Home / Spyware Encyclopedia / IM.BadBoy << Back

Recommendation to Automatically remove IM.BadBoy


Our products can remove IM.BadBoy and thousands of other Virus and Spyware automatically and instantly.

IM.BadBoy Details


  • Category IM
  • Discovered 10/22/2013 7:53:24 AM
  • Modified 6/25/2020 12:12:20 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
Trojan-Dropper.Win32.Small.abi.exe 9216  9a02791088ee94e856e79d5a05e4b9f3 
zSettings.dll 1332    
zSettings.dll 1392    
zSettings.dll 1368    
a52e2b650c97acc9437d9165c5268b43.vir.exe 77824 1, 0, 0, 1a52e2b650c97acc9437d9165c5268b4325/06/2020
a52e2b650c97acc9437d9165c5268b43.vir.exe 77824 1, 0, 0, 1a52e2b650c97acc9437d9165c5268b43 
kkciddjj.exe 19583    
125236.exe 1806    
_tmp092.exe 3425    
gghriitt.exe 21969  00bd8f44c6176394caf6c018c23ea71b 

The following Registry Entries were created:
..\Software\local appwizard-generated applications\Help_me\(Default)
..\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\"SvcSys"\"{ECD59ADC-677F-46A0-AD72-B65A512EBE8A}"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WebRebates0"\"%PF%\Web_Rebates\WebRebates0.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"PerformCl"\"%DAS.AU.LS%\Temp\perfcl.exe"
..\Software\Classes\Clsid\{ECD59ADC-677F-46A0-AD72-B65A512EBE8A}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"webrebates"\""%PF%\WebRebates4\webrebates.exe""
..\Software\Microsoft\Internet Explorer\Toolbar\\"CLSID"\"{B75F75B8-93F3-429D-FF34-660B206D897A}"
..\Software\Microsoft\ACTIVE SETUP\INSTALLED COMPONENTS\{5Y99AE78-58TT-11DW-BE53-Y67078979Y}\(Default)
..\Software\zsearchco\(Default)
..\Software\Classes\ztoolbar.stockbar.1\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.