Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / IM.VB << Back

Recommendation to Automatically remove IM.VB

Our products can remove IM.VB and thousands of other Virus and Spyware automatically and instantly.

IM.VB Details

Category IM
Discovered 2/9/2009 1:45:33 PM
Modified 7/14/2023 12:15:34 PM
Threat Level High
Category Description
A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
FE582050.EXE	75776	TopFox Software	1.00	1b744812e26c67074d7bde844d89576d
7890E8D9.EXE	59904	Picture	1.0.0.0	f2b719cf723a21be6d76a92f2dc8072d
93ACD213.EXE	147456	Picture	1.0.0.0	e834f6066eec533aeac534d69f2c9f68
31C97713.EXE	135168	Picture	1.0.0.0	d87e2bc3dd757c7d98d98c795c558f0c
A3A2A081.EXE	139264	Picture	1.0.0.0	bcd11dabeb348744e28075970405add5
37872BB5.EXE	60416	Picture	1.0.0.0	bbc7c12ca52e7afc5bd4ea68b41df98f
8E00015E.EXE	147456	Picture	1.0.0.0	a5b512ccf631c2cf168427bbdc0abb6c
CD72F5F6.EXE	26624	MAGIC_H2001	1.0.0.0	8eefcd8a7c06e1f28ca025aaede7eb3a
D2236A66.EXE	58252	Guelfoweb Production	1.0.0.0	d9d8ed4096daec3fb45a1ccc1d3416f6
B6B6122C.EXE	61440	Guelfoweb Production	1.0.0.0	ca6919b2e4a385ea289c2d90e9f8d5ea

The following Registry Entries were created:

..\Software\Microsoft\Mrv3\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"wsys"\"%PF%\STARo\wsys.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Windows Spooler"\"%ROOT%\WINNT\spooler.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Services"\"%WIN%\svchost.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"RunWin32"\"%WIN.SYS32%\RunWin32.exe"

..\Software\Microsoft\Msdrv\(Default)

..\Software\Microsoft\Active Setup\Installed Components\{F146C9B1-VMVQ-A9RC-NUFL-D0BA00B4E2851929}\(Default)

..\Software\Microsoft\Active Setup\Installed Components\{Y479C6D0-OTRW-U5GH-S1EE-E0AC10B4E9941929}\(Default)

..\Software\surfsidekick2\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove IM.VB

IM.VB Details

Useful Links