Solved! Use PRAIRIE WIND.EXE (Worm Autorun) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

PRAIRIE WIND.EXE – Worm Autorun removal

FileMD5Virus Alias
PRAIRIE WIND.EXE b27de6383bedfc5dc8761c2a2aefa1fb Worm Autorun
PRAIRIE WIND.EXE b27de6383bedfc5dc8761c2a2aefa1fb Trojan Generic
PRAIRIE WIND.EXE b27de6383bedfc5dc8761c2a2aefa1fb Trojan Siggen
PRAIRIE WIND.EXE b27de6383bedfc5dc8761c2a2aefa1fb Trojan Agent

PRAIRIE WIND.EXE size: 132704 bytes
PRAIRIE WIND.EXE hash: B27DE6383BEDFC5DC8761C2A2AEFA1FB

Created files:

C:\FOUND.007.exe
C:\Msvbvm60.dll
%WinDir%\AE 0124 BE.exe
%WinDir%\Blue Lace 16.exe
%WinDir%\Coffee Bean.exe
%WinDir%\explorer.exe
%WinDir%\explorer.scf
%WinDir%\FeatherTexture.exe
%WinDir%\Gone Fishing.exe
%WinDir%\Greenstone.exe
%WinDir%\hh.exe
%WinDir%\imsins.BAK
%WinDir%\Msvbvm60.dll
%WinDir%\NOTEPAD.EXE
%WinDir%\Prairie Wind.exe
%WinDir%\regedit.exe
%WinDir%\REGLOCS.OLD
%WinDir%\Rhododendron.exe
%WinDir%\River Sumida.exe
%WinDir%\Santa Fe Stucco.exe
%WinDir%\Soap Bubbles.exe
%SysDir%\drivers\Msvbvm60.dll
%SysDir%\drivers\winlogon.exe
%SysDir%\Msvbvm60.dlll
%WinDir%\TASKMAN.EXE
D:\FOUND.007.exe
D:\Msvbvm60.dll

Detected by UnHackMe:

PRAIRIE WIND.EXE
Default location: %WinDir%\PRAIRIE WIND.EXE

Dropper information:
MD5: 5f860c051302ca649cafc5a18e5ca280
File size: 134689 bytes

Leave a Reply