Home / Spyware Encyclopedia / Worm.ainfbot << Back

Recommendation to Automatically remove Worm.ainfbot


Our products can remove Worm.ainfbot and thousands of other Virus and Spyware automatically and instantly.

Worm.ainfbot Details


  • Category Worm
  • Discovered 9/17/2009 4:29:34 AM
  • Modified 5/26/2023 3:03:57 PM
  • Threat Level High
  • Category Description
    A Worm is a malicious program that spreads itself without any user intervention. Worms spread without attaching to or infecting other programs and files. A Worm can spread across computer networks via security holes on vulnerable machines connected to the network and also through email by sending copies of itself to everyone in the user's address book. A Worm may consume a large amount of system resources and cause the machine to become noticeably sluggish and unreliable.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
6aac6a48.exe 567296wmi corporation inc.12.1.1.00b9ae6292d98d7b0190f7f70ee5adc2f 
16af5bec.exe 572416wmi corporation inc.12.1.1.004f3c35e4a1b14da97b04e40e1c9a3ed 
c95922be.exe 580096  9d9abe9170e470c693d49c490e838e9d 
minidrv32.sys 11656wmi systems7.2.3000.50028c6511826c60d64c0dbbcbb7a75fe90f26/05/2023
ycha.exe 12288  a3425996743fea834626f8b9c072209e 
qrgifc.exe 12288  a3425996743fea834626f8b9c072209e 
lyaub.exe 12288  a3425996743fea834626f8b9c072209e 
j1m9y1j8r6b5.exe 61585 1.324.0.23d51d15879456380a40e7e244bf74867d 
6d57d834.exe 123904ati technologies inc.6.14.10.10059480fa169def5b958be3debee3f3b9aa 
lbtw.exe 123904ati technologies inc.6.14.10.10059480fa169def5b958be3debee3f3b9aa 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\policies\explorer\run\"microsoft driver setup"\"%win.sys32.drivers%\bsrbt.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\bsrbt.exe"
..\Software\Microsoft\Windows\CurrentVersion\shell extensions\"gon"\"%das.au.ls%\temp\6aac6a48.exe"
..\Software\Microsoft\Windows\CurrentVersion\policies\explorer\run\"microsoft driver setup"\"%win.sys32.drivers%\dcin.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\dcin.exe"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%win.sys32%\wbem\wmisvapp.exe"\"%win.sys32%\wbem\wmisvapp.exe:*:microsoft enabled"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%win.sys32%\wbem\wmisrsvc.exe"\"%win.sys32%\wbem\wmisrsvc.exe:*:microsoft enabled"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\f81dee23.exe"\"%das.au.ls%\temp\f81dee23.exe:*:x:\windows\system32\drivers\explorer.exe"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\c95922be.exe"\"%das.au.ls%\temp\c95922be.exe:*:microsoft enabled"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\dfwin.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.