfecf015c77319e93 
51ee3033ea152e5b8fb19d24becb2405.exe 8226  51ee3033ea152e5b8fb19d24becb2405 
e273b2ea967eb3d75f0c8ff8a0162820.exe 7744  e273b2ea967eb3d75f0c8ff8a0162820 
dfcfed39d050fece8aa22463d3a94d28.exe 8209  dfcfed39d050fece8aa22463d3a94d28 
5bfb46ebb4f415c26a7616047179eb7c.exe 8091  5bfb46ebb4f415c26a7616047179eb7c 
2e495ec18a056670001abe829f374d91.vir.exe 8210  2e495ec18a056670001abe829f374d91 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"rnbw"\"%WIN.SYS32%\rnbw\ggikindk.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"boby"\"%WIN.SYS32%\csrs.scr"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"TROJAN-SPY.WIN32.BANKER.BEC"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BEC.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Protection"\"%WIN%\nprotects.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"LG32-SWAP"\"%DAS.AU.LS%\Temp\TROJAN-SPY.WIN32.BANKER.BD.EXE"
..\Software\Classes\{5415486-112364-77845-44457}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WineWork"\"%WIN.SYS32%\WorkFile.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"SYSTEM32"\"%WIN.SYS32%\SYSTEM32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WMEDIA32"\"WMEDIA32.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"msrunonce"\""%win.sys%\iexplorer.exe""

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.