UDS:DangerousObject.Multi.Generic Files

%WINDIR%\system32\drivers\e5a557354c8da5d0.sys

File name: e5a557354c8da5d0.sys
Size: 30.91 KB (30912 bytes)
MD5: 9e93389a4f83b0426e7caf4a765de305
Detection count: 161,176
File type: System file
Mime Type: unknown/sys
Path: %WINDIR%\system32\drivers\e5a557354c8da5d0.sys
Group: Malware file
Last Updated: October 1, 2023

%SYSTEMDRIVE%\anti-malware.quarantine\updateprofile-0321.exe_{651B7DFD-E138-4366-BCBB-059035B49E3C}.quarantine

File name: updateprofile-0321.exe_{651B7DFD-E138-4366-BCBB-059035B49E3C}.quarantine
Size: 2.88 MB (2880000 bytes)
MD5: 3304788eac83e8f043be3f2655f08ef8
Detection count: 58,250
Mime Type: unknown/quarantine
Path: %SYSTEMDRIVE%\anti-malware.quarantine\updateprofile-0321.exe_{651B7DFD-E138-4366-BCBB-059035B49E3C}.quarantine
Group: Malware file
Last Updated: July 2, 2023

%WINDIR%\system32\drivers\ibinldr.sys

File name: ibinldr.sys
Size: 129.12 KB (129120 bytes)
MD5: 050206a0f276a96c4c228d1b74a807b2
Detection count: 46,997
File type: System file
Mime Type: unknown/sys
Path: %WINDIR%\system32\drivers\ibinldr.sys
Group: Malware file
Last Updated: December 26, 2022

c:\Users\<username>\appdata\roaming\editor\editor.exe

File name: editor.exe
Size: 34.03 MB (34035200 bytes)
MD5: b25f2368a855118aa6ed83cabe5a3b36
Detection count: 39,584
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\editor
Group: Malware file
Last Updated: October 17, 2023

c:\windows\system32\drivers\6cdcb90ff4d465f3.sys

File name: 6cdcb90ff4d465f3.sys
Size: 27.32 KB (27328 bytes)
MD5: 0615ba0ec73e856a90ff4a1fc118ee33
Detection count: 37,101
File type: System file
Mime Type: unknown/sys
Path: c:\windows\system32\drivers\6cdcb90ff4d465f3.sys
Group: Malware file
Last Updated: April 18, 2023

%WINDIR%\logs\netsetup\vss\wcservices.exe

File name: wcservices.exe
Size: 858.11 KB (858112 bytes)
MD5: da84aaf0c7adddf6601043e2379c441a
Detection count: 35,014
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\logs\netsetup\vss\wcservices.exe
Group: Malware file
Last Updated: October 16, 2023

C:\Users\<username>\AppData\Local\Temp\is-62MSP.tmp\Firehand.tmp

File name: Firehand.tmp
Size: 721.4 KB (721408 bytes)
MD5: 3fe51cd8faef761e0e531f27b40a31ba
Detection count: 33,085
File type: Temporary File
Mime Type: unknown/tmp
Path: C:\Users\<username>\AppData\Local\Temp\is-62MSP.tmp\Firehand.tmp
Group: Malware file
Last Updated: July 14, 2023

%SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\{BDF0836A-22FD-1DB2-8BA1-7153FCF4EECA}\mi.exe

File name: mi.exe
Size: 2.3 MB (2302976 bytes)
MD5: 538ccc336175cecd177c7dd4ea205710
Detection count: 28,321
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\{BDF0836A-22FD-1DB2-8BA1-7153FCF4EECA}\mi.exe
Group: Malware file
Last Updated: October 6, 2023

\??\C:\Program Files (x86)\Powzip\smshellext.dll

File name: smshellext.dll
Size: 254.46 KB (254464 bytes)
MD5: e74c188e8abe0147d6335d764a514e1a
Detection count: 27,227
File type: Dynamic link library
Mime Type: unknown/dll
Path: \??\C:\Program Files (x86)\Powzip\smshellext.dll
Group: Malware file
Last Updated: July 29, 2023

%SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\is-EQ0HS.tmp\Gazzz.exe

File name: Gazzz.exe
Size: 1.06 MB (1062566 bytes)
MD5: 356e16ced483ce39f67f8d0a1a7e26b5
Detection count: 25,660
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\is-EQ0HS.tmp\Gazzz.exe
Group: Malware file
Last Updated: June 28, 2021

%SYSTEMDRIVE%\Users\<username>\Downloads\AutoClicker.exe

File name: AutoClicker.exe
Size: 783.17 KB (783175 bytes)
MD5: 9cf7d8c91f0c95bb3a2f9f5a48da2ac5
Detection count: 25,128
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\Downloads\AutoClicker.exe
Group: Malware file
Last Updated: October 14, 2023

%SYSTEMDRIVE%\Users\<username>\AppData\Local\App\csrss.exe

File name: csrss.exe
Size: 696.32 KB (696320 bytes)
MD5: bdfa1a7287826d22af8c2c88eeb68e67
Detection count: 23,831
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\App\csrss.exe
Group: Malware file
Last Updated: September 12, 2023

%SYSTEMDRIVE%\Users\<username>\downloads\jdownloadersetup.exe

File name: jdownloadersetup.exe
Size: 43.73 MB (43733480 bytes)
MD5: 265104dc3e556b85642e117ff30640bd
Detection count: 21,128
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\downloads
Group: Malware file
Last Updated: July 31, 2023

C:\Users\<username>\AppData\Local\Temp\is-17VNQ.tmp\remetou.tmp

File name: remetou.tmp
Size: 797.69 KB (797696 bytes)
MD5: 4166c4aad119b15807128c69c76c5728
Detection count: 18,402
File type: Temporary File
Mime Type: unknown/tmp
Path: C:\Users\<username>\AppData\Local\Temp\is-17VNQ.tmp\remetou.tmp
Group: Malware file
Last Updated: May 24, 2023

C:\Windows\rss\csrss.exe

File name: csrss.exe
Size: 5.16 MB (5168640 bytes)
MD5: 2cc0c58e690e9028a76c3c38687ca5ca
Detection count: 16,177
File type: Executable File
Mime Type: unknown/exe
Path: C:\Windows\rss\csrss.exe
Group: Malware file
Last Updated: August 21, 2023

c:\program files (x86)\search awesome\setup.exe

File name: setup.exe
Size: 378.36 KB (378368 bytes)
MD5: 89cfca6817a6d73128bfd730791e1c55
Detection count: 16,008
File type: Executable File
Mime Type: unknown/exe
Path: c:\program files (x86)\search awesome\setup.exe
Group: Malware file
Last Updated: October 7, 2023

%WINDIR%\29edffa01a1a.sys

File name: 29edffa01a1a.sys
Size: 621.92 KB (621928 bytes)
MD5: f1893c7ce884c10f47d763cc08aa888a
Detection count: 15,273
File type: System file
Mime Type: unknown/sys
Path: %WINDIR%\29edffa01a1a.sys
Group: Malware file
Last Updated: September 12, 2023

%SYSTEMDRIVE%\Users\<username>\appdata\roaming\t4tppiw2ik3\svkg5onbbc1.exe

File name: svkg5onbbc1.exe
Size: 999.54 KB (999542 bytes)
MD5: 22cf3854b7a99b96e64781f7e3840cf4
Detection count: 12,931
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\t4tppiw2ik3\svkg5onbbc1.exe
Group: Malware file
Last Updated: January 25, 2022

C:\Users\<username>\AppData\Local\Temp\is-06K30.tmp\bvfruylxic4.tmp

File name: bvfruylxic4.tmp
Size: 736.76 KB (736768 bytes)
MD5: e9e0fb7f32c78ac6cd76156c79b74056
Detection count: 12,242
File type: Temporary File
Mime Type: unknown/tmp
Path: C:\Users\<username>\AppData\Local\Temp\is-06K30.tmp\bvfruylxic4.tmp
Group: Malware file
Last Updated: August 12, 2022

%ALLUSERSPROFILE%\mplockservice\mplockservice.exe

File name: mplockservice.exe
Size: 167.42 KB (167424 bytes)
MD5: 3d29b1f2c4f5162d63057fd432124f84
Detection count: 12,003
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\mplockservice\mplockservice.exe
Group: Malware file
Last Updated: August 11, 2023

%SYSTEMDRIVE%\Program Files\Jetmedia\NativeDesktopMediaService\checker.exe

File name: checker.exe
Size: 92.16 KB (92160 bytes)
MD5: d16f05ae56e9d664a849d266e7657b97
Detection count: 11,973
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Program Files\Jetmedia\NativeDesktopMediaService\checker.exe
Group: Malware file
Last Updated: September 7, 2023

%SYSTEMDRIVE%\Users\<username>\AppData\Local\NtvHost\native.exe

File name: native.exe
Size: 1.47 MB (1478144 bytes)
MD5: ae0cff60057abe6eb947512f3fc08426
Detection count: 11,959
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\NtvHost\native.exe
Group: Malware file
Last Updated: July 13, 2023

%SYSTEMDRIVE%\Users\<username>\appdata\roaming\bvydqsnkqxqi\toxlwiiorhbmwof.msi

File name: toxlwiiorhbmwof.msi
Size: 245.76 KB (245760 bytes)
MD5: 47d044343c5a8b02ecadfab70596dfd9
Detection count: 11,226
File type: Windows Installer Package
Mime Type: unknown/msi
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\bvydqsnkqxqi\toxlwiiorhbmwof.msi
Group: Malware file
Last Updated: October 2, 2023

c:\Users\<username>\appdata\local\temp\is-v67rq.tmp\fabrekits.exe

File name: fabrekits.exe
Size: 9.25 MB (9251631 bytes)
MD5: 358b151e994343e78400ed931598aa8b
Detection count: 10,359
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\local\temp\is-v67rq.tmp
Group: Malware file
Last Updated: August 12, 2022

C:\Program Files (x86)\baidu\BindEx.exe

File name: BindEx.exe
Size: 28.67 KB (28672 bytes)
MD5: 7f67d6cf6dd6ac289fc2255ff02b0833
Detection count: 10,057
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\baidu\BindEx.exe
Group: Malware file
Last Updated: October 3, 2022

%SYSTEMDRIVE%\Users\<username>\AppData\Local\Mozilla\updates\4D589497A5E2C2E9\updates\0\updater.exe

File name: updater.exe
Size: 277.61 KB (277616 bytes)
MD5: 28026db53eef61ccf0101672c77ce134
Detection count: 8,940
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Mozilla\updates\4D589497A5E2C2E9\updates\0\updater.exe
Group: Malware file
Last Updated: September 26, 2023

%SYSTEMDRIVE%\Users\<username>\appdata\local\temp\is-dihq8.tmp\whensmoke.exe

File name: whensmoke.exe
Size: 2.79 MB (2791582 bytes)
MD5: ad2df91ded06c9391560092c451517db
Detection count: 8,860
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\local\temp\is-dihq8.tmp\whensmoke.exe
Group: Malware file
Last Updated: November 1, 2022

Startup.exe

File name: Startup.exe
Size: 148.48 KB (148480 bytes)
MD5: 4c494a48309e2f5c9edd1d706b276cc3
Detection count: 8,764
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: May 25, 2016

%WINDIR%\System32\REBUILDI.EXE

File name: REBUILDI.EXE
Size: 172.03 KB (172032 bytes)
MD5: 53ca29c1642edb3bfeba0cd86600de35
Detection count: 8,736
File type: Executable File
Mime Type: unknown/EXE
Path: %WINDIR%\System32\REBUILDI.EXE
Group: Malware file
Last Updated: June 5, 2022

%WINDIR%\byxmqxhhsunvbbur.byx

File name: byxmqxhhsunvbbur.byx
Size: 1.28 MB (1288704 bytes)
MD5: 588e8e0332a8e87f75f02fb011b51100
Detection count: 8,670
Mime Type: unknown/byx
Path: %WINDIR%\byxmqxhhsunvbbur.byx
Group: Malware file
Last Updated: July 13, 2023

C:\Windows\Temp\18218\testLive.exe

File name: testLive.exe
Size: 1.85 MB (1852928 bytes)
MD5: 32d7f531cc8391dbddece8afc40e8267
Detection count: 8,488
File type: Executable File
Mime Type: unknown/exe
Path: C:\Windows\Temp\18218\testLive.exe
Group: Malware file
Last Updated: October 11, 2022

C:\Windows\taskhost.exe

File name: taskhost.exe
Size: 299 KB (299008 bytes)
MD5: dd77e662b4fda317f38f4968990be928
Detection count: 8,481
File type: Executable File
Mime Type: unknown/exe
Path: C:\Windows\taskhost.exe
Group: Malware file
Last Updated: February 4, 2023

%WINDIR%\win.vbs

File name: win.vbs
Size: 547B (547 bytes)
MD5: 5dad80f2f3c97718d60277f9b0ccbabd
Detection count: 8,427
Mime Type: unknown/vbs
Path: %WINDIR%
Group: Malware file
Last Updated: February 11, 2022

%WINDIR%\System32\lnsecsl.exe

File name: lnsecsl.exe
Size: 1.24 MB (1241187 bytes)
MD5: a4bc11c18986b1b7087b3e2776ba1a30
Detection count: 8,125
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\System32
Group: Malware file
Last Updated: December 24, 2019

%ALLUSERSPROFILE%\VKMusicUpd\FunSpace.Update.exe

File name: FunSpace.Update.exe
Size: 183.91 KB (183912 bytes)
MD5: bbeafe511ce2d3ee806c218ad5d28344
Detection count: 8,012
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\VKMusicUpd
Group: Malware file
Last Updated: May 3, 2019

%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\hidcon.exe

File name: hidcon.exe
Size: 2.04 KB (2048 bytes)
MD5: b2dadab18c318443301d0087cd7200ba
Detection count: 7,919
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\hidcon.exe
Group: Malware file
Last Updated: October 15, 2023

C:\Users\<username>\AppData\Roaming\UPUpdata\SERVICE.EXE.mal

File name: SERVICE.EXE.mal
Size: 1.74 MB (1747456 bytes)
MD5: 8cd92290a9162d239347f8667e885a13
Detection count: 7,663
Mime Type: unknown/mal
Path: C:\Users\<username>\AppData\Roaming\UPUpdata\SERVICE.EXE.mal
Group: Malware file
Last Updated: October 11, 2022

C:\Program Files (x86)\baidu\BindEx.exe

File name: BindEx.exe
Size: 16.38 KB (16384 bytes)
MD5: c62036a364511004b705c34516261434
Detection count: 7,635
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\baidu\BindEx.exe
Group: Malware file
Last Updated: November 21, 2021

%WINDIR%\SysWOW64\lnsecsl.exe

File name: lnsecsl.exe
Size: 1.22 MB (1225588 bytes)
MD5: 652ab0040f3d4ac118e2842f700363c3
Detection count: 7,427
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: February 18, 2016

%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\atgvbgwc\ddwvwcvf.exe

File name: ddwvwcvf.exe
Size: 550.4 KB (550400 bytes)
MD5: f9c8634422320fa8750d69fde794e2d5
Detection count: 7,256
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\atgvbgwc\ddwvwcvf.exe
Group: Malware file
Last Updated: May 25, 2022

C:\Users\<username>\AppData\Roaming\Microsoft\Windows\tvtwfhjd\vahbefeg.exe

File name: vahbefeg.exe
Size: 11.06 MB (11067904 bytes)
MD5: 88b5df8dcd9895f14acd60cf8e7895b3
Detection count: 7,223
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\tvtwfhjd
Group: Malware file
Last Updated: February 14, 2022

C:\ProgramData\Updater\Updater.exe

File name: Updater.exe
Size: 489.82 KB (489824 bytes)
MD5: 8df8669bd6133f7c87bb6ba18c87a7be
Detection count: 6,853
File type: Executable File
Mime Type: unknown/exe
Path: C:\ProgramData\Updater\Updater.exe
Group: Malware file
Last Updated: August 17, 2023

%PROGRAMFILES%\baidu\BindEx.exe

File name: BindEx.exe
Size: 7.68 KB (7680 bytes)
MD5: def1cfd925bae0d9e6802e0fcdbf10aa
Detection count: 6,785
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\baidu
Group: Malware file
Last Updated: December 6, 2019

%PROGRAMFILES(x86)%\MalwareProtection360\malwareprotection360.exe

File name: malwareprotection360.exe
Size: 2.35 MB (2356736 bytes)
MD5: 6becbf26011ddfdcb43ccb943996fdb5
Detection count: 6,752
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\MalwareProtection360
Group: Malware file
Last Updated: July 8, 2018

C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe

File name: Time-svc.exe
Size: 10.75 KB (10752 bytes)
MD5: e19b1d70087e8af86fc7eac8eaa77fb1
Detection count: 6,609
File type: Executable File
Mime Type: unknown/exe
Path: C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe
Group: Malware file
Last Updated: December 26, 2022

C:\Users\<username>\AppData\Roaming\unwrapped.exe

File name: unwrapped.exe
Size: 2.24 MB (2244608 bytes)
MD5: 4df705af5848e8521357da79ab933f32
Detection count: 6,595
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\unwrapped.exe
Group: Malware file
Last Updated: March 29, 2021

C:\Users\<username>\AppData\Local\Temp\awhF16E.tmp

File name: awhF16E.tmp
Size: 3.71 MB (3714048 bytes)
MD5: 589ddf952a93690e9cedeed89517ae13
Detection count: 6,286
File type: Temporary File
Mime Type: unknown/tmp
Path: C:\Users\<username>\AppData\Local\Temp\awhF16E.tmp
Group: Malware file
Last Updated: May 10, 2023

%ALLUSERSPROFILE%\Online\updater.exe

File name: updater.exe
Size: 404.48 KB (404480 bytes)
MD5: f85851d11dc5f4b2e55c8b240016cf7e
Detection count: 6,096
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Online
Group: Malware file
Last Updated: January 26, 2019

C:\WINDOWS\systwin.exe

File name: systwin.exe
Size: 305.89 KB (305893 bytes)
MD5: 80d72493503f92c80f8a70a8955f92d1
Detection count: 6,052
File type: Executable File
Mime Type: unknown/exe
Path: C:\WINDOWS\systwin.exe
Group: Malware file
Last Updated: December 7, 2021

%SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\is-F2SHV.tmp\nahbetnjib.exe

File name: nahbetnjib.exe
Size: 1.17 MB (1179574 bytes)
MD5: f718a66508f6f8ebc01975e819e87d0b
Detection count: 6,029
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\is-F2SHV.tmp\nahbetnjib.exe
Group: Malware file
Last Updated: July 7, 2022

%APPDATA%\Adobe\color.vbe

File name: color.vbe
Size: 15.36 KB (15361 bytes)
MD5: eb9e43bdb9b69ca1b710edc39fbac2e5
Detection count: 6,024
Mime Type: unknown/vbe
Path: %APPDATA%\Adobe
Group: Malware file
Last Updated: October 5, 2023

C:\ProgramData\038PTTT7PXLYGH5K.exe

File name: 038PTTT7PXLYGH5K.exe
Size: 4.56 MB (4565337 bytes)
MD5: e16bb8b50b494f53d442f325561efad2
Detection count: 5,804
File type: Executable File
Mime Type: unknown/exe
Path: C:\ProgramData\038PTTT7PXLYGH5K.exe
Group: Malware file
Last Updated: March 25, 2023

C:\Users\<username>\AppData\Local\Temp\tmp9961\SUpdater.exe

File name: SUpdater.exe
Size: 12.8 KB (12800 bytes)
MD5: 00eaff78076dc5fe8c60ef4a15f35ba7
Detection count: 5,719
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Local\Temp\tmp9961\SUpdater.exe
Group: Malware file
Last Updated: October 11, 2022

%PROGRAMFILES(x86)%\Fujitsu\DeskUpdate\Microsoft.Win32.TaskScheduler.dll

File name: Microsoft.Win32.TaskScheduler.dll
Size: 327.16 KB (327168 bytes)
MD5: 071bb8302bffef38a38a267d434f71ab
Detection count: 5,708
File type: Dynamic link library
Mime Type: unknown/dll
Path: %PROGRAMFILES(x86)%\Fujitsu\DeskUpdate\Microsoft.Win32.TaskScheduler.dll
Group: Malware file
Last Updated: October 14, 2023

C:\Users\<username>\AppData\Roaming\SysHM\syshm.exe

File name: syshm.exe
Size: 371.71 KB (371712 bytes)
MD5: 48c6552ea112d9e3547355ee2d1c85f8
Detection count: 5,635
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\SysHM\syshm.exe
Group: Malware file
Last Updated: March 6, 2023

C:\Windows\Adobe Flash Player\Adobe.exe

File name: Adobe.exe
Size: 147.45 KB (147456 bytes)
MD5: 581d4ca3b2036d5ecf413bd8dd7364ac
Detection count: 5,146
File type: Executable File
Mime Type: unknown/exe
Path: C:\Windows\Adobe Flash Player\Adobe.exe
Group: Malware file
Last Updated: April 4, 2023

%APPDATA%\DownloadManager\Updater.exe

File name: Updater.exe
Size: 99.84 KB (99840 bytes)
MD5: 9a7376d66317ab59011fc08a9aa0424a
Detection count: 5,122
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\DownloadManager
Group: Malware file
Last Updated: March 24, 2016

%ALLUSERSPROFILE%\Online\updater.exe

File name: updater.exe
Size: 403.45 KB (403456 bytes)
MD5: 66019009f22f3439bbb04c12171f9fc8
Detection count: 4,963
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Online
Group: Malware file
Last Updated: March 22, 2016

%WINDIR%\qizturwosqpupqcy.qiztu

File name: qizturwosqpupqcy.qiztu
Size: 1.08 MB (1080832 bytes)
MD5: b6a122f9470bbfacd2051eb051ec5ab1
Detection count: 4,956
Mime Type: unknown/qiztu
Path: %WINDIR%\qizturwosqpupqcy.qiztu
Group: Malware file
Last Updated: April 16, 2021

%WINDIR%\Temp\_avast_\unp246979727.tmp

File name: unp246979727.tmp
Size: 997.37 KB (997376 bytes)
MD5: 5c3837698d18d180c162adf8f6963dc3
Detection count: 4,865
File type: Temporary File
Mime Type: unknown/tmp
Path: %WINDIR%\Temp\_avast_\unp246979727.tmp
Group: Malware file
Last Updated: August 27, 2022

C:\Users\<username>\AppData\Roaming\Microsoft\Windows\fgshawfw\rgiwhuef.exe

File name: rgiwhuef.exe
Size: 11.16 MB (11166208 bytes)
MD5: 257fa806fed25e8ef9321dfa818724b0
Detection count: 4,832
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\fgshawfw
Group: Malware file
Last Updated: April 8, 2021

C:\Documents and Settings\<username>\Application Data\kujytuo\kujytuo.exe

File name: kujytuo.exe
Size: 391.52 KB (391520 bytes)
MD5: 7b7761d6b38cea5f0c19748ab63b1b39
Detection count: 4,815
File type: Executable File
Mime Type: unknown/exe
Path: C:\Documents and Settings\<username>\Application Data\kujytuo\kujytuo.exe
Group: Malware file
Last Updated: April 23, 2022

C:\Program Files\App Client\AppHelper.exe

File name: AppHelper.exe
Size: 893.95 KB (893952 bytes)
MD5: 5d2da623a9ec92bdaac709706fb4b06b
Detection count: 4,806
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files\App Client\AppHelper.exe
Group: Malware file
Last Updated: November 23, 2022

C:\Program Files (x86)\baidu\BindEx.exe

File name: BindEx.exe
Size: 24.57 KB (24576 bytes)
MD5: 941d8c1bc6b048b49707e8fe232ba164
Detection count: 4,792
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\baidu\BindEx.exe
Group: Malware file
Last Updated: December 3, 2021

%WINDIR%\System32\Printing_Admin_Scripts\en-US\pubpr.vbs

File name: pubpr.vbs
Size: 543B (543 bytes)
MD5: ba7f1aa65bf727433e9ce97ff40cee21
Detection count: 4,752
Mime Type: unknown/vbs
Path: %WINDIR%\System32\Printing_Admin_Scripts\en-US
Group: Malware file
Last Updated: January 15, 2020

%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\updater.exe

File name: updater.exe
Size: 1.87 MB (1878016 bytes)
MD5: f572b9dc24e864508643b10688a48fde
Detection count: 4,743
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: March 24, 2016

%WINDIR%\SysWOW64\lnsecsl.exe

File name: lnsecsl.exe
Size: 1.24 MB (1241155 bytes)
MD5: 689d19a212578177dc530437d603c07a
Detection count: 4,722
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: March 24, 2021

%LOCALAPPDATA%\GetBooks\GetBooks.exe

File name: GetBooks.exe
Size: 509.44 KB (509440 bytes)
MD5: 0e58d2edc0d9a964333cfb25a198ef88
Detection count: 4,705
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\GetBooks
Group: Malware file
Last Updated: April 29, 2020

C:\Users\<username>\AppData\Roaming\Microsoft\Windows\asucrjgv\stihheje.exe

File name: stihheje.exe
Size: 11.08 MB (11088896 bytes)
MD5: e2f7836971e8ab144e57b73ef964937d
Detection count: 4,635
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\asucrjgv
Group: Malware file
Last Updated: September 3, 2023

%SYSTEMDRIVE%\Users\<username>\appdata\local\074b75d8-9c63-4408-8bb5-dfe9c1900730\4158809208.exe

File name: 4158809208.exe
Size: 414.2 KB (414208 bytes)
MD5: b620552de1d539aaa4534ce709d96dc0
Detection count: 4,635
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\local\074b75d8-9c63-4408-8bb5-dfe9c1900730\4158809208.exe
Group: Malware file
Last Updated: November 22, 2021

C:\Program Files (x86)\baidu\BindEx.exe

File name: BindEx.exe
Size: 7.16 KB (7168 bytes)
MD5: b42a6248b5d1839ec5e6487c4143869b
Detection count: 4,623
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\baidu\BindEx.exe
Group: Malware file
Last Updated: January 22, 2022

C:\Users\<username>\AppData\Local\Microsoft\Internet Explorer\Extensions\APIHelper.dll

File name: APIHelper.dll
Size: 242.68 KB (242688 bytes)
MD5: da11affd6659dd5eba6d9875ac36ea63
Detection count: 4,527
File type: Dynamic link library
Mime Type: unknown/dll
Path: C:\Users\<username>\AppData\Local\Microsoft\Internet Explorer\Extensions\APIHelper.dll
Group: Malware file
Last Updated: March 14, 2023

C:\Users\<username>\AppData\Roaming\GHL0BGZLZTLIUVLZL3ISNPRC.exe

File name: GHL0BGZLZTLIUVLZL3ISNPRC.exe
Size: 569.54 KB (569540 bytes)
MD5: b0315c239bc7ca1b8058539fc6c4e367
Detection count: 4,436
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\GHL0BGZLZTLIUVLZL3ISNPRC.exe
Group: Malware file
Last Updated: July 22, 2023

%WINDIR%\qenhgziraymshbio.qenh

File name: qenhgziraymshbio.qenh
Size: 1.35 MB (1351680 bytes)
MD5: d1941451b0c94fc1180af3e9e3037b1f
Detection count: 4,391
Mime Type: unknown/qenh
Path: %WINDIR%\qenhgziraymshbio.qenh
Group: Malware file
Last Updated: July 16, 2022

%WINDIR%\oyzcaprzbddoyybh.otz

File name: oyzcaprzbddoyybh.otz
Size: 1.5 MB (1501696 bytes)
MD5: f70d5e73edee1ab32dea3830709debb4
Detection count: 4,354
Mime Type: unknown/otz
Path: %WINDIR%\oyzcaprzbddoyybh.otz
Group: Malware file
Last Updated: August 25, 2020