Trojan Generic – nsxwpp.dll – a4c4616ef7b662d53666c23c2151067e

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Generic
SHA256: f0cca6b5788fa0406e0f38b464dfaffd18e5b0edc024a964fee3a62ba51d0a07
SHA1: d6b514b0270821cb587bc2e1cf8d1a1f60ffb8dc
MD5: a4c4616ef7b662d53666c23c2151067e
File size: 2604920 bytes

Created files:

%Program Files%\Mozilla Firefox\extensions\{e4b92e5d-3958-4b3c-ae96-19efe24a3ff7}\components\nsxwpp.dll – Trojan Generic
%Program Files%\Mozilla Firefox\plugins\npxecure.dll – Trojan Generic
%Program Files%\Mozilla Firefox\plugins\npxwfile.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\ClientSM.exe – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\MiraePKIX_v4.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\npxwebplugin.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\npxwebplugin_file.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\nsldap32v50.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\RestartIE.exe – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\Unzip32.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XCrSvr.exe – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureASN_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCMP_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCodec_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCRL_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCrypto_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCSP_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureCTL_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureFreeze.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureIO_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureLDAP_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureNEAT_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureOCSP_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePKCS12_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePKCS5_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePKCS7_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePKCS8_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePKC_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecurePVD_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureST_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XecureTSP_v20.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebCertMng.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebCLT.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebCMP.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebCS.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebFileCLT.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebFileRD.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebLangCH.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebLangEN.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebLangKR.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebSSL.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebUI.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebUpdate.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWebUtil.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\XWSmartCard.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\xwUACctl.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\xwUACUpdatectl.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\xwUACWrapper.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\ActiveX\Zip32.dll – Trojan Generic
%Program Files%\SoftForum\XecureWeb\xw_setup.exe – Trojan Generic
%Temp%\WZSE0.TMP\ClientSM.exe – Trojan Generic
%Temp%\WZSE0.TMP\MiraePKIX_v4.dll – Trojan Generic
%Temp%\WZSE0.TMP\NPXecSSL40.dll – Trojan Generic
%Temp%\WZSE0.TMP\npxecure.dll – Trojan Generic
%Temp%\WZSE0.TMP\npxwebplugin.dll – Trojan Generic
%Temp%\WZSE0.TMP\npxwebplugin_file.dll – Trojan Generic
%Temp%\WZSE0.TMP\npxwfile.dll – Trojan Generic
%Temp%\WZSE0.TMP\NPxwfilectl.dll – Trojan Generic
%Temp%\WZSE0.TMP\nsldap32v50.dll – Trojan Generic
%Temp%\WZSE0.TMP\nsxwpp.dll – Trojan Generic
%Temp%\WZSE0.TMP\RestartIE.exe – Trojan Generic
%Temp%\WZSE0.TMP\Unzip32.dll – Trojan Generic
%Temp%\WZSE0.TMP\XCrSvr.exe – Trojan Generic
%Temp%\WZSE0.TMP\XecureASN_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCMP_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCodec_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCRL_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCrypto_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCSP_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureCTL_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureFreeze.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureIO_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureLDAP_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureNEAT_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureOCSP_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePKCS12_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePKCS5_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePKCS7_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePKCS8_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePKC_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecurePVD_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureST_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XecureTSP_v20.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebCertMng.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebCLT.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebCMP.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebCS.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebFileCLT.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebFileRD.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebLangCH.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebLangEN.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebLangKR.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebSSL.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebUI.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebUpdate.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWebUtil.dll – Trojan Generic
%Temp%\WZSE0.TMP\XWSmartCard.dll – Trojan Generic
%Temp%\WZSE0.TMP\xwUACctl.dll – Trojan Generic
%Temp%\WZSE0.TMP\xwUACUpdatectl.dll – Trojan Generic
%Temp%\WZSE0.TMP\xwUACWrapper.dll – Trojan Generic
%Temp%\WZSE0.TMP\xw_setup.exe – Trojan Generic
%Temp%\WZSE0.TMP\Zip32.dll – Trojan Generic

Trojan Generic created autostart registry keys:

HKLM\Software\Classes\CLSID\{6AC69002-DAD5-11D4-B065-00C04F0CD404}\InprocServer32 : %Program Files%\SoftForum\XecureWeb\ActiveX\XWebFileCLT.dll
HKLM\Software\Classes\CLSID\{7E9FDB80-5316-11D4-B02C-00C04F0CD404}\InprocServer32 : %Program Files%\SoftForum\XecureWeb\ActiveX\XWebCLT.dll

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images