Trojan Banker | ||
| ||
Bedreiginsniveau: 
2
2
Hoe te verwijderen Trojan Banker
Met infectie geassocieerde bestanden (Trojan Banker):
avgdos.exe
avgdos1[1].scr
avgdos1.scr
bpkcert.exe
gets.exe
ImgPaint
ImgPaint.exe
TaskList
tasklist32.exe
regserve.exe
ExcorP
ExcorP.exe
feliznatal2006.exe
Win XP.exe
WorkFile
WorkFile.exe
Servicos
DarkLinux[1].exe
Windowsupdate.exe
ib15.dll
Wapp.exe
Wapp
load[1].exe
ntos.exe
netfx20.exe
gbiesrv.exe
AcroIEHelpe.dll
Explorer.exe
iexplore.exe
WindowsUpdate.scr
ree2.exe
ree1.exe
nl.exe
msbcs.exe
mac.dll
fc.exe
csrss.exe
sunwin32.exe
systm321.exe
ssmss.exe
iexplorer2.exe
gbieh.dll
winnt4.exe
winnt3.exe
winnt6.exe
winnt5.exe
winsex.exe
svchosts.exe
dll.exe
sms.exe
smsni.exe
winnt2.exe
winmsne.exe
avgdos1[1].scr
avgdos1.scr
bpkcert.exe
gets.exe
ImgPaint
ImgPaint.exe
TaskList
tasklist32.exe
regserve.exe
ExcorP
ExcorP.exe
feliznatal2006.exe
Win XP.exe
WorkFile
WorkFile.exe
Servicos
DarkLinux[1].exe
Windowsupdate.exe
ib15.dll
Wapp.exe
Wapp
load[1].exe
ntos.exe
netfx20.exe
gbiesrv.exe
AcroIEHelpe.dll
Explorer.exe
iexplore.exe
WindowsUpdate.scr
ree2.exe
ree1.exe
nl.exe
msbcs.exe
mac.dll
fc.exe
csrss.exe
sunwin32.exe
systm321.exe
ssmss.exe
iexplorer2.exe
gbieh.dll
winnt4.exe
winnt3.exe
winnt6.exe
winnt5.exe
winsex.exe
svchosts.exe
dll.exe
sms.exe
smsni.exe
winnt2.exe
winmsne.exe
Dynamische Verzamelingen met Links voor het verwijderen (Trojan Banker):
ib15.dll
AcroIEHelpe.dll
mac.dll
gbieh.dll
AcroIEHelpe.dll
mac.dll
gbieh.dll
Af te sluiten processen (Trojan Banker):
DarkLinux[1].exe
Windowsupdate.exe
Wapp.exe
WorkFile.exe
Win XP.exe
feliznatal2006.exe
ExcorP.exe
regserve.exe
tasklist32.exe
ImgPaint.exe
gets.exe
bpkcert.exe
avgdos.exe
load[1].exe
ntos.exe
netfx20.exe
gbiesrv.exe
Explorer.exe
iexplore.exe
ree2.exe
ree1.exe
nl.exe
msbcs.exe
fc.exe
csrss.exe
sunwin32.exe
systm321.exe
ssmss.exe
iexplorer2.exe
winnt4.exe
winnt3.exe
winnt6.exe
winnt5.exe
winsex.exe
svchosts.exe
dll.exe
sms.exe
smsni.exe
winnt2.exe
winmsne.exe
Windowsupdate.exe
Wapp.exe
WorkFile.exe
Win XP.exe
feliznatal2006.exe
ExcorP.exe
regserve.exe
tasklist32.exe
ImgPaint.exe
gets.exe
bpkcert.exe
avgdos.exe
load[1].exe
ntos.exe
netfx20.exe
gbiesrv.exe
Explorer.exe
iexplore.exe
ree2.exe
ree1.exe
nl.exe
msbcs.exe
fc.exe
csrss.exe
sunwin32.exe
systm321.exe
ssmss.exe
iexplorer2.exe
winnt4.exe
winnt3.exe
winnt6.exe
winnt5.exe
winsex.exe
svchosts.exe
dll.exe
sms.exe
smsni.exe
winnt2.exe
winmsne.exe
Verwijder waarden uit het register (Trojan Banker):
1E6CE4CD-161B-4847-B8BF-E2EF72299D69
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\USERINIT\ userinit
Microsoft\Windows\CurrentVersion\Run\Imparck[1].exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ netfx20
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ gbiesrv
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{B42BF63C-5354-4c5c-A789-66EFEEC5E1B0}
RUNNING PROGRAM\Explorer.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Explorer
RUNNING PROGRAM\WindowsUpdate.scr
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 3krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 2krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ msbcs
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33161E98-0A6C-4d3c-BD62-3A7D56137F52}
{33161E98-0A6C-4d3c-BD62-3A7D56137F52}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ ddos
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Javs
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ csrss
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Systm32
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ GlobalFlagimglog2
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Internet Explorer
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt4
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt3
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt6
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt5
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winsex
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ svchosts
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ svchosts.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ System More Service
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ smsnisys
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt2
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winmsne
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\USERINIT\ userinit
Microsoft\Windows\CurrentVersion\Run\Imparck[1].exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ netfx20
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ gbiesrv
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{B42BF63C-5354-4c5c-A789-66EFEEC5E1B0}
RUNNING PROGRAM\Explorer.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Explorer
RUNNING PROGRAM\WindowsUpdate.scr
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 3krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 2krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ krn
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ msbcs
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33161E98-0A6C-4d3c-BD62-3A7D56137F52}
{33161E98-0A6C-4d3c-BD62-3A7D56137F52}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ ddos
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Javs
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ csrss
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Systm32
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ GlobalFlagimglog2
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Internet Explorer
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt4
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt3
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt6
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt5
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winsex
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ svchosts
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ svchosts.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ System More Service
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ smsnisys
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winnt2
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ winmsne
Post een commentaar — WIJ WILLEN GRAAG UW MENING!