Home / Spyware Encyclopedia / Worm.ainfbot << Back

Recommendation to Automatically remove Worm.ainfbot


Our products can remove Worm.ainfbot and thousands of other Virus and Spyware automatically and instantly.

Worm.ainfbot Details


  • Category Worm
  • Discovered 9/17/2009 4:29:34 AM
  • Modified 5/26/2023 3:03:57 PM
  • Threat Level High
  • Category Description
    A Worm is a malicious program that spreads itself without any user intervention. Worms spread without attaching to or infecting other programs and files. A Worm can spread across computer networks via security holes on vulnerable machines connected to the network and also through email by sending copies of itself to everyone in the user's address book. A Worm may consume a large amount of system resources and cause the machine to become noticeably sluggish and unreliable.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
ada47f77.exe 376832uNk1.00feb02b0f88e94e50609aa5cce8a2b2e1 
rhost32.exe 376832uNk1.00feb02b0f88e94e50609aa5cce8a2b2e1 
13703368.exe 77824unk1.0.0.081a95c84b606dc86c94c2fc559b1527d 
dfwin.exe 86016cd1.0.0.0c99bf970ac36b92aecb1a655d0835bc3 
eraseme_83638.exe 86016cd1.0.0.0c99bf970ac36b92aecb1a655d0835bc3 
bsrbt.exe 81920  56d410a99302bd8c151a6f41e484a625 
eraseme_05348.exe 81920  56d410a99302bd8c151a6f41e484a625 
minidrv32.sys 11656wmi systems7.2.3000.50028c6511826c60d64c0dbbcbb7a75fe90f26/05/2023
i5m9z4a5w4x7.exe 45100  7b1da8dc4f5756ab715fc02dd53a04e9 
c95922be.exe 580096  9d9abe9170e470c693d49c490e838e9d 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\policies\explorer\run\"microsoft driver setup"\"%win.sys32.drivers%\bsrbt.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\bsrbt.exe"
..\Software\Microsoft\Windows\CurrentVersion\shell extensions\"gon"\"%das.au.ls%\temp\6aac6a48.exe"
..\Software\Microsoft\Windows\CurrentVersion\policies\explorer\run\"microsoft driver setup"\"%win.sys32.drivers%\dcin.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\dcin.exe"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%win.sys32%\wbem\wmisvapp.exe"\"%win.sys32%\wbem\wmisvapp.exe:*:microsoft enabled"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%win.sys32%\wbem\wmisrsvc.exe"\"%win.sys32%\wbem\wmisrsvc.exe:*:microsoft enabled"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\f81dee23.exe"\"%das.au.ls%\temp\f81dee23.exe:*:x:\windows\system32\drivers\explorer.exe"
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\c95922be.exe"\"%das.au.ls%\temp\c95922be.exe:*:microsoft enabled"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"microsoft driver setup"\"%win.sys32.drivers%\dfwin.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.