TrojanDropper:Win32/Injector.I
Posted: November 9, 2010
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 2,462 |
| First Seen: | November 30, 2010 |
|---|---|
| OS(es) Affected: | Windows |
TrojanDropper:Win32/Injector.I (or Mal/Rimecud-E) is a malicious backdoor Trojan horse that runs in the background and allows remote access to the compromised system. Mal/Rimecud-E attempts to propagate by exploiting local network shares. TrojanDropper:Win32/Injector.I will also attempt to join a predefined IRC server to channel stolen data or participate in distributed denial-of-service (DDoS) attacks. The DDoS attacks will attempt to make the computer unavailable to its intended users. It is recommended that Mal/Rimecud-E be removed with a reliable anti-spyware application.
TrojanDropper:Win32/Injector.I
Aliases
Worm/Generic.BSCB [AVG]Win32/Palevo.Worm.81920 [AhnLab-V3]Win32/Rimecud.BPZ [eTrust-Vet]Heuristic.BehavesLike.Win32.Suspicious.D [McAfee-GW-Edition]Worm/Palevo.EV [AntiVir]Trojan.DownLoader1.18748 [DrWeb]W32/Palevo-AF [Sophos]Trojan.Flooder.YAX [BitDefender]P2P-Worm.Win32.Palevo.auua [Kaspersky]Worm.Palevo-14371 [ClamAV]Worm/Generic.BTAO [AVG]Win-Trojan/Malware.81920.BT [AhnLab-V3]Win32/Rimecud.BEW [eTrust-Vet]Heuristic.BehavesLike.Win32.AdSpyware.D [McAfee-GW-Edition]Worm/Autorun.EH [AntiVir]
More aliases (583)
More aliases (583)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe
File name: vsbntlo.exeSize: 24.57 KB (24576 bytes)
MD5: 22a907d37ca5fbb53a1bc02cc68f5c43
Detection count: 344
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811
Group: Malware file
Last Updated: November 30, 2010
C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe
File name: vsbntlo.exeSize: 24.57 KB (24576 bytes)
MD5: bfec4095340a4e986e0f41103a60dbdf
Detection count: 227
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811
Group: Malware file
Last Updated: January 19, 2011
C:\RECYCLER\S-1-5-21-6020979196-2415569501-356269067-9385\syscr.exe
File name: syscr.exeSize: 81.92 KB (81920 bytes)
MD5: 3de40bad3d1409376ad77077159707bb
Detection count: 169
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-6020979196-2415569501-356269067-9385
Group: Malware file
Last Updated: December 21, 2010
%APPDATA%\ltzqai.exe
File name: ltzqai.exeSize: 81.92 KB (81920 bytes)
MD5: 067ba458369480985544b0b4833878c8
Detection count: 164
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 21, 2010
C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe
File name: vsbntlo.exeSize: 24.57 KB (24576 bytes)
MD5: d3ffb1b2aac2ed703cb29be9e6c9677a
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811
Group: Malware file
Last Updated: December 28, 2010
%TEMP%\3980517.exe
File name: 3980517.exeSize: 45.05 KB (45056 bytes)
MD5: 324a506a5b2398d36614a6bc33eaca7a
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: December 28, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1456\budau44.exe
File name: budau44.exeSize: 24.57 KB (24576 bytes)
MD5: 9db0f5f3b0d04003583e90ecd2e579ee
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1456
Group: Malware file
Last Updated: December 1, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\psyu44.exe
File name: psyu44.exeSize: 24.57 KB (24576 bytes)
MD5: 7e58f32364b86216f78c43d6a46af454
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: December 1, 2010
C:\inetserver.exe
File name: inetserver.exeSize: 172.03 KB (172032 bytes)
MD5: 579203e8a13440b76df46462a90a0747
Detection count: 59
File type: Executable File
Mime Type: unknown/exe
Path: C:\inetserver.exe
Group: Malware file
Last Updated: December 1, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\gpp3g.exe
File name: gpp3g.exeSize: 24.57 KB (24576 bytes)
MD5: cba39fb57dd59756fc80ea9d092a71de
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: December 1, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\psysnew.exe
File name: psysnew.exeSize: 24.57 KB (24576 bytes)
MD5: b9f7c19181b4d905a5a8c15cd56352b3
Detection count: 52
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: November 30, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\fresdg.exe
File name: fresdg.exeSize: 24.57 KB (24576 bytes)
MD5: dfbc52cf46641ceb4a01b23fc6e58dbd
Detection count: 44
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: January 18, 2011
%TEMP%\1446318.exe
File name: 1446318.exeSize: 45.05 KB (45056 bytes)
MD5: df7bf88f0582830f1081bd52b12b31ce
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: July 13, 2011
%APPDATA%\ltzqai.exe
File name: ltzqai.exeSize: 81.92 KB (81920 bytes)
MD5: 1a2be9d906e9ffa43e181544e535fb99
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: November 3, 2011
C:\RECYCLER\S-1-5-21-4845599937-5021917297-984156534-5129\syscr.exe
File name: syscr.exeSize: 81.92 KB (81920 bytes)
MD5: 488349f53a0bc9f1b91921e6bf9b0f38
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-4845599937-5021917297-984156534-5129
Group: Malware file
Last Updated: April 13, 2011
C:\RECYCLER\S-1-5-21-4834969665-1630205464-494378783-4548\syscr.exe
File name: syscr.exeSize: 81.92 KB (81920 bytes)
MD5: 64b5cdedee36113e73c3e5b94458acb6
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-4834969665-1630205464-494378783-4548
Group: Malware file
Last Updated: October 13, 2011
C:\inetserver.exe
File name: inetserver.exeSize: 184.32 KB (184320 bytes)
MD5: d33f79b2b4f5179e752489341bbb2db6
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: C:\inetserver.exe
Group: Malware file
Last Updated: June 2, 2011
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\psyjo32.exe
File name: psyjo32.exeSize: 24.57 KB (24576 bytes)
MD5: 4cd28447e370c8fbdadf88e78c5c8fb5
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: February 23, 2011
%TEMP%\439010.exe
File name: 439010.exeSize: 45.05 KB (45056 bytes)
MD5: 7728e5415061b3c182c555b50f2e578f
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: November 30, 2010
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.