Home / Spyware Encyclopedia / RiskTool.HideWindows << Back

Recommendation to Automatically remove RiskTool.HideWindows


Our products can remove RiskTool.HideWindows and thousands of other Virus and Spyware automatically and instantly.

RiskTool.HideWindows Details


  • Category RiskTool
  • Discovered 4/15/2010 5:05:31 PM
  • Modified 9/2/2024 11:33:47 AM
  • Threat Level High
  • Category Description
    This is an application that is not necessarily harmful if properly installed by the user or administrator of the PC, but which could be harmful or disruptive to the user, PC, or network if deployed by unauthorized parties for potentially malicious purposes

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
4faf1e1e.exe 687429welcome1.1.1.22e6da971957f081e2ef4d134bb5e9600 
b18a4328.exe 18794765oleg n. scherbakov1.2.0.552  
sexya.exe 21167Adrian Lopez1.0.0.0a9303341fff52f287ce625b0e9e9c5bf 
2a67900b.exe 2232417 3, 2, 8, 1145d5bf5a652adc7beb15fe8f5158029 
E668AD0D.EXE 31744 1.4.3.0863c00892963639b2437967f52708711 
96287204.EXE 16896 1.4.3.06f7b7f9dfa0864675cf4c2a1319f009d 
5b24160e.exe 74240 1.4.3.060060ff2a966f980c7f109b9fa11b1ce 
84D16223.EXE 16896 1.4.3.05f8d5ca96f6697e6c8aa0fc1c301aec2 
030A7F4E.EXE 102937 1.4.3.0514e2b44e089278312e5b5699152b87a 
1381F8BB.EXE 116951 1.4.3.02798a9433a952f63c6bf255fa8f291dd 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"regedit"\"%das.au.ls%\temp\gsf4\zlip.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Sexya2"\"%WIN.SYS32%\SSSSSSSSSSSSS\Sexya2.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WinReg"\"%PF%\cute\svchost.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WinXPService"\"%ROOT%\winnt\system32\Lavan\system32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"od-padr87"\"%PF%\Webdialer\792be032.exe -m"
..\Software\Microsoft\Windows\CurrentVersion\Uninstall\Webdialer_od-padr87\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"MSN"\"%DAS.AU%\UPDATE\MSN.EXE -D -E CMD.EXE 190.18.44.235 80"
..\System\CurrentControlSet\Services\SYNTPS\(Default)
..\Software\adrian lopez\(Default)
..\Software\webdialer\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware