« Green Antivirus 2009
Anti-Virus-1 »

Rootkit.Small.ra

No Comments
GoldSparrow By GoldSparrow in Rootkits | 48 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...

Rootkit.Small.ra Description

Rootkit.Small.ra is a rootkit infection which conceals itself as a security tool. Rootkit.Small.ra enters the users system through a Trojan application which imitates Windows firewall notifications to entice the user to click on the “Enable Protection” button and thereby installs the Trojan. Rootkit.Small.ra will perform pretend scans that will produce numerous infections that do not exist. This is all conducted to fool the user into buying the full paid version of the application. Rootkit.Small.ra may also download additional malware to the users system. Rootkit.Small.ra poses a serious threat as it could permit an attacker to steal personal information. Rootkit.Small.ra is also capable of hijacking the user’s web browser and redirecting it to its website. Rootkit.Small.ra may slow down the user’s computer and internet connection. Rootkit.Small.ra is a dangerous threat and should be removed without hesitation.

Type: Rootkits

How Can You Detect Rootkit.Small.ra?

 
 

Download SpyHunter’s Detection Scanner
to Detect Rootkit.Small.ra.

 
 

Rootkit.Small.ra Technical Report

As new Rootkit.Small.ra details are reported by our customers and findings from our Threat Research Center, we will update this section.

The following Rootkit.Small.ra files with its MD5s were created in the system:

File Name File Size MD5
autochk.dll 21504 10418fcd3a60d0bb85e736a326c4e73d
autochk.dll 22016 49a9dee69171feb03013fa2a45c28fb1
autochk.dll 22016 9628dde5d7a6a9ff6e1fee8d87c575d1
autochk.dll 22016 13af8f5c546e9e82ab5ee2b1c4c4beac
autochk.dll 22016 8bef106a7580f5915fa29867c57a5fd1
autochk.dll 24064 1859a363d98b374bf91f6e68ff0e5406
autochk.dll 24064 87a2583de6f6fbb5104e0433e89b1bcf
autochk.dll 23552 c63fb1c40b0f0a7024504b24b8f0a14d
pcmstub.sys 2304 549211d4da7ec01dd5c40c4053143ca5

Rootkit.Small.ra has typically the following processes in memory:

  • autochk.dll
  • %SYSTEMROOT%\system32\autochk.dll

Important Article Disclaimer

ESG Support Center

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Technorati
  • YahooMyWeb
This entry was posted on 02/15/09 and is filed under Rootkits. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Top Malware

Recommended Products

Featured Videos

Poll

How much money have you spent trying to rid your PC of spyware?
View Results

Recent Articles

Top FAQs

Follow Us on Twitter

Archives

Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2010. Enigma Software Group USA, LLC. All Rights Reserved.