Categories: Ransomware
The term ransomware is commonly used to describe such software,
although the field known as cryptovirology predates the term "ransomware".
This type of ransom attack can be accomplished by (for example) attaching
a specially crafted file/program to an e-mail message and sending this to the victim.
[Kaspersky]Downloader.Win32.WinFixer.au;
[Other]TrojanDownloader:Win32/RenosVisible Symptoms:
Files in system folders:
[%APPDATA%]\SpyGuardPro\avtasks.dat
[%APPDATA%]\SpyGuardPro\Logs\av.log
[%APPDATA%]\SpyGuardPro\Logs\ga6Support.log
[%APPDATA%]\SpyGuardPro\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Uninstall SpyGuardPro.lnk
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\bm.exe
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\ugcw.exe
[%APPDATA%]\SpyGuardPro\avtasks.dat
[%APPDATA%]\SpyGuardPro\Logs\av.log
[%APPDATA%]\SpyGuardPro\Logs\ga6Support.log
[%APPDATA%]\SpyGuardPro\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Uninstall SpyGuardPro.lnk
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\bm.exe
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\ugcw.exe How to detect SpyGuardPro:
Files:
[%APPDATA%]\SpyGuardPro\avtasks.dat
[%APPDATA%]\SpyGuardPro\Logs\av.log
[%APPDATA%]\SpyGuardPro\Logs\ga6Support.log
[%APPDATA%]\SpyGuardPro\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Uninstall SpyGuardPro.lnk
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\bm.exe
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\ugcw.exe
[%APPDATA%]\SpyGuardPro\avtasks.dat
[%APPDATA%]\SpyGuardPro\Logs\av.log
[%APPDATA%]\SpyGuardPro\Logs\ga6Support.log
[%APPDATA%]\SpyGuardPro\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\SpyGuardPro.lnk
[%COMMON_PROGRAMS%]\SpyGuardPro\Uninstall SpyGuardPro.lnk
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\bm.exe
[%PROGRAM_FILES_COMMON%]\SpyGuardPro\ugcw.exe
Folders:
[%PROGRAM_FILES%]\SpyGuardPro
Registry Keys:
HKEY_CURRENT_USER\software\spyguardpro
HKEY_LOCAL_MACHINE\software\spyguardpro
Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce
HKEY_LOCAL_MACHINE\software\products
HKEY_LOCAL_MACHINE\software\products
Removing SpyGuardPro:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
Zlob.Fam.VideoCompressionCodec Trojan Symptoms
Renmog Trojan Cleaner
Remove Bancos.INK Trojan
Delf.cw Trojan Removal
Surila Trojan Symptoms
No comments:
Post a Comment