Monday, January 26, 2009

Slapew Trojan

Removing Slapew
Categories: Trojan
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Slapew Also known as:

[Kaspersky]Trojan-Proxy.Win32.Slaper,Trojan-Proxy.Win32.slaper.e,Trojan-Proxy.Win32.Slaper.e,Trojan-Proxy.Win32.Slaper.p;
[McAfee]Spam-Mailbot,Spam-Slaped;
[F-Prot]W32/Trojan.ARSR;
[Other]Win32/Slapew,Win32/Slapew.B,Win32/Slapew.J,Trojan.Spabot,Win32.Slapew.I,Win32/Slapew.K,TROJ_SLAPER.BH,Win32/Slapew.AO,Trojan.Slapew.C,W32/Slaper.FJ,Win32/Slapew.AP,W32/Slaper.FI,W32/Malware.BAHX
Visible Symptoms:
Files in system folders:
[%SYSTEM%]\helpermdmd.exe
[%SYSTEM%]\helpermfcee.exe
[%SYSTEM%]\helpersrvc.exe
[%SYSTEM%]\helpsyss.exe
[%SYSTEM%]\mdmd.exe
[%SYSTEM%]\mfcee.exe
[%SYSTEM%]\srvc.exe
[%SYSTEM%]\sysems.exe
[%SYSTEM%]\helpermnew1winc.exe
[%SYSTEM%]\helpersrvdc.exe
[%SYSTEM%]\mnew1winc.exe
[%SYSTEM%]\srvdc.exe
[%SYSTEM%]\helpermdmd.exe
[%SYSTEM%]\helpermfcee.exe
[%SYSTEM%]\helpersrvc.exe
[%SYSTEM%]\helpsyss.exe
[%SYSTEM%]\mdmd.exe
[%SYSTEM%]\mfcee.exe
[%SYSTEM%]\srvc.exe
[%SYSTEM%]\sysems.exe
[%SYSTEM%]\helpermnew1winc.exe
[%SYSTEM%]\helpersrvdc.exe
[%SYSTEM%]\mnew1winc.exe
[%SYSTEM%]\srvdc.exe

How to detect Slapew:

Files:
[%SYSTEM%]\helpermdmd.exe
[%SYSTEM%]\helpermfcee.exe
[%SYSTEM%]\helpersrvc.exe
[%SYSTEM%]\helpsyss.exe
[%SYSTEM%]\mdmd.exe
[%SYSTEM%]\mfcee.exe
[%SYSTEM%]\srvc.exe
[%SYSTEM%]\sysems.exe
[%SYSTEM%]\helpermnew1winc.exe
[%SYSTEM%]\helpersrvdc.exe
[%SYSTEM%]\mnew1winc.exe
[%SYSTEM%]\srvdc.exe
[%SYSTEM%]\helpermdmd.exe
[%SYSTEM%]\helpermfcee.exe
[%SYSTEM%]\helpersrvc.exe
[%SYSTEM%]\helpsyss.exe
[%SYSTEM%]\mdmd.exe
[%SYSTEM%]\mfcee.exe
[%SYSTEM%]\srvc.exe
[%SYSTEM%]\sysems.exe
[%SYSTEM%]\helpermnew1winc.exe
[%SYSTEM%]\helpersrvdc.exe
[%SYSTEM%]\mnew1winc.exe
[%SYSTEM%]\srvdc.exe

Registry Values:
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

Removing Slapew:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Copenoz Trojan Removal
IIINotifier Trojan Cleaner
Remove Pigeon.ELE Trojan
Remove TServe.Remote.Administration RAT
Train Trojan Information

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)