Malware Bell
Posted: April 14, 2008
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 10/10 |
|---|---|
| Infected PCs: | 42 |
| First Seen: | July 24, 2009 |
|---|---|
| Last Seen: | January 26, 2020 |
| OS(es) Affected: | Windows |
Malware Bell 3.2, also known as MalwareBell, is a rogue anti-spyware program. Although Malware Bell appears to have all the makings of a legitimate anti-spyware program, its sole purpose is to use misleading spyware threat reports to trick you into purchasing its full version.
Malware Bell is downloaded and installed onto your computer by a Trojan called Zlob. As soon as Zlob is installed, it will display false error messages which states that your computer has been infected with Trojan.Win32.SystemCrash. Trojan.Win32.SystemCrash is a fake threat added to the false error message, which is used to scare you into making a hasty decision and resort to purchasing the rogue anti-spyware program Malware Bell. Nor Malware Bell or its "spyware threat reports" are to be trusted. Malware Bell should be removed from your system as soon as possible.
Aliases
Mal/Emogen-AC [Sophos]Downloader.Zlob [Prevx1]Trojan:Win32/Zlob.gen!H [Microsoft]AdClicker-FC.gen.a [McAfee]Trojan.BHO.Agent.221184 [Ikarus]W32/Adware-RegBHO-based.1!Maximus [F-Prot]Downloader.Zlob.AAQ [AVG]Win32:Vapsup-EB [Avast]TR/BHO.Agent.221184 [AntiVir]Sus/Behav-200 [Sophos]SpywareQuake [Prevx1]Trojan:Win32/Vundo.gen!D [Microsoft]TROJ_VUNDO.DAG [TrendMicro]Trojan.Vundo.B [Symantec]Virtumonde [Sunbelt]
More aliases (109)
More aliases (109)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:sop_de32.dll, dop_uk16.dll, san_de16.dll, simku_de16.dll, san_de32.dll, san_uk16.dll, dan_de16.dll, san_de64.dll, sop_de16.dll, sop_de16.dll, dan_de32.dll, simku_us16.dll, san_de64.dll
File name: sop_de32.dll, dop_uk16.dll, san_de16.dll, simku_de16.dll, san_de32.dll, san_uk16.dll, dan_de16.dll, san_de64.dll, sop_de16.dll, sop_de16.dll, dan_de32.dll, simku_us16.dll, san_de64.dllSize: 221.18 KB (221184 bytes)
MD5: 62048a0d437f41a0a14af7ae94f2c05d
Detection count: 96
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
kodo2n.dll
File name: kodo2n.dllSize: 221.18 KB (221184 bytes)
MD5: 24679ff878daa732748a4e7ac507c0a0
Detection count: 95
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
xxywWmli.dll
File name: xxywWmli.dllSize: 38.91 KB (38912 bytes)
MD5: a17601e29298d315ee56d076f8fc0053
Detection count: 94
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
pado32n.dll paapi99n.dll nydo32r.dll, paapi2n.dll
File name: pado32n.dll paapi99n.dll nydo32r.dll, paapi2n.dllSize: 212.48 KB (212480 bytes)
MD5: a5eb9c309c73b2c5524c6b1e44598282
Detection count: 94
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
qnmargolwlp.dll
File name: qnmargolwlp.dllSize: 221.18 KB (221184 bytes)
MD5: d8d59a2f8426361f86386c357275a4d2
Detection count: 92
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
hlpr.dll
File name: hlpr.dllSize: 81.92 KB (81920 bytes)
MD5: 1189eb2897a06d0303f23537d9e21faa
Detection count: 91
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
kodo32x.dll
File name: kodo32x.dllSize: 211.96 KB (211968 bytes)
MD5: 6e20b78114a3a77dfa4bc3a1f78fa57c
Detection count: 85
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
ps16sys.dll
File name: ps16sys.dllSize: 211.96 KB (211968 bytes)
MD5: daf5eb73bda1296c9ff043d4218f336a
Detection count: 80
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
qnmargolxpg.dll
File name: qnmargolxpg.dllSize: 258.04 KB (258048 bytes)
MD5: b58fb10297d2515037b8a6317222f06a
Detection count: 76
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
mbl.exe
File name: mbl.exeSize: 860.45 KB (860454 bytes)
MD5: d618db87da191932d67b6fc2bc304f25
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
qnmargolqgp.dll
File name: qnmargolqgp.dllSize: 212.99 KB (212992 bytes)
MD5: 31e220d66b4da361990689e59647b8b3
Detection count: 70
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
qnmargolxpg.dll
File name: qnmargolxpg.dllSize: 274.43 KB (274432 bytes)
MD5: 0818ed19ffa65b4eca56dfb5cb5f732b
Detection count: 61
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
kol.dll
File name: kol.dllSize: 215.55 KB (215552 bytes)
MD5: c60ba70be57e5345901cd87bb343acc2
Detection count: 60
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
malwarebell.exe
File name: malwarebell.exeSize: 1.89 MB (1892864 bytes)
MD5: 0298d69b766a44428e72ecf6b071a2d1
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
cfgbkenud.dll
File name: cfgbkenud.dllSize: 122.88 KB (122880 bytes)
MD5: 31ff532b8363d531f75583466ef49dd3
Detection count: 52
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: January 26, 2020
tsokru.dll other_names
File name: tsokru.dll other_namesSize: 216.57 KB (216576 bytes)
MD5: 06b75918d2654ffa1dd414105a254fb6
Detection count: 46
Mime Type: unknown/dll other_names
Group: Malware file
Last Updated: December 11, 2009
wsorad.dll other_names
File name: wsorad.dll other_namesSize: 215.55 KB (215552 bytes)
MD5: 2c1a871876e4dec8a3b7d35bc1e1e668
Detection count: 45
Mime Type: unknown/dll other_names
Group: Malware file
Last Updated: December 11, 2009
mb[1].exe
File name: mb[1].exeSize: 854.22 KB (854227 bytes)
MD5: 95ce5863e067ee436fe0ad4b3eb1ea19
Detection count: 40
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
sfoeyqen.dll
File name: sfoeyqen.dllSize: 53.31 KB (53312 bytes)
MD5: b11859d70f031e0061ef2578a61a851f
Detection count: 34
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
koapi32r.dll, nydo99x.dll
File name: koapi32r.dll, nydo99x.dllSize: 211.96 KB (211968 bytes)
MD5: 253b0d148e210469b7bc6e8e1de35eb2
Detection count: 22
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
winsurf.dll
File name: winsurf.dllSize: 215.04 KB (215040 bytes)
MD5: a5756baead08c0f07a81727697ab270c
Detection count: 21
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
qnmargolxpg.dll
File name: qnmargolxpg.dllSize: 266.24 KB (266240 bytes)
MD5: 7745265c740e1ead1c341bdfc8dee6b7
Detection count: 12
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
sysweb32a.dll, netapi32c.dll, netowl16c.dll
File name: sysweb32a.dll, netapi32c.dll, netowl16c.dllSize: 212.48 KB (212480 bytes)
MD5: 71f95dd938b493b8479d4ac530836596
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
More files
Related Posts
- Resourceisabellareligious.com
- Itweepinbelltor.com
- Bella RAT
- Belle Search
- BellevueCollegeEncryptor Ransomware
Please tell me how to delete my infection.I have tried with no success.