WATERMARK.EXE – Worm AMN

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

WATERMARK.EXE – Worm AMN removal

FileMD5Virus Alias
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Worm AMN
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Trojan SuspiciousFile
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Trojan XPACK
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Trojan Generic
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Trojan Eldorado
WATERMARK.EXE 01e869fd08b80acf1239038e5bb957f3 Trojan Diple

WATERMARK.EXE size: 94208 bytes
WATERMARK.EXE hash: 01E869FD08B80ACF1239038E5BB957F3

Created files:

%Program Files%\Microsoft\WaterMark.exe
%SysDir%\rundll32mgr.exe
%Common AppData%\Apple Computer\Installer Cache\Safari 5.34.52.7\SetupAdmin.exe
%Local AppData%\Google\Chrome\Application\17.0.963.56\avcodec-53.dll
%Local AppData%\Google\Chrome\Application\17.0.963.56\avformat-53.dll
%Local AppData%\Google\Chrome\Application\17.0.963.56\avutil-51.dll

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: c:\windows\System32\userinit.exe,,c:\program files\Microsoft\watermark.exe

Detected by UnHackMe:

WATERMARK.EXE
Default location: %PROGRAM FILES%\MICROSOFT\WATERMARK.EXE

Dropper information:
MD5: 202d0b35fc985fa1a2ad6f75547d7ed7
File size: 1298829 bytes

Leave a Reply