Home / Spyware Encyclopedia / Rootkit.Small << Back

Recommendation to Automatically remove Rootkit.Small


Our products can remove Rootkit.Small and thousands of other Virus and Spyware automatically and instantly.

Rootkit.Small Details


  • Category Rootkit
  • Discovered 4/30/2009 3:47:19 PM
  • Modified 1/2/2024 10:34:44 AM
  • Threat Level High
  • Category Description
    A Rootkit is a collection of tools (programs) that enable administrator-level (root) access to a computer or computer network. A Rootkit may consist of spyware and other programs that: monitor traffic and keystrokes; create a "backdoor" into the system for the hacker's use; alter log files; attack other machines on the network; and alter existing system tools to escape detection. They are usually hidden and difficult to clean as they ingranulate deeply within the Registry and system files.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
wdgy.exe 45180svchost1.0065dac76523277c97fe4356271b13c5ca 
wdgy.exe 45180svchost1.0.0.0d2f64871ecb2165924a87854e8c6643e 
f57614ec.exe 1646899Macromedia, Inc.8.0.22.0feeae78a973f2368942c89f788346b8f 
f57614ec.exe 1659753Macromedia, Inc.8.0.22.01ed1e43ee331ec7cab3b08a2b107f77f 
c7145a97.exe 586289Macromedia, Inc.5.0.30.0f7281632619a99524bf96d29df97ce88 
c7145a97.exe 599143Macromedia, Inc.5.0.30.0205d1a5a228df2fd5ed2a988e4c3f59d 
DE090773.EXE 4704Intel(R) Corporation6.13.1.3198fde2d7f6de82063591ee3ee22597e9f2 
B081B462.EXE 5683Intel(R) Corporation6.13.1.3198d12c10372f900ed6ef376353e3cc7e18 
a81b59fc.exe 1935747HonorGames1.0.0.021a73e2d484507c13f8b2bb7bb12d89b 
protect.dll 16384  ffe5efaf1d1de0850f689c2e0d8d31ef 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"rundll32.exe %DAS.AU%\protect.dll,_IWMPEvents@16"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"rundll32.exe %WIN.SYS32%\autochk.dll,_IWMPEvents@16"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"%DAS.AU%\LocalService\protect.dll,_IWMPEvents@16"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"%DAS%\nts and Settings\admin\protect.dll,_IWMPEvents@16"
..\System\CurrentControlSet\Services\sectolr\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"%WIN.SYS32%\OWS\system32\autochk.dll,_IWMPEvents@16"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"%ROOT%\dll32.exe X:\DOCUME~1\LOCALS~1\protect.dll,_IWMPEvents@16"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"autochk"\"%ROOT%\dll32.exe X:\DOCUME~1\admin\protect.dll,_IWMPEvents@16"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.