Trojan.Win32.Powp.jmf
Posted: February 28, 2011
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 518 |
| First Seen: | November 30, 2010 |
|---|---|
| Last Seen: | August 15, 2020 |
| OS(es) Affected: | Windows |
As per its name, Trojan.Win32.Powp.jmf is a Trojan infection that drops other malware onto your computer. Trojan.Win32.Powp.jmf will usually infect your computer through dishonest means and may often be bundled with other kinds of malware automatically. Other dangers offered by Trojan.Win32.Powp.jmf include network-based propagation, a disabled firewall or other security, browser hijacking, unwanted additions to your registry and potential access by remote attackers. This high security risk shouldn't be underestimated; deleting Trojan.Win32.Powp.jmf too slowly can cause permanent damage to your system or result in confidential information being leaked to criminals.
Vulnerabilities that Can Cause Trojan.Win32.Powp.jmf to Creep onto Your Computer
One significant danger with Trojan.Win32.Powp.jmf infections are their high probability of using local networks to spread. Not interacting with network-shared files that haven't been scanned and verified to be safe will reduce chances of infection. Beyond that, generally avoiding malicious websites and .exe files from risky sources will usually be adequate to defend your computer against Trojan.Win32.Powp.jmf. Poor security settings, particularly on your browser, may let Trojan.Win32.Powp.jmf infect you through website code, and a lack of updated security software will allow the Trojan generally easier access.
Trojan.Win32.Powp.jmf may be dropped by other forms of malware, particularly by other Trojans. Given that Trojan.Win32.Powp.jmf itself can drop malware, this scenario can easily escalate out of control and make full deletion of all threats very difficult.
Dulling Trojan.Win32.Powp.jmf's Claws
Recognizing the Trojan.Win32.Powp.jmf threat first requires that you be aware of its background-running existence; Trojans like this one will always create startup registry entries to avoid detection while running automatically. This can usually be noticed in Task Manager, provided Trojan.Win32.Powp.jmf hasn't disabled the program. Trojans often name themselves after already-existing benevolent processes to hide; you should be suspicious of any 'extra' processes you see.
Trojan.Win32.Powp.jmf can cause the following problems, but may have greater functionality as well:
- Trojan.Win32.Powp.jmf will disable your security to enable its other functions. Your firewall is particularly likely to fall victim to Trojan.Win32.Powp.jmf's attacks, as are any security software you have running.
- The unauthorized download and installation is almost inevitable with Trojan.Win32.Powp.jmf, as is the case with most Trojans. Other malware can be detected by strange processes and files, as well as by unusual system behavior such as frightening desktop alerts or malicious links embedded in browser content.
- Strange browser behavior can also occur, as Trojan.Win32.Powp.jmf has been reported to hijack browsers. This may be used along with faked warnings or advertising to keep the user off of security sites, or simply to push the user into a dangerous site.
- Trojan.Win32.Powp.jmf may also enable remote attackers to influence the infected computer. Actions taken by remote attackers can be as mild and subtle as spying on private information or as blatant as a wholesale grab for interface control.
No matter what the actions taken by any one Trojan.Win32.Powp.jmf infection, its presence is always a heavy danger to any computer. Deleting Trojan.Win32.Powp.jmf should be a priority for anyone dealing with this threat and is best handled through anti-malware programs designed to take Trojans out mercilessly.
Aliases
Win-Trojan/Seint.78340 [AhnLab-V3]Gen:Trojan.Heur.FU.eqX@aSINVPg [BitDefender]Generic.dx!unp [McAfee]Win32.Trojan.Powp.gen.4.grp7 [CAT-QuickHeal]Agent_r.MH [AVG]Trojan.Win32.Inject [Ikarus]Trojan/Win32.Inject.gen [Antiy-AVL]Trojan.Win32.Inject!IK [a-squared]W32/P2Pworm.MW [Panda]Dropper.Generic2.AOZL [AVG]Net-Worm.Win32.Kolab [Ikarus]Worm/Win32.Kolab [AhnLab-V3]Worm/Palevo.atnw [AntiVir]Trojan.Inject.9454 [DrWeb]Worm.P2P.Palevo.GF [BitDefender]
More aliases (520)
More aliases (520)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%ALLUSERSPROFILE%\DW62rN82.exe
File name: DW62rN82.exeSize: 78.33 KB (78338 bytes)
MD5: 3bd158b5d9ec8b915fb8d3836c2e7325
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: December 6, 2010
%ALLUSERSPROFILE%\Application Data\GPFSGkO8.exe
File name: GPFSGkO8.exeSize: 78.34 KB (78340 bytes)
MD5: fc9ec18c668edc2792358c81449219f0
Detection count: 92
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: January 19, 2012
%ALLUSERSPROFILE%\0l8Hj224.exe
File name: 0l8Hj224.exeSize: 77.82 KB (77826 bytes)
MD5: 6cd6f5f88fcbc419ce1d11d476fabe76
Detection count: 71
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: December 6, 2010
%SystemDrive%\RESTORE\c-1-3-64-8794238531-8742492-9897532\DriveFix.exe
File name: DriveFix.exeSize: 149.55 KB (149554 bytes)
MD5: afbc2ef83bf1ca013ad55ac58c2f51b5
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\RESTORE\c-1-3-64-8794238531-8742492-9897532
Group: Malware file
Last Updated: December 6, 2011
%PROGRAMFILES%\Microsoft Office\Office12\GrooveMonitor.exe
File name: GrooveMonitor.exeSize: 39.94 KB (39940 bytes)
MD5: 0557d70b964082a70698b6bbb7e32a73
Detection count: 56
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Microsoft Office\Office12
Group: Malware file
Last Updated: January 9, 2011
%PROGRAMFILES%\Epson Software\Event Manager\EEventManager.exe
File name: EEventManager.exeSize: 39.94 KB (39940 bytes)
MD5: b43fdebcb6527336b3bb3e0bc294fcbb
Detection count: 55
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Epson Software\Event Manager
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\Fonts\NJYPx0T.com
File name: NJYPx0T.comSize: 100.35 KB (100352 bytes)
MD5: dfe06a6deda2be453d24a0aa928fe1e3
Detection count: 54
File type: Command, executable file
Mime Type: unknown/com
Path: %WINDIR%\Fonts
Group: Malware file
Last Updated: November 30, 2010
%PROGRAMFILES%\HP\HP Software Update\HPwuSchd2.exe
File name: HPwuSchd2.exeSize: 39.94 KB (39940 bytes)
MD5: 4707e3ffd4503fc0a097286b16d0f68c
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\HP\HP Software Update
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\SMINST\RECGUARD.EXE
File name: RECGUARD.EXESize: 39.94 KB (39940 bytes)
MD5: 82c357c371b87678beaf7d56df3b667f
Detection count: 51
File type: Executable File
Mime Type: unknown/EXE
Path: %WINDIR%\SMINST
Group: Malware file
Last Updated: January 9, 2011
C:\HP\KBD\KBD.EXE
File name: KBD.EXESize: 39.94 KB (39940 bytes)
MD5: 083d060742de75502b12322a86acd467
Detection count: 50
File type: Executable File
Mime Type: unknown/EXE
Path: C:\HP\KBD
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\vspc1000.exe
File name: vspc1000.exeSize: 40.96 KB (40964 bytes)
MD5: 46222c0d6441366247e1b9c2c40b5368
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 2, 2011
%ALLUSERSPROFILE%\5J54e2u5.exe
File name: 5J54e2u5.exeSize: 80.38 KB (80386 bytes)
MD5: 223192935f731bb41f40cd688b978ea2
Detection count: 36
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: December 14, 2010
%WINDIR%\Fonts\f7n0En.com
File name: f7n0En.comSize: 42.49 KB (42496 bytes)
MD5: a58c72164420470df5a8c77d306af8cd
Detection count: 35
File type: Command, executable file
Mime Type: unknown/com
Path: %WINDIR%\Fonts
Group: Malware file
Last Updated: December 14, 2010
%ALLUSERSPROFILE%\Application Data\4DN3VfG5.exe
File name: 4DN3VfG5.exeSize: 81.41 KB (81410 bytes)
MD5: 8abd5c09eda66f132357e39ce389f457
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: December 22, 2010
%PROGRAMFILES%\Java\jre6\bin\jusched.exe
File name: jusched.exeSize: 42.5 KB (42500 bytes)
MD5: c08242cfa962bb875b04d0df0a12c3c7
Detection count: 24
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Java\jre6\bin
Group: Malware file
Last Updated: January 9, 2011
%ALLUSERSPROFILE%\Datos de programa\75mF04Y8.exe
File name: 75mF04Y8.exeSize: 79.36 KB (79362 bytes)
MD5: 23d0a80cc9410942f9b832b74a84abd5
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Datos de programa
Group: Malware file
Last Updated: February 2, 2011
%ALLUSERSPROFILE%\Application Data\xAFT7tI3.exe
File name: xAFT7tI3.exeSize: 73.73 KB (73730 bytes)
MD5: c769ab0bff8ba90970a242c7371f1997
Detection count: 13
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: December 6, 2010
%WINDIR%\Fonts\5H5Vq1c1w.com
File name: 5H5Vq1c1w.comSize: 39.93 KB (39936 bytes)
MD5: 9e73bcaa31b33ac3f89f79cdf02f9815
Detection count: 12
File type: Command, executable file
Mime Type: unknown/com
Path: %WINDIR%\Fonts
Group: Malware file
Last Updated: January 2, 2011
%WINDIR%\system32\winxp.exe
File name: winxp.exeSize: 62.27 KB (62273 bytes)
MD5: 13029dd61979701fc365a0c53b0e9e16
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: February 2, 2011
%ALLUSERSPROFILE%\Application Data\R0reGggR.exe
File name: R0reGggR.exeSize: 78.33 KB (78338 bytes)
MD5: 1563eccbf0f2179524082af25384ef33
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: December 6, 2010
%WINDIR%\Fonts\l8MH7xr.com
File name: l8MH7xr.comSize: 40.96 KB (40960 bytes)
MD5: c4716d04a7a0a31dcadc37eae10616dc
Detection count: 9
File type: Command, executable file
Mime Type: unknown/com
Path: %WINDIR%\Fonts
Group: Malware file
Last Updated: December 21, 2010
%ALLUSERSPROFILE%\Application Data\6038ORnM.exe
File name: 6038ORnM.exeSize: 73.73 KB (73730 bytes)
MD5: b910e1fe739dbb9226637ae7276b66aa
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: December 6, 2010
c:\RESTORE\c-1-3-64-8794238531-8742492-9897532\DriveFix.exe
File name: DriveFix.exeSize: 149.55 KB (149554 bytes)
MD5: 9ea748fcbff4b3a6112f8675e96f3639
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: c:\RESTORE\c-1-3-64-8794238531-8742492-9897532
Group: Malware file
Last Updated: December 1, 2010
%ALLUSERSPROFILE%\Application Data\5CEsdv8M.exe
File name: 5CEsdv8M.exeSize: 82.43 KB (82434 bytes)
MD5: df6ed3d6cc85e8a5b2c15b6d1422d723
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data
Group: Malware file
Last Updated: December 21, 2010
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.