Thursday, January 22, 2009

Brospy Trojan

How To Remove Brospy?
You must download trial version of "Exterminate-It" antivirus software,to check your computer instantly.
Brospy is dangerous virus:
This category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.


Brospy It also known as:

[Kaspersky]Trojan-Spy.Win32.BZub.ar,Trojan-Spy.Win32.BZub.ec,Trojan-Spy.Win32.BZub.dy,Trojan-Spy.Win32.BZub.do,Trojan-Spy.Win32.BZub.dm,Trojan-Spy.Win32.BZub.dt,Trojan-Spy.Win32.BZub.x,Trojan-Spy.Win32.BZub.dw,Trojan-Dropper.Win32.Delf.rc,Trojan-Spy.Win32.Goldun.er,Trojan-Spy.Win32.BZub.hn,Trojan-Spy.Win32.BZub.hk,Trojan-Dropper.Win32.Agent.bbu,Trojan-Spy.Win32.BZub.fz,Trojan-Spy.Win32.BZub.ib,Trojan-Spy.Win32.BZub.fh,Trojan-Downloader.Win32.Agent.bhc,Trojan-Spy.Win32.BZub.ie,Trojan-Spy.Win32.BZub.ih,trojan-Spy.Win32.BZub.ip,Trojan-Spy.Win32.BZub.ik,Trojan-Spy.Win32.BZub.gr,Trojan-Spy.Win32.BZub.ji,Trojan-Spy.Win32.BZub.iz,Trojan-Spy.Win32.BZub.cz,Infostealer.Bzup,Trojan-Spy.Win32.BZub.ic,Trojan-Spy.Win32.BZub.ip,Trojan-Spy.Win32.BZub.js,Trojan-Spy.Win32.BZub.buu;
[McAfee]Spy-Agent.ba,Spy-Agent.ak,Downloader-AAP,Spy-Agent.ba.gen,Spy-Agent.gen;
[F-Prot]W32/Goldun.gen1,W32/Dropper.BXR,W32/Goldun.OO;
[Other]Win32/Brospy.BT,Infostealer,Troj/Cimuz-Gen,Win32.Brospy.CK,Win32/Brospy.CL,Win32/Brospy.CF,Trojan.Bankem.B,Win32/Brospy.CJ,Infostealer.Bzup,WIn32/Brospy.CI,Win32/Brospy.BX,Trojan.Bankem,Win32/Brospy.CH,Infostealer.Bancos,W32/Delf.WMN,Troj/Cimuz.BI,Win32/Brospy.V,Goldun.Fam,Troj/Banker-MD,Win32/Brospy.DQ,Win32/Brospy.DM,Win32/Brospy.CW,Win32/Brospy.DN,WIn32/Brospy.DO,Win32/Brospy.DP,Win32/Brospy.EG,Infostealer.Bzub,Win32/Brospy.EH,Win32/Brospy.DJ,Win32/Brospy.EJ,Win32/Brospy.EQ,Win32/Brospy.EU,Win32/Brospy.ET,Win32/Brospy.EX,Mal/Binder-C,Win32/Brospy.FC,New Malware.bl,Mal/Cimuz-A,Win32/Brospy.FG,Win32/Brospy.FI,Trojan-Spy.Win32.BZub.ip,Win32/Brospy.FK,Win32/Brospy.FJ,Win32/Brospy.FL,Win32/Brospy.FM,Win32/Brospy.8ys!Trojan,Win32/Brospy.FT,Win32/Brospy.FY,Win32/Brospy.FZ,Win32/Brospy.GE,Win32/Brospy.GF,Win32/Brospy.GO,Troj/Cimuz-CH,W32/BHO.QG,Win32/Brospy.GP,TrojanDropper:Win32/Small.OT,TROJ_DROPPER.CKI,Win32/Brospy.GV,Trojan:Win32/Bzup.IV,W32/Goldun.BEV,Win32/Brospy.GY,TrojanSpy:Win32/Bzub.gen!dll

Brospy Symptoms:

Files:
[%PROFILE_TEMP%]\tsinstall_4_0_4_0_b4.exe
[%PROGRAM_FILES_COMMON%]\uiku\uikud\class-barrel
[%PROGRAM_FILES_COMMON%]\uiku\uikud\vocabulary
[%SYSTEM%]\hook.dll
[%SYSTEM%]\info.txt
[%SYSTEM%]\ipv6monl.dll
[%SYSTEM%]\ipv6mons.dll
[%SYSTEM%]\msn.exe
[%PROFILE_TEMP%]\DIVXWPLUGIN302.EXE
[%SYSTEM%]\ipv6motq.dll
[%SYSTEM%]\mqbkup.dll
[%PROFILE_TEMP%]\tsinstall_4_0_4_0_b4.exe
[%PROGRAM_FILES_COMMON%]\uiku\uikud\class-barrel
[%PROGRAM_FILES_COMMON%]\uiku\uikud\vocabulary
[%SYSTEM%]\hook.dll
[%SYSTEM%]\info.txt
[%SYSTEM%]\ipv6monl.dll
[%SYSTEM%]\ipv6mons.dll
[%SYSTEM%]\msn.exe
[%PROFILE_TEMP%]\DIVXWPLUGIN302.EXE
[%SYSTEM%]\ipv6motq.dll
[%SYSTEM%]\mqbkup.dll

Registry Keys:
HKEY_CLASSES_ROOT\appid\{21384d29-1240-2d4f-a15c-17e42823d523}
HKEY_CLASSES_ROOT\appid\{23314d99-1240-4d4f-a25c-17e44823d048}
HKEY_CLASSES_ROOT\AppID\{36DBC179-A19F-48F2-B16A-6A3E19B42A87}
HKEY_CLASSES_ROOT\appid\{73364d99-1240-4dff-b11a-67e448373048}
HKEY_CLASSES_ROOT\appid\{73364d99-1240-4dff-b12a-67e448373148}
HKEY_CLASSES_ROOT\CLSID\{21384D29-1240-2D4F-A15C-17E42823D523}
HKEY_CLASSES_ROOT\clsid\{36dbc179-a19f-48f2-b16a-6a3e19b42a87}
HKEY_CLASSES_ROOT\CLSID\{73364D99-1240-4DFF-B11A-67E448373048}
HKEY_CLASSES_ROOT\CLSID\{73364D99-1240-4DFF-B12A-67E448373148}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\control panel\load1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{36DBC179-A19F-48F2-B16A-6A3E19B42A87}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73364D99-1240-4DFF-B12A-67E448373148}
HKEY_CLASSES_ROOT\appid\{36dbc179-a19f-48f2-b16a-6a3e19b42a87}
HKEY_CLASSES_ROOT\clsid\{21384d29-1240-2d4f-a15c-17e42823d523}
HKEY_CLASSES_ROOT\clsid\{23314d99-1240-4d4f-a25c-17e44823d048}
HKEY_CLASSES_ROOT\clsid\{73364d99-1240-4dff-b11a-67e448373048}
HKEY_CLASSES_ROOT\clsid\{73364d99-1240-4dff-b12a-67e448373148}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{21384d29-1240-2d4f-a15c-17e42823d523}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{23314d99-1240-4d4f-a25c-17e44823d048}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{36dbc179-a19f-48f2-b16a-6a3e19b42a87}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{73364d99-1240-4dff-b11a-67e448373048}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{73364d99-1240-4dff-b12a-67e448373148}

Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run


You must clean you computer ASAP !!!
Download Free Trial Version of antivirus software here, to check your computer instantly.

Also Be Aware of the Following Threats:
Trojan.Downloader.Win32.Small.yj Downloader Removal instruction
Remove Datalock Trojan
Bat.nh Backdoor Removal instruction
Removing CWS.XXXVideo Hijacker
Colondoff DoS Cleaner

No comments: