Threat Database Trojans Trojan.FraudPack.Gen


By ESGI Advisor in Trojans

Trojan.FraudPack.Gen is packed with a packer that is used extensively by several other malware infections. This is used to make detection or removal much more difficult than normal. Trojan.FraudPack.Gen has two main components, one that is associated with rogue security programs and one that is associated with adware pop-ups. Trojan.FraudPack.Gen makes changes to the Windows Registry that can be unsafe to the infected computer. It also requests files from a remote server. ESG security researchers strongly recommend removing Trojan.FraudPack.Gen with an anti-malware application. Because of the packer that this Trojan uses, make sure that the anti-malware program that is used is updated, or it will not be able to detect these kinds of components. You should also make sure that you have not downloaded and installed a fake security program as a result of Trojan.FraudPack.Gen infection.

Trojan.FraudPack.Gen has two main components: one that is associated with rogue security applications, and one that is associated with adware. The first component is designed to change the Internet Explorer homepage and security settings. It also displays fake error messages that claim that the computer has been infected. Trojan.FraudPack.Gen will attempt to convince you to download a specific rogue security program, such as the Security Scanner fake anti-virus. Rogue security programs are fake computer security applications that are used as part of a scam to steal a victim's money. Instead of fixing problems on the infected computer, they cause the computer to behave erratically and crash frequently. They also spam the victim with constant fake security alerts. This is all done to convince the victim to pay for a "full version" of the fake security application in order to fix these problems – the very problems Trojan.FraudPack.Gen is causing itself.

Trojan.FraudPack.Gen is also associated with a number of different registry entries and adware components. ESG security researchers strongly advise removing these immediately. These belong to several different, unrelated malware programs and can cause a whole series of different problems on the infected computer. Trojan.FraudPack.Gen may also include components designed to monitor your online activity, track your keystrokes and send your personal information to a remote party. It is because of this that ESG security researchers consider that removal of Trojan.FraudPack.Gen should be a top priority.

SpyHunter Detects & Remove Trojan.FraudPack.Gen

File System Details

Trojan.FraudPack.Gen may create the following file(s):
# File Name MD5 Detections
1. %System%\winupdate.exe
2. %ProgramFiles%\prodm\prodm.dll
3. %ProgramFiles%\microsoft common\wuauclt.exe
4. %Temp%\svchost.exe
5. %System%\sex3.ico.tmp
6. %DesktopDir%\BDSM galleries.URL
7. %System%\sex2.ico.tmp
8. %System%\wscmp.dll.tmp
9. %DesktopDir%\Uncensored porn.URL
10. %System%\sex1.ico.tmp
11. %System%\update32.exe.tmp
12. %DesktopDir%\CP illegal content.URL
13. odbns.exe 2fde688d6746a3e784e387049a7016a8 0
14. odbns.exe 5f17737659471083d8c308eb6840827a 0
15. odbns.exe 5806bf7e0a8270339435b36f8fe7a729 0
16. odbns.exe 75bea01289b6c89e88a0398ef53ccfea 0
17. odbns.exe 4953314428526af7aec708e5a2e8919b 0

Registry Details

Trojan.FraudPack.Gen may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Controls Folder\wmurl = ""
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows\run = "%System%\winupdate.exe"


Most Viewed