Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Notifier.Delf << Back

Recommendation to Automatically remove Notifier.Delf

Our products can remove Notifier.Delf and thousands of other Virus and Spyware automatically and instantly.

Notifier.Delf Details

Category Notifier
Discovered 5/11/2009 9:40:18 AM
Modified 2/14/2020 2:27:11 PM
Threat Level Medium
Category Description
The purpose of these Trojans is to inform the author or 'master' that malicious code has been installed on the victim machine and to relay information about the IP address, open ports, e-mail address and so on. Trojan Notifiers are typically included in a Trojan 'pack' that contains other malware.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE	Date
Trojan-Dropper.Win32.VB.ia.exe	70046	QQ?:10285555	1.1.0.0	f9bcd6c33c5c914dd9407155e8149e9f
Trojan-Dropper.Win32.VB.ii.exe	1257472	Microsoft	1.0.0.0	f9464f804379d0032418da150d46d65e
Trojan-Dropper.Win32.VB.ik.exe	2842624	Microsoft	1.0.0.0	d8303ba2501e2094ff2664b0d850fc96
Trojan-Dropper.Win32.VB.ir.exe	118784		1.0.0.1	0a9472f4efdf99959bde2661ff2247e0
svchost.exe	595252		1.0.0.0	a98f7b4e75d0f817c3c87d4c0a7a96e0
dinst.exe	90112		1.0.0.0	a1cf99e2e1124884911361820c691242
Trojan-Dropper.Win32.VB.ie.exe	55916
Trojan-Dropper.Win32.VB.i.exe	125952	龙辉工作室	1.0.0.0	598ba823275dbca8674c52b4280f903a	14/02/2020
d2gfz.dll	1508
7AFA407E.EXE	357376			c4ec2d8df9a3f3231867c69569e5f207

The following Registry Entries were created:

..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Windows Security Module"\"phqg.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Windows Security Module"\"phqg.exe"

..\Software\Classes\N.tjKpSb382\(Default)

..\Software\Classes\Typelib\{7BD27B00-E8C2-4BCB-B2F2-B549B3CD7B4C}\(Default)

..\Software\Classes\Clsid\{B7170459-1CC2-43BE-9A41-0D5EEE24A79F}\(Default)

..\Software\Classes\Interface\{31F3B604-0233-4898-8E37-C8DA332957FF}\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Yupdater"\"%WIN%\system_32\services.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"generic host process"\"%win.sys32%\scvhost.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Notifier.Delf

Notifier.Delf Details

Useful Links