Smitfraud

Posted: March 27, 2006
Threat Metric
Threat Level: 8/10
Infected PCs 77

Smitfraud Description

Smitfraud is a Trojan, which shows excessive pop-up messages showing a false alert or fake error message, trying to lure computer user into purchasing anti-spyware software, such as AdwareDelete, PSGuard, AntivirusGold or SpySheriff, that supposedly detects adware on your computer but in turn is a malicious spying software. Furthermore, Smitfraud replaces some Windows critical components with own infected files. Smitfraud is a malicious spyware and may cause serious system instability issues. It's recommended that you get rid of this trojan as soon as possible.

Aliases


Generic26.ZUH [AVG]Trojan/win32.agent.gen [Antiy-AVL]TR/Kazy.48076.5 [AntiVir]Trojan.Win32.Generic!BTGen:Variant.Kazy.48076 [BitDefender]MSIL:Dropper-RL [Drp] [Avast]a variant of MSIL/Injector.QA [NOD32]Trj/CI.A [Panda]Backdoor/Win32.Gbot [AhnLab-V3]Trojan.Win32.FakeAV.IS (v)Trojan.PWS.Siggen.31019 [DrWeb]Heur.Suspicious [Comodo]Gen:Variant.Kazy.48088 [BitDefender]Win32:Cycbot-PJ [Trj] [Avast]Trojan.Win32.Heur.Gen
More aliases (119)

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Smitfraud may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



drsmartload45a.exe File name: drsmartload45a.exe
Size: 28.02 KB (28024 bytes)
MD5: 44973d6051f7d0a88310866b3532f7e1
Detection count: 96
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
dxpvqlmtqn.dll File name: dxpvqlmtqn.dll
Size: 258.04 KB (258048 bytes)
MD5: 39340fc1535a3ae339c2b3c85e69ada7
Detection count: 95
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
retadpu21.exe File name: retadpu21.exe
Size: 45.05 KB (45056 bytes)
MD5: 3933fa8deca73bd514e6ce3d934ee8a9
Detection count: 95
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
oembios32.dll File name: oembios32.dll
Size: 22.01 KB (22016 bytes)
MD5: e25c0e171d4122f36d0f7c7f67b4a9eb
Detection count: 94
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
retadpu1000106.exe File name: retadpu1000106.exe
Size: 45.05 KB (45056 bytes)
MD5: be5edac25bd1450060f93116ede6de88
Detection count: 90
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
bndsrgxt.dll File name: bndsrgxt.dll
Size: 270.33 KB (270336 bytes)
MD5: d3ae8abe74fe369a440a3ae34d26a30f
Detection count: 83
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
bndsrdkq.dll File name: bndsrdkq.dll
Size: 237.56 KB (237568 bytes)
MD5: d32f3a7f23d4f46a63782e0f3e3e58f8
Detection count: 80
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
wjiio.exe File name: wjiio.exe
Size: 38.21 KB (38216 bytes)
MD5: ddc57b76f71a82da9abc05ea00247a15
Detection count: 76
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
arpl.exe File name: arpl.exe
Size: 8.7 KB (8704 bytes)
MD5: 01604c6bc08f7dffbcc7d61b523704a5
Detection count: 53
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
drsmartload849a.exe File name: drsmartload849a.exe
Size: 28.67 KB (28672 bytes)
MD5: d471f4ffd83dc95df6d63076dcdf6cc1
Detection count: 44
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
services.exe File name: services.exe
Size: 118.27 KB (118272 bytes)
MD5: d85e078fed9ce534fa5e2ef999955955
Detection count: 44
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
byxusss.dll File name: byxusss.dll
Size: 31.25 KB (31254 bytes)
MD5: 8cef9f4bb684f88e419f5de46e289bc2
Detection count: 40
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
csrss.exe File name: csrss.exe
Size: 103.42 KB (103424 bytes)
MD5: f7f18b92a3d6f169b05d95cef3e01d37
Detection count: 36
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
atmtd.dll File name: atmtd.dll
Size: 687.59 KB (687592 bytes)
MD5: 6d5f90ea52fe0cdc102b14485563eba0
Detection count: 32
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
drsmartload46a.exe File name: drsmartload46a.exe
Size: 28.67 KB (28672 bytes)
MD5: d9f95415d24dee922ad9748e918a9363
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
MTE3NDI6ODoxNg.exe File name: MTE3NDI6ODoxNg.exe
Size: 25.1 KB (25105 bytes)
MD5: f7212a74bcec46b93283656ccd886af0
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
%APPDATA%21.exe File name: 21.exe
Size: 220.16 KB (220160 bytes)
MD5: 49b9be7bcd5826cad36d7dfc9b05dedc
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: May 15, 2020
domnftwlvq.dll File name: domnftwlvq.dll
Size: 286.72 KB (286720 bytes)
MD5: e01303b47d29e8d364546ff4fbd57fda
Detection count: 10
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
dxpvqlmqng.dll File name: dxpvqlmqng.dll
Size: 253.95 KB (253952 bytes)
MD5: 7170c7ae83c1b87a52d4383daef881e8
Detection count: 4
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
ssqnool.dll File name: ssqnool.dll
Size: 31.25 KB (31254 bytes)
MD5: f62114fa101cca85d3764369f0619a1c
Detection count: 4
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
cvajjkohifjam.exe File name: cvajjkohifjam.exe
Size: 33.23 KB (33232 bytes)
MD5: f1f06bee214b2748e7b6b8d189c92370
Detection count: 3
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
akylrvamqzjn.exe File name: akylrvamqzjn.exe
Size: 30.79 KB (30792 bytes)
MD5: 280bdc03f8f964e4c91d6ea1f6e61168
Detection count: 2
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
retadpu.exe File name: retadpu.exe
Size: 45.05 KB (45056 bytes)
MD5: 5a6b91738dfa140b59ff1b7c36bdf2de
Detection count: 1
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009

More files

Registry Modifications


The following newly produced Registry Values are:

File name without pathdrsmartload2.datCLSID{27321538-5739-4aa1-b84c-7d18e4383f1f}

Related Posts

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.