Multi-Device Licenses (Volume Discounts)

Change Region

English
Threat Database Malware Malremtool.exe
1 Comment

Malremtool.exe

By JubileeX in Malware

Malremtool.exe is an unsafe executable file connected with the fake security programs Master Utilities and System Recovery. Malremtool.exe may be distributed via infected links, malicious websites, spam email attachments and corrupt files downloaded from the Internet. Malremtool.exe comes bundled with a botnet Trojan, fake codecs, bogus flash or other malicious program upgrades. Malremtool.exe can spread via the network and attempts to make copies of itself across the existing system files or computer drivers. Malremtool.exe is a group of Internet robots, or bots that run automatically on corrupted machine when the malware file is opened. Malremtool.exe makes the drives on the attacked PC unbootable. Malremtool.exe conceals shortcuts and programs on your Start menu. Malremtool.exe also displays security alerts and critical hard disk drive error messages. You should remove Malremtool.exe as soon as possible.

File System Details

Malremtool.exe may create the following file(s):
Expand All | Collapse All
# File Name Detections
1. %Documents and Settings%\[User Name]\Local Settings\Application Data\[RANDOM CHARACTERS].exe
2. %Documents and Settings%\[User Name]\Local Settings\Temp\smtmp\
3. %Documents and Settings%\[User Name]\Start Menu\\Programs\malremtool\
4. %Documents and Settings%\[User Name]\Desktop\malremtoollnk
5. %Documents and Settings%\[User Name]\Local Settings\Application Data\~
6. %Documents and Settings%\[User Name]\Start Menu\\Programs\malremtool\Uninstall malremtool.lnk
7. %Documents and Settings%\[User Name]\Local Settings\Application Data\[RANDOM CHARACTERS]
8. %Documents and Settings%\[User Name]\Start Menu\\Programs\malremtool\malremtool.lnk

Registry Details

Malremtool.exe may create the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "ShowSuperHidden" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "CertificateRevocation" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = '/{hq:/s`s:/ogn:/uyu:/dyd:/c`u:/bnl:/ble:/sdf:/lrh:/iul:/iulm:/fhg:/clq:/kqf:/`wh:/lqf:/lqdf:/lnw:/lq2:/l2t:/v`w:/rbs:'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1'
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "Hidden" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Use FormSuggest" = 'Yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop "NoChangingWallPaper" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoDesktop" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ""
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\LastVisitedMRU "MRUList"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ".exe"

1 Comment

Remove Malremtool.exe Reply

Thank you sooo much…..u saved me the trouble and time of taking my pc to the store……thnks a million….all ur steps work and did fix my problem!!

Trending

Most Viewed

Loading...