Multi-Device Licenses (Volume Discounts)

Change Region

English
Threat Database Trojans Trojan.AgentMB.VB

Trojan.AgentMB.VB

By SpideyMan in Trojans

Trojan.AgentMB.VB is a mischievous computer trojan that invades your PC system without your knowledge through vulnerabilities or security program exploits. When Trojan.AgentMB.VB runs on a machine, it starts executing its harmful actions, which usually carry some real damage and are able to result in many computer problems. Trojan.AgentMB.VB can create an executable file in the fake Recycle Bin folder to hide its existence on the computer system. Trojan.AgentMB.VB has to be removed from the PC as soon as possible.

File System Details

Trojan.AgentMB.VB may create the following file(s):
Expand All | Collapse All
# File Name Detections
1. %Windir%\assembly\assembly.exe
2. %ProgramFiles%\Online Services\Online Services.exe
3. %ProgramFiles%\microsoft frontpage\microsoft frontpage.exe
4. %ProgramFiles%\Program Files.exe
5. %ProgramFiles%\xerox\xerox.exe
6. %ProgramFiles%\WindowsUpdate\WindowsUpdate.exe
7. c:\RECYCLER\RECYCLER.exe
8. %Windir%\AppPatch\AppPatch.exe
9. %ProgramFiles%\NetMeeting\NetMeeting.exe
10. %ProgramFiles%\Messenger\Messenger.exe
11. %ProgramFiles%\MSN\MSN.exe
12. %ProgramFiles%\Web Publish\Web Publish.exe
13. %ProgramFiles%\Windows NT\Windows NT.exe
14. c:\System\System.exe
15. %Windir%\addins\addins.exe
16. %ProgramFiles%\MSN Gaming Zone\MSN Gaming Zone.exe
17. %ProgramFiles%\Outlook Express\Outlook Express.exe
18. %ProgramFiles%\Movie Maker\Movie Maker.exe
19. %ProgramFiles%\Uninstall Information\Uninstall Information.exe
20. %ProgramFiles%\Windows Media Player\Windows Media Player.exe
21. %ProgramFiles%\WinPcap\WinPcap.exe
22. c:\RECYCLER\S-1-5-21-606747145-764733703-839522115-1003\S-1-5-21-606747145-764733703-839522115-1003.exe

Registry Details

Trojan.AgentMB.VB may create the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\dmboot.sys
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\NDIS Wrapper
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Boot file system
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\DcomLaunch
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\DnsCache
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\LanmanServer
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Messenger
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\ip6fw.sys
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\dmadmin
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\NDIS
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\NetBIOS
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\CryptSvc
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\dmserver
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\File system
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\LmHosts
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\HelpSvc
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Dhcp
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\dmio.sys
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Ndisuio
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Browser
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\dmload.sys
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\EventLog
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\LanmanWorkstation
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Filter
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\ipnat.sys

Trending

Most Viewed

Loading...