How to remove AEV3zxc.exe

AEV3zxc.exe
MD5 : 41d2fe10bdf82c5fa3fd504b88a46f44
SHA1 : 48a2a97cb1d08dfed03aaabad5e8f3f171090584
...
Antivirus Version Last Update Result
AhnLab-V3 2010.11.30.01 2010.11.30 Trojan/Win32.OnlineGameHack
AntiVir 7.10.14.141 2010.11.30 TR/Crypt.ASPM.Gen
Antiy-AVL 2.0.3.7 2010.11.30 -
Avast 4.8.1351.0 2010.11.30 Win32:OnLineGames-FUX
Avast5 5.0.677.0 2010.11.30 Win32:OnLineGames-FUX
AVG 9.0.0.851 2010.11.30 Win32/NSAnti.J
BitDefender 7.2 2010.11.30 -
CAT-QuickHeal 11.00 2010.11.30 -
ClamAV 0.96.4.0 2010.11.30 PUA.Packed.ASPack
Command 5.2.11.5 2010.11.30 -
Comodo 6902 2010.11.30 -
DrWeb 5.0.2.03300 2010.11.30 -
Emsisoft 5.0.0.50 2010.11.30 Trojan-GameThief.Win32.Magania!IK
eSafe 7.0.17.0 2010.11.29 -
eTrust-Vet 36.1.8008 2010.11.30 -
F-Prot 4.6.2.117 2010.11.29 -
F-Secure 9.0.16160.0 2010.11.30 -
Fortinet 4.2.254.0 2010.11.30 -
GData 21 2010.11.30 Win32:OnLineGames-FUX
Ikarus T3.1.1.90.0 2010.11.30 Trojan-GameThief.Win32.Magania
Jiangmin 13.0.900 2010.11.30 -
K7AntiVirus 9.69.3123 2010.11.30 -
Kaspersky 7.0.0.125 2010.11.30 -
McAfee 5.400.0.1158 2010.11.30 -
McAfee-GW-Edition 2010.1C 2010.11.30 -
Microsoft 1.6402 2010.11.30 Worm:Win32/Taterf.B
NOD32 5660 2010.11.30 a variant of Win32/PSW.OnLineGames.QMA
Norman 6.06.10 2010.11.29 -
nProtect 2010-11-30.01 2010.11.30 -
Panda 10.0.2.7 2010.11.29 Suspicious file
PeeTechFix 2.0.7.135 2010.11.30 Win32.PSW.OnlineGame.zxc
Prevx 3.0 2010.11.30 -
Rising 22.76.01.04 2010.11.30 -
Sophos 4.60.0 2010.11.30 -
SUPERAntiSpyware 4.40.0.1006 2010.11.30 -
Symantec 20101.2.0.161 2010.11.30 -
TheHacker 6.7.0.1.093 2010.11.30 -
TrendMicro 9.120.0.1004 2010.11.30 Cryp_OLGM-41
TrendMicro-HouseCall 9.120.0.1004 2010.11.30 Cryp_OLGM-41
VIPRE 7453 2010.11.30 BehavesLike.Win32.Malware.bse (vs)
ViRobot 2010.11.30.4177 2010.11.30 -
VirusBuster 13.6.66.0 2010.11.29 -
...
Files Added
%System%\AEV3szxc10.dll
%System%\AEV3szxc11.dll
%System%\AEV3szxc20.dll
%System%\AEV3zxc.exe
%UserProfile%\Microsoft\FV3smx4pnp.dll

Keys Added
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\InprocServer32
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\ProgID
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\Programmable
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\VersionIndependentProgID
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\ProxyStubClsid
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\ProxyStubClsid32
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\TypeLib
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\0
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\0\win32
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\FLAGS
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\HELPDIR
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj\CurVer
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj.1
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj.1\CLSID
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}

Values Added
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\VersionIndependentProgID]
(Default) = "IEHlprObj.IEHlprObj"
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\ProgID]
(Default) = "IEHlprObj.IEHlprObj.1"
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}\InprocServer32]
(Default) = "%System%\AEV3szxc20.dll"
ThreadingModel = "Apartment"
HKLM\SOFTWARE\Classes\CLSID\{94AC7942-7BE1-4FB9-A7CA-67CD88362758}]
(Default) = "IEHlprObj Class"
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\TypeLib]
(Default) = "{94AC7948-7BE1-4FB9-A7CA-67CD88362758}"
Version = "1.0"
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\ProxyStubClsid32]
(Default) = "{00020424-0000-0000-C000-000000000046}"
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}\ProxyStubClsid]
(Default) = "{00020424-0000-0000-C000-000000000046}"
HKLM\SOFTWARE\Classes\Interface\{94AC7941-7BE1-4FB9-A7CA-67CD88362758}]
(Default) = "IIEHlprObj"
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\0\win32]
(Default) = "%System%\AEV3szxc20.dll"
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\HELPDIR]
(Default) = "%System%\"
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0\FLAGS]
(Default) = "0"
HKLM\SOFTWARE\Classes\TypeLib\{94AC7948-7BE1-4FB9-A7CA-67CD88362758}\1.0]
(Default) = "IEHelper 1.0 Type Library"
HKLME\SOFTWARE\Classes\IEHlprObj.IEHlprObj\CurVer]
(Default) = "IEHlprObj.IEHlprObj.1"
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj]
(Default) = "IEHlprObj Class"
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj.1\CLSID]
(Default) = "{94AC7942-7BE1-4FB9-A7CA-67CD88362758}"
HKLM\SOFTWARE\Classes\IEHlprObj.IEHlprObj.1]
HKCU\Software\Microsoft
Update = "zzts.in"
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
FV3smx4pnp = "rundll32.exe "%UserProfile%\Microsoft\FV3smx4pnp.dll", Launch"
AEV3sos = "%System%\AEV3zxc.exe"

Related Posts Plugin for WordPress, Blogger...

Labels:

Disclaimer
All the contents posted here are found from various Search Engines blogs and forums. The Webmaster of this blog takes no responsibility what so ever for any of the content (image/audio/video). If you find some content inappropriate or if there is any violation of copyright, kindly contact the host of the content (image/audio/video) to remove it from their server.
 
✖ SedutMediaLink ✖ - Templates Novo Blogger 2008
This template is brought to you by : allblogtools.com Blogger Templates