Bumat!rts
Posted: November 30, 2010
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 4,605 |
| First Seen: | November 30, 2010 |
|---|---|
| Last Seen: | July 15, 2023 |
| OS(es) Affected: | Windows |
Aliases
Bck/Bifrose.BIS [Panda]W32/Bifrose.DSXR!tr.bdr [Fortinet]Backdoor.Win32.Turkojan [Ikarus]Trojan/Win32.Buzus [AhnLab-V3]Backdoor.Win32.Bifrose.dsxr [Kaspersky]BackDoor-CEP!bak [McAfee]Trj/OCJ.C [Panda]PSW.Generic10.BEJW [AVG]W32/Kryptik.ARMF!tr [Fortinet]Trojan-Ransom.Win32.Blocker [Ikarus]TROJ_SIGEKAF.SM [TrendMicro]TR/Crypt.XPACK.Gen7 [AntiVir]Trojan:W32/Kamala.A [F-Secure]Mal/Zbot-KN [Sophos]Trojan-Ransom.Win32.Blocker.ahpl [Kaspersky]
More aliases (1779)
More aliases (1779)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%APPDATA%\5C91.exe
File name: 5C91.exeSize: 106.49 KB (106496 bytes)
MD5: 8e46277add1f964bac145a5335068085
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: October 5, 2012
%TEMP%\yyyycmcqo.exe
File name: yyyycmcqo.exeSize: 88.88 KB (88888 bytes)
MD5: 9817da493c037eeafc830ec38319adea
Detection count: 86
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: April 29, 2013
%WINDIR%\system32\wlsidten.exe
File name: wlsidten.exeSize: 158.2 KB (158208 bytes)
MD5: 0361c9929effd6909b72fba6379c925a
Detection count: 84
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 17, 2012
%USERPROFILE%\01kt75pr89.exe
File name: 01kt75pr89.exeSize: 19.4 KB (19400 bytes)
MD5: 003275cf24487841e1cee9da0bb8996b
Detection count: 63
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%
Group: Malware file
Last Updated: July 3, 2021
%WINDIR%\system32\fastsrch.dll
File name: fastsrch.dllSize: 123.39 KB (123392 bytes)
MD5: 1f82b816e682bb7efeb210269d8a6798
Detection count: 49
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: August 21, 2012
%USERPROFILE%\mafi6whezj.exe
File name: mafi6whezj.exeSize: 15.87 KB (15872 bytes)
MD5: 6ed519e64113b8d8c051c38bd6680ab0
Detection count: 47
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%
Group: Malware file
Last Updated: December 17, 2012
%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\2.exe
File name: 2.exeSize: 164.35 KB (164352 bytes)
MD5: 89acb7fa1fb9e1c43887c9003a936124
Detection count: 45
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: March 21, 2013
C:\Windows\System32\worldclock.scr
File name: worldclock.scrSize: 1.02 MB (1023035 bytes)
MD5: fbd68d7d7d372097331c2703b33f3a2a
Detection count: 37
Mime Type: unknown/scr
Path: C:\Windows\System32\worldclock.scr
Group: Malware file
Last Updated: July 29, 2022
%TEMP%\derm32.exe
File name: derm32.exeSize: 68.6 KB (68608 bytes)
MD5: d0dd0c2b6ed9605314843a5d165df25e
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 27, 2012
E:\NBMSClient\Sys\SysProcLog.sys
File name: SysProcLog.sysSize: 14.08 KB (14080 bytes)
MD5: a491b791aedc1fb447b7ec8db17d1f6e
Detection count: 24
File type: System file
Mime Type: unknown/sys
Path: E:\NBMSClient\Sys
Group: Malware file
Last Updated: October 15, 2012
C:\Users\<username>\Desktop\Desktop\test documents\airbag_version1.0\airbag_version1.0\Airbag Version 1.0_Patch.exe
File name: Airbag Version 1.0_Patch.exeSize: 346.28 KB (346289 bytes)
MD5: 68690e1044b927916da0374bb99ef494
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\Desktop\Desktop\test documents\airbag_version1.0\airbag_version1.0\Airbag Version 1.0_Patch.exe
Group: Malware file
Last Updated: August 3, 2022
%WINDIR%\system32\1jfuweif.exe
File name: 1jfuweif.exeSize: 48.64 KB (48640 bytes)
MD5: b894555463f935930b69c7ea387fd462
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: September 3, 2012
%WINDIR%\SysWOW64\pingrel.exe
File name: pingrel.exeSize: 304.64 KB (304640 bytes)
MD5: 42e862f88c3937725cde66644cd6095d
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: October 5, 2012
%ALLUSERSPROFILE%\Local Settings\Temp\mstxxfwdx.pif
File name: mstxxfwdx.pifSize: 55.8 KB (55808 bytes)
MD5: a97d3f6e40c30dc52abb7aeee56f8c35
Detection count: 13
Mime Type: unknown/pif
Path: %ALLUSERSPROFILE%\Local Settings\Temp
Group: Malware file
Last Updated: October 5, 2012
%TEMP%\tmp\indy.exe
File name: indy.exeSize: 57.34 KB (57344 bytes)
MD5: 27387028a6db9cb115d8a6f450ba7e69
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\tmp
Group: Malware file
Last Updated: September 19, 2019
%WINDIR%\system32\wgsdgsdgdsgsd.exe
File name: wgsdgsdgdsgsd.exeSize: 152.06 KB (152064 bytes)
MD5: db8b1348d925b09f98c6784edc24ab84
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: November 22, 2012
%COMMONPROGRAMFILES(x86)%\Planit\2010.20\cls\cls.exe
File name: cls.exeSize: 526.33 KB (526336 bytes)
MD5: 018e4c30cfab703801bb212e23d3beb1
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %COMMONPROGRAMFILES(x86)%\Planit\2010.20\cls
Group: Malware file
Last Updated: May 31, 2020
%USERPROFILE%\9iwqj1rup4.exe
File name: 9iwqj1rup4.exeSize: 19.38 KB (19384 bytes)
MD5: af0c9a72317da2f38b08f2db6718b537
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%
Group: Malware file
Last Updated: December 17, 2012
%USERPROFILE%\Application Data\AF41.exe
File name: AF41.exeSize: 117.76 KB (117760 bytes)
MD5: c73b6b3df500058594724129300961b2
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Application Data
Group: Malware file
Last Updated: December 17, 2012
%SystemDrive%\RECYCLER\S-1-5-21-220523388-308236825-1801674531-1003\$6abd3f6cdff198c2a9240c1a61468243\n.
File name: n.Size: 74.75 KB (74752 bytes)
MD5: a2793f92629b1583ec77708c71e173cc
Detection count: 7
Path: %SystemDrive%\RECYCLER\S-1-5-21-220523388-308236825-1801674531-1003\$6abd3f6cdff198c2a9240c1a61468243
Group: Malware file
Last Updated: October 9, 2012
%SystemDrive%\win7xe\winlogons.exe
File name: winlogons.exeSize: 2.45 MB (2456064 bytes)
MD5: 766d65b61d93a38274f7a944245d8286
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\win7xe
Group: Malware file
Last Updated: March 21, 2013
%USERPROFILE%\Mijn documenten\Backups\Windows\Windows_security_backup files\Windows_security_update_3475_36_d.exe
File name: Windows_security_update_3475_36_d.exeSize: 423.37 KB (423377 bytes)
MD5: b43d9a927ffc035b3a9b8633251e603b
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Mijn documenten\Backups\Windows\Windows_security_backup files
Group: Malware file
Last Updated: November 9, 2012
%LOCALAPPDATA%\Microsoft\Windows\Temporary Internet Files\Content.IE5\AH9255E1\f6721[1].exe
File name: f6721[1].exeSize: 231.41 KB (231416 bytes)
MD5: 953886c1372f182313aa1006084b4675
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\Microsoft\Windows\Temporary Internet Files\Content.IE5\AH9255E1
Group: Malware file
Last Updated: December 11, 2012
%ALLUSERSPROFILE%\Application Data\2h6jpluy.exe
File name: 2h6jpluy.exeSize: 103.93 KB (103936 bytes)
MD5: 1c26130723ef0b734db58733d537b0e2
Detection count: 2
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: August 16, 2012
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.