Mal/FakeVirPk-B

By ZulaZuza in Trojans

Translate To:

Threat Scorecard

Ranking:	10,184
Threat Level:	90 % (High)
Infected Computers:	2,202

First Seen:	July 24, 2009
Last Seen:	September 6, 2023
OS(es) Affected:	Windows

Mal/FakeVirPk-B is typically used by cyber-criminals to distribute fake anti-spyware applications. Once Mal/FakeVirPk-B is on a system it may display fake security warning and conduct fake system scans. Mal/FakeVirPk-B also modifies certain system settings and creates a start-up registry entry. Mal/FakeVirPk-B may also download additional parasites onto a victim's PC.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
Antiy-AVL	Hoax/Win32.Agent.gen
AntiVir	TR/Agent.amy.1
Kaspersky	Hoax.Win32.Agent.amy
McAfee	Artemis!7B948792C642
AVG	WinFixer.IV
Ikarus	not-a-virus
Antiy-AVL	FraudTool/Win32.BestSeller.gen
AntiVir	APPL/WinFixer.46592
Comodo	Application.Win32.Adware.AVSystemCare
BitDefender	Application.Winfixer.BD
Kaspersky	not-a-virus:FraudTool.Win32.BestSeller.a
eSafe	FraudTool.Win32.Best
F-Prot	W32/KillAV.I.gen!Eldorado
K7AntiVirus	Adware
CAT-QuickHeal	FraudTool.BestSeller.a (Not a Virus)

SpyHunter Detects & Remove Mal/FakeVirPk-B

File System Details

Mal/FakeVirPk-B may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	gotnewupdate.exe	09add4d89b20e1266c00d2e764ff9644	206
Name: gotnewupdate.exe MD5: 09add4d89b20e1266c00d2e764ff9644 Size: 745.47 KB (745472 bytes) Detections: 206 Type: Executable File Path: %APPDATA%\8FE7EAC9DBF7DFD14D16A6C7CC7E4D34 Group: Malware file Last Updated: May 4, 2010
2.	winlogon32.exe	4a0ab091489f7f9dcf298b2b9dd07582	166
Name: winlogon32.exe MD5: 4a0ab091489f7f9dcf298b2b9dd07582 Size: 37.88 KB (37888 bytes) Detections: 166 Type: Executable File Path: %WINDIR%\system32 Group: Malware file Last Updated: May 4, 2010
3.	winlogon32.exe	db41868587c95a01aaa2f1b254f37c88	151
Name: winlogon32.exe MD5: db41868587c95a01aaa2f1b254f37c88 Size: 44.54 KB (44544 bytes) Detections: 151 Type: Executable File Path: %WINDIR%\system32 Group: Malware file Last Updated: May 7, 2010
4.	SpeedTouchKey.exe	7b948792c642e6825b2066f28325a9e2	10
Name: SpeedTouchKey.exe MD5: 7b948792c642e6825b2066f28325a9e2 Size: 2.14 MB (2147331 bytes) Detections: 10 Type: Executable File Path: %USERPROFILE%\????????? ???????? Group: Malware file Last Updated: October 19, 2020
5.	winupgro.exe	d84367293f7e7c61eea347b767f91a38	9
Name: winupgro.exe MD5: d84367293f7e7c61eea347b767f91a38 Size: 1.06 MB (1061376 bytes) Detections: 9 Type: Executable File Path: %APPDATA%\drivers Group: Malware file Last Updated: November 30, 2010
6.	setup_de.exe	dba6689c1423c4387449c2ac6686c8e4	7
Name: setup_de.exe MD5: dba6689c1423c4387449c2ac6686c8e4 Size: 262.16 KB (262160 bytes) Detections: 7 Type: Executable File Path: %USERPROFILE%\Desktop Group: Malware file Last Updated: October 3, 2011
7.	winantiviruspro2006freeinstall_nl[1].exe	b56edb2b32396c4e44222f12fc630d83	5
Name: winantiviruspro2006freeinstall_nl[1].exe MD5: b56edb2b32396c4e44222f12fc630d83 Size: 92.88 KB (92880 bytes) Detections: 5 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: November 1, 2011
8.	CAMG.exe	0c1c2bbf64fa693264aaf77ec1fceaf0	3
Name: CAMG.exe MD5: 0c1c2bbf64fa693264aaf77ec1fceaf0 Size: 145.4 KB (145408 bytes) Detections: 3 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
9.	newsoftwareinstaller[1].exe	6b45cbb5ff302933b36aaadfe2fbff42	2
Name: newsoftwareinstaller[1].exe MD5: 6b45cbb5ff302933b36aaadfe2fbff42 Size: 144.15 KB (144152 bytes) Detections: 2 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: September 21, 2011
10.	Hk1.exe	03cd94952410f824f7329050cf9ad29e	1
Name: Hk1.exe MD5: 03cd94952410f824f7329050cf9ad29e Size: 145.4 KB (145408 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
11.	Bf1.exe	f9743700d3cd77234573155142876a57	1
Name: Bf1.exe MD5: f9743700d3cd77234573155142876a57 Size: 145.4 KB (145408 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
12.	winupdate86.exe	5155c4617976cb5805343d57e7a2b797	0
Name: winupdate86.exe MD5: 5155c4617976cb5805343d57e7a2b797 Size: 35.32 KB (35328 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
13.	winupdate86.exe	8e36fdfa3a6fdc319d2fa8a5948fc481	0
Name: winupdate86.exe MD5: 8e36fdfa3a6fdc319d2fa8a5948fc481 Size: 31.23 KB (31232 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
14.	winupdate86.exe	995945f39df67f488de242f9d4ad199c	0
Name: winupdate86.exe MD5: 995945f39df67f488de242f9d4ad199c Size: 31.23 KB (31232 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
15.	winlogon86.exe	a40a24c6d7fa3a13a8012e834eccd7f2	0
Name: winlogon86.exe MD5: a40a24c6d7fa3a13a8012e834eccd7f2 Size: 31.23 KB (31232 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
16.	winupdate86.exe	1627e265f51033d59acb9fd703f016a9	0
Name: winupdate86.exe MD5: 1627e265f51033d59acb9fd703f016a9 Size: 31.23 KB (31232 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
17.	winupdate86.exe	48b6e39590da6ba36da9a02b86aeebf9	0
Name: winupdate86.exe MD5: 48b6e39590da6ba36da9a02b86aeebf9 Size: 22.01 KB (22016 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
18.	winupdate86.exe	de4a872ee7abd0ef6dd4187c49e7dcf5	0
Name: winupdate86.exe MD5: de4a872ee7abd0ef6dd4187c49e7dcf5 Size: 22.01 KB (22016 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
19.	winupdate86.exe	9b67c07f189a296d2ab5400525e51220	0
Name: winupdate86.exe MD5: 9b67c07f189a296d2ab5400525e51220 Size: 24.06 KB (24064 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
20.	winupdate86.exe	12f88b44d471fc3b93468d5d5b8d428c	0
Name: winupdate86.exe MD5: 12f88b44d471fc3b93468d5d5b8d428c Size: 24.06 KB (24064 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
21.	helpers32.dll	a0b5ab35d0f89bd0007a00585da0447f	0
Name: helpers32.dll MD5: a0b5ab35d0f89bd0007a00585da0447f Size: 27.64 KB (27648 bytes) Detections: 0 Type: Dynamic link library Group: Malware file Last Updated: April 15, 2010
22.	helpers32.dll	cf58f782b58ff0dd8e959227db3c2532	0
Name: helpers32.dll MD5: cf58f782b58ff0dd8e959227db3c2532 Size: 24.57 KB (24576 bytes) Detections: 0 Type: Dynamic link library Group: Malware file Last Updated: April 15, 2010
23.	smss32.exe	08e04bbb91e80fdad83b34783a083904	0
Name: smss32.exe MD5: 08e04bbb91e80fdad83b34783a083904 Size: 39.93 KB (39936 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 15, 2010
24.	svchost32.exe	e100dc56587c4b7261c1343a56d7423c	0
Name: svchost32.exe MD5: e100dc56587c4b7261c1343a56d7423c Size: 81.92 KB (81920 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 20, 2010
25.	svchost.exe	fe403a64c7a0dc2135de8b7ea12c5235	0
Name: svchost.exe MD5: fe403a64c7a0dc2135de8b7ea12c5235 Size: 36.35 KB (36356 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 20, 2010
26.	setup.exe	be7a3a0203947d2d4e48835d6ea76327	0
Name: setup.exe MD5: be7a3a0203947d2d4e48835d6ea76327 Size: 145.4 KB (145408 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: April 20, 2010
27.	smss32.exe	e8a1cee6410615c7536599962f6a06f0	0
Name: smss32.exe MD5: e8a1cee6410615c7536599962f6a06f0 Size: 37.88 KB (37888 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: May 7, 2010

More files

Registry Details

Mal/FakeVirPk-B may create the following registry entry or registry entries:

CLSID

{376892AE-1825-4E5F-9F85-23F9640051CC}

{94204837-0871-4E6A-A426-7F75B1B731F0}

File name without path

msa.exe

smss32.exe

HKEY..\..\..\..{RegistryKeys}

Software\Microsoft\Internet Explorer\Toolbar\{12A25CE9-0A93-4074-9516-A5B1A83141C9}

SOFTWARE\Microsoft\Internet Explorer\Toolbar\{FCCD9F7B-5BF3-4DC4-B131-CE069F8A62AB}

SOFTWARE\Microsoft\Internet Explorer\Toolbar\{FF20AF38-AD56-4361-AE03-339130767E26}

URLs

Mal/FakeVirPk-B may call the following URLs:

cubeexe.com

securityonlinecomputer.net

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Mal/FakeVirPk-B

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove Mal/FakeVirPk-B

File System Details

Registry Details

URLs

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen