Wednesday, November 26, 2008

MalwareBurn Ransomware

How To Remove MalwareBurn?
You must download trial version of "Exterminate-It" antivirus software,to check your computer instantly.
MalwareBurn is dangerous virus:
A cryptovirus, cryptotrojan or cryptoworm is a type of
malware that encrypts the data belonging to an individual on a computer,
demanding a ransom for its restoration.

The term ransomware is commonly used to describe software that encrypts the data
belonging to an individual on a computer, demanding a ransom for its restoration.
Although the field known as cryptovirology predates the term "ransomware".
MalwareBurn It also known as:

[Kaspersky]FraudTool.Win32.MalwareWipe.q;
[Panda]MalwareBurn;
[Other]MalwareBurn,Troj/Fakevir-AJ,Win32/MalwareBurn,MalwareBurn Installer

MalwareBurn Symptoms:

Files:
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.2.lnk
[%DESKTOP%]\MalwareBurn 7.1.lnk
[%DESKTOP%]\MalwareBurn 7.2.lnk
[%PROGRAM_FILES%]\MalwareBurn 6.9\MalwareBurn 6.9.exe
[%PROGRAM_FILES%]\MalwareBurn 7.2\MalwareBurn 7.2.exe
[%STARTMENU%]\MalwareBurn 7.1.lnk
[%STARTMENU%]\MalwareBurn 7.2.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.3.lnk
[%DESKTOP%]\MalwareBurn 7.2.lnk
[%DESKTOP%]\MalwareBurn 7.3.lnk
[%PROFILE_TEMP%]\MWLanguage.ini
[%STARTMENU%]\MalwareBurn 7.3.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.1.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.2.lnk
[%DESKTOP%]\MalwareBurn 7.1.lnk
[%DESKTOP%]\MalwareBurn 7.2.lnk
[%PROGRAM_FILES%]\MalwareBurn 6.9\MalwareBurn 6.9.exe
[%PROGRAM_FILES%]\MalwareBurn 7.2\MalwareBurn 7.2.exe
[%STARTMENU%]\MalwareBurn 7.1.lnk
[%STARTMENU%]\MalwareBurn 7.2.lnk
[%APPDATA%]\Microsoft\Internet Explorer\Quick Launch\MalwareBurn 7.3.lnk
[%DESKTOP%]\MalwareBurn 7.2.lnk
[%DESKTOP%]\MalwareBurn 7.3.lnk
[%PROFILE_TEMP%]\MWLanguage.ini
[%STARTMENU%]\MalwareBurn 7.3.lnk

Folders:
[%COMMON_PROGRAMS%]\MalwareBurn 7.2
[%PROGRAMS%]\MalwareBurn 7.1
[%PROGRAMS%]\MalwareBurn 7.2
[%PROGRAM_FILES%]\MalwareBurn 6.9
[%PROGRAM_FILES%]\MalwareBurn 7.0
[%PROGRAM_FILES%]\MalwareBurn 7.1
[%PROGRAM_FILES%]\MalwareBurn 7.2
[%PROGRAMS%]\MalwareBurn 7.3
[%PROGRAM_FILES%]\MalwareBurn 7.3

Registry Keys:
HKEY_CLASSES_ROOT\AppID\{70F17C8C-1744-41B6-9D07-575DB448DCC5}
HKEY_CLASSES_ROOT\Interface\{05519A3D-374E-4FF6-97D0-15B9A3DB923B}
HKEY_CLASSES_ROOT\Interface\{07525684-7E91-4716-9D3C-C63C70B36726}
HKEY_CLASSES_ROOT\Interface\{148DC552-52B7-4FFA-8078-6807C8B77E2C}
HKEY_CLASSES_ROOT\Interface\{1E885D38-978D-4D75-8ED9-DC3DF65CEF84}
HKEY_CLASSES_ROOT\Interface\{28BFEED2-2F5C-4B41-BB6A-C32A984A0807}
HKEY_CLASSES_ROOT\Interface\{63D19899-4F76-45C7-A683-479C4AFA8D26}
HKEY_CLASSES_ROOT\Interface\{6A4D7335-C26D-4664-8C16-22F0270795BE}
HKEY_CLASSES_ROOT\Interface\{72390CC1-9066-473C-8F89-48E4BB4F4FC8}
HKEY_CLASSES_ROOT\Interface\{7EEFDDBA-0E72-4F13-9C7E-B65809055CD0}
HKEY_CLASSES_ROOT\Interface\{8777FBBE-EB42-4316-8C2C-BC5CA02AABCD}
HKEY_CLASSES_ROOT\Interface\{ABF5B9E3-DB23-4599-8046-86EBD63D93AD}
HKEY_CLASSES_ROOT\Interface\{AD6EABD4-8104-4CDE-9863-9FF1D009A5A7}
HKEY_CLASSES_ROOT\Interface\{CAF77A53-F979-476C-856B-CA2FDCBBE29D}
HKEY_CLASSES_ROOT\Interface\{D13E5B43-1955-4792-A1FA-CC8346EAAA76}
HKEY_CLASSES_ROOT\Interface\{E726C7FA-5451-45EF-A20F-58B00284ECC8}
HKEY_CLASSES_ROOT\Interface\{F2ED6330-EC94-471C-B0E1-6E5BF1D87E24}
HKEY_CLASSES_ROOT\TypeLib\{F7AFFF3A-9CE4-4A38-AE44-936B7F4F9EA8}
HKEY_LOCAL_MACHINE\SOFTWARE\MalwareBurn 6.9
HKEY_LOCAL_MACHINE\SOFTWARE\MalwareBurn 7.0
HKEY_LOCAL_MACHINE\SOFTWARE\MalwareBurn 7.1
HKEY_LOCAL_MACHINE\SOFTWARE\MalwareBurn 7.2
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MalwareBurn 7.1.exe 7.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MalwareBurn 7.2.exe 7.2
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareBurn 6.9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareBurn 7.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareBurn 7.2
HKEY_CLASSES_ROOT\clsid\{47dc4218-ae5b-32b9-3ef8-c7f9cf2b564f}
HKEY_CLASSES_ROOT\interface\{111e76cd-5697-4ab1-b565-5eeee0c4d32c}
HKEY_CLASSES_ROOT\interface\{1dd6c99e-1633-44a4-a79b-f94025b84464}
HKEY_CLASSES_ROOT\interface\{27fdb0c3-b5d9-4da0-8c34-f98d0d7f3070}
HKEY_CLASSES_ROOT\interface\{304c8263-a779-444b-bcc7-c7a4571089b9}
HKEY_CLASSES_ROOT\interface\{322d6515-0ace-43ac-aa5a-3d22646b032d}
HKEY_CLASSES_ROOT\interface\{3aeab122-7b2c-4809-bf6b-0b6c7779fc5a}
HKEY_CLASSES_ROOT\interface\{43f5d878-f503-4a42-bb8c-757aa4fe5ef2}
HKEY_CLASSES_ROOT\interface\{44cf1ab5-66db-41b6-a603-b0491e3d77e1}
HKEY_CLASSES_ROOT\interface\{55439bec-53c8-40b1-a887-00dc19881d05}
HKEY_CLASSES_ROOT\interface\{5c2529f3-212c-4071-a3b2-bce187c05ba4}
HKEY_CLASSES_ROOT\interface\{66690145-c842-4277-98aa-2dfb6e3c9ed0}
HKEY_CLASSES_ROOT\interface\{7451dc3a-0c5b-4ea0-8a25-248a8728ab10}
HKEY_CLASSES_ROOT\interface\{7ad0c9a5-87c5-436c-b9e0-5057076dffdb}
HKEY_CLASSES_ROOT\interface\{7d009f2a-ef06-49c2-9067-ad364a767e1c}
HKEY_CLASSES_ROOT\interface\{7ebeb35d-5c00-45df-950d-5b88aaf99970}
HKEY_CLASSES_ROOT\interface\{8855fbba-8629-42ed-8b3f-9d62e0cc1eaa}
HKEY_CLASSES_ROOT\interface\{8aaefee3-f0f1-48d2-b4af-1140c2cf0084}
HKEY_CLASSES_ROOT\interface\{98405bd6-42c5-4ed7-ba88-66b148cf6384}
HKEY_CLASSES_ROOT\interface\{9f6cb5de-349a-418d-8c05-84e50ca10e1e}
HKEY_CLASSES_ROOT\interface\{ba45be78-a410-4c98-9f69-7106bf3d8e43}
HKEY_CLASSES_ROOT\interface\{d153fb67-91fe-4429-b1fa-99a0524ab25a}
HKEY_CLASSES_ROOT\interface\{d4241357-4196-41c5-b38c-253b6a1d4aaa}
HKEY_CLASSES_ROOT\interface\{d5aae7d9-9b3e-434e-86fe-32099cbefbf6}
HKEY_CLASSES_ROOT\interface\{d8cf2a7c-d097-4944-aa73-15813638c219}
HKEY_CLASSES_ROOT\interface\{e1b12865-3c42-47d7-b795-b3c54ba72304}
HKEY_CLASSES_ROOT\interface\{e7c9566b-6124-4723-a1d7-d0cdfa83a7b9}
HKEY_CLASSES_ROOT\interface\{eeee579b-8784-454d-86af-0a665aa47785}
HKEY_CLASSES_ROOT\interface\{f1b71eaf-b846-4ad4-b24f-1a60e2b591eb}
HKEY_CLASSES_ROOT\interface\{f4976d08-3233-4d80-90f5-a5687d5441da}
HKEY_CLASSES_ROOT\interface\{f6951c72-5c71-4c23-ba63-fab949fe18ff}
HKEY_CLASSES_ROOT\interface\{f9e0f1d4-1cdd-4287-b282-bb22ce2b2966}
HKEY_CLASSES_ROOT\interface\{fcdca78f-85e4-4add-a676-76b8a09f66d9}
HKEY_CLASSES_ROOT\typelib\{2fbe52cc-a9cd-4ff0-b70e-cf107684ccbd}
HKEY_CLASSES_ROOT\typelib\{db7b7b16-ac9f-46d4-833a-757cef63e95a}
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu\programs\malwareburn 7.2
HKEY_LOCAL_MACHINE\software\malwareburn 7.2
HKEY_LOCAL_MACHINE\software\malwareburn 7.3
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\app paths\malwareburn 7.2.exe 7.2
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\app paths\malwareburn 7.3.exe 7.3
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\malwareburn 7.2
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\malwareburn 7.3

Registry Values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\software\microsoft\windows\shellnoroam\muicache
HKEY_LOCAL_MACHINE\software\licenses
HKEY_LOCAL_MACHINE\software\licenses
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

You must clean you computer ASAP !!!
Download Free Trial Version of antivirus software here, to check your computer instantly.

Also Be Aware of the Following Threats:
Remove MaConnect Adware
Removing SillyDl.AVT Downloader

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)