Trojan.Renos

By LoneStar in Trojans

Translate To:

Threat Scorecard

Ranking:	13,941
Threat Level:	80 % (High)
Infected Computers:	208

First Seen:	July 24, 2009
Last Seen:	May 6, 2024
OS(es) Affected:	Windows

Trojan.Renos (also known as Trojan.Renos.G and Trojan.Renos.M) is a Trojan virus that infiltrates the computer via security exploits, and typically without the user knowing of the intrusion or being able to detect it. Once active, Trojan.Renos begins downloading additional malware onto the already compromised machine, and also allows an unauthorized user to gain remote access to the system.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AhnLab-V3	Trojan/Win32.Gen
BitDefender	Trojan.Generic.KDV.129538
Symantec	Trojan.Gen.2
McAfee	Artemis!EC8C5DACBACF
Panda	Application/SystemOrdnare
Antiy-AVL	Downloader/Win32.WinFixer.gen
Sophos	Troj/FakAVB-Gen
DrWeb	Trojan.DownLoader.56007
F-Secure	Rogue:W32/WinFixer.gen!B
Comodo	UnclassifiedMalware
Kaspersky	not-a-virus:Downloader.Win32.WinFixer.dc
ClamAV	PUA.Packed.ASPack
F-Prot	W32/WinFixer.A.gen!Eldorado
NOD32	a variant of Win32/Adware.WinFixer
K7AntiVirus	Dialer

SpyHunter Detects & Remove Trojan.Renos

File System Details

Trojan.Renos may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	Steam App 312990.pif	44fda4bfa6f9307b19d74a3f2f035c44	117
Name: Steam App 312990.pif MD5: 44fda4bfa6f9307b19d74a3f2f035c44 Size: 154.11 KB (154112 bytes) Detections: 117 Path: %APPDATA%\Steam App 312990 Group: Malware file Last Updated: May 13, 2016
2.	winstall.exe	f81999bbf7cf59ee8c5aaf02997327ac	28
Name: winstall.exe MD5: f81999bbf7cf59ee8c5aaf02997327ac Size: 29.18 KB (29184 bytes) Detections: 28 Type: Executable File Path: C:\winstall.exe Group: Malware file Last Updated: May 6, 2024
3.	braviax.exe	96572547af769d50692f717a5e1f77dc	4
Name: braviax.exe MD5: 96572547af769d50692f717a5e1f77dc Size: 9.21 KB (9216 bytes) Detections: 4 Type: Executable File Group: Malware file Last Updated: December 11, 2009
4.	winlogon32.exe	3579ae827247e48fdfc3924f0723c14e	3
Name: winlogon32.exe MD5: 3579ae827247e48fdfc3924f0723c14e Size: 61.44 KB (61440 bytes) Detections: 3 Type: Executable File Path: %WINDIR%\system32 Group: Malware file Last Updated: December 8, 2010
5.	ownyhr.dll	785a71c346a05a719f08c80cad26d70b	3
Name: ownyhr.dll MD5: 785a71c346a05a719f08c80cad26d70b Size: 20.99 KB (20992 bytes) Detections: 3 Type: Dynamic link library Path: %WINDIR%\system32 Group: Malware file Last Updated: July 29, 2011
6.	Steam App 570.com	4032c13d2da19f00fedd7c1dd80e65c9	3
Name: Steam App 570.com MD5: 4032c13d2da19f00fedd7c1dd80e65c9 Size: 106.17 KB (106177 bytes) Detections: 3 Type: Command, executable file Path: %APPDATA%\Steam App 570 Group: Malware file Last Updated: May 13, 2016
7.	SI394_231.exe	0f6edb9cbdff8ad868cb83283d5f95ef	2
Name: SI394_231.exe MD5: 0f6edb9cbdff8ad868cb83283d5f95ef Size: 3.75 MB (3757056 bytes) Detections: 2 Type: Executable File Path: %ALLUSERSPROFILE%\Datos de programa\39491e Group: Malware file Last Updated: February 21, 2011
8.	Steam App 243660.exe	0f9c4ac068512e343bfdc23f2759738a	2
Name: Steam App 243660.exe MD5: 0f9c4ac068512e343bfdc23f2759738a Size: 127.16 KB (127169 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Steam App 243660 Group: Malware file Last Updated: May 13, 2016
9.	SI00a_289.exe	4b75c50720da2c2701db93120e1e9f8f	1
Name: SI00a_289.exe MD5: 4b75c50720da2c2701db93120e1e9f8f Size: 5.16 MB (5165056 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\00a299 Group: Malware file Last Updated: May 18, 2011
10.	SI90d_289.exe	ec8c5dacbacfddad64f889450f780542	1
Name: SI90d_289.exe MD5: ec8c5dacbacfddad64f889450f780542 Size: 3.69 MB (3699200 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\90d0c9 Group: Malware file Last Updated: May 21, 2012
11.	SI2d6_2230.exe	45f59920c11d6b97253d2e28ee05b45b	1
Name: SI2d6_2230.exe MD5: 45f59920c11d6b97253d2e28ee05b45b Size: 3.69 MB (3699200 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\Dati applicazioni\2d682b Group: Malware file Last Updated: May 6, 2011
12.	SIfaa_231.exe	1859fddfb063ab4bb0dbe9c574b13a5f	1
Name: SIfaa_231.exe MD5: 1859fddfb063ab4bb0dbe9c574b13a5f Size: 3.69 MB (3699200 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\Dati applicazioni\faabe6 Group: Malware file Last Updated: February 19, 2011
13.	setup_nl[1].exe	a7cc0df793b7ea0ea56a506bfddadc74	1
Name: setup_nl[1].exe MD5: a7cc0df793b7ea0ea56a506bfddadc74 Size: 257.55 KB (257552 bytes) Detections: 1 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: March 22, 2012
14.	pphcj7cj0ea59.exe
Name: pphcj7cj0ea59.exe Type: Executable File Group: Malware file
15.	lsass.exe
Name: lsass.exe Type: Executable File Group: Malware file
16.	sprof.exe
Name: sprof.exe Type: Executable File Group: Malware file
17.	navf.dll
Name: navf.dll Type: Dynamic link library Group: Malware file
18.	vvihh.dll
Name: vvihh.dll Type: Dynamic link library Group: Malware file
19.	iebtm.exe
Name: iebtm.exe Type: Executable File Group: Malware file
20.	pphcpgsj0ega1.exe
Name: pphcpgsj0ega1.exe Type: Executable File Group: Malware file
21.	pphcc4dj0epbv.exe
Name: pphcc4dj0epbv.exe Type: Executable File Group: Malware file
22.	wcs.exe
Name: wcs.exe Type: Executable File Group: Malware file
23.	phtrc345015.exe
Name: phtrc345015.exe Type: Executable File Group: Malware file
24.	guard.exe	354d7a84cd86b936510fab9f1bace25c	0
Name: guard.exe MD5: 354d7a84cd86b936510fab9f1bace25c Size: 12.8 KB (12800 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
25.	wupeng.exe	bdc8745e347bf8eb880b6be95dd8fa4d	0
Name: wupeng.exe MD5: bdc8745e347bf8eb880b6be95dd8fa4d Size: 12.28 KB (12288 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
26.	wndutl32.dll	9fb3217d3e85c3acfcab179f816f43aa	0
Name: wndutl32.dll MD5: 9fb3217d3e85c3acfcab179f816f43aa Size: 12.2 KB (12200 bytes) Detections: 0 Type: Dynamic link library Group: Malware file Last Updated: December 11, 2009
27.	brastk.exe	ee7ae1157156d7662dadfb0432de5fe7	0
Name: brastk.exe MD5: ee7ae1157156d7662dadfb0432de5fe7 Size: 10.24 KB (10240 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
28.	brastk.exe	052bef82410c2a95f6fb5f40a56f938a	0
Name: brastk.exe MD5: 052bef82410c2a95f6fb5f40a56f938a Size: 9.72 KB (9728 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
29.	wndutl32.dll	b46b058b17436d9e9f24796cecce1331	0
Name: wndutl32.dll MD5: b46b058b17436d9e9f24796cecce1331 Size: 13.31 KB (13312 bytes) Detections: 0 Type: Dynamic link library Group: Malware file Last Updated: December 11, 2009
30.	syssfzvakqg.exe	0ccc1ea478cf45b1189f7e531e4ad229	0
Name: syssfzvakqg.exe MD5: 0ccc1ea478cf45b1189f7e531e4ad229 Size: 85.05 KB (85056 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
31.	g.exe	ce0c70e053cfbe095748bc32f9f10ca0	0
Name: g.exe MD5: ce0c70e053cfbe095748bc32f9f10ca0 Size: 75.77 KB (75776 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
32.	sysutrnez.exe	f460dc012d03d62b1f0612980744dd89	0
Name: sysutrnez.exe MD5: f460dc012d03d62b1f0612980744dd89 Size: 81.47 KB (81472 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
33.	wupeng.exe	af218469a34d83ec823b244043ea2539	0
Name: wupeng.exe MD5: af218469a34d83ec823b244043ea2539 Size: 12.28 KB (12288 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
34.	antivirusinstallfull_en[1].exe	ca6412ac274fba0631911c727175a9af	0
Name: antivirusinstallfull_en[1].exe MD5: ca6412ac274fba0631911c727175a9af Size: 181.01 KB (181016 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
35.	braviax.exe	28126e85f8dfe09152088993fb508c9a	0
Name: braviax.exe MD5: 28126e85f8dfe09152088993fb508c9a Size: 16.89 KB (16896 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
36.	ctfmon.exe	1a2f06038bababf753dddbfc5b346551	0
Name: ctfmon.exe MD5: 1a2f06038bababf753dddbfc5b346551 Size: 352.76 KB (352768 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: January 8, 2010
37.	servicelayer.exe	7b0d1819829ac709d1c1d41fc04ebd15	0
Name: servicelayer.exe MD5: 7b0d1819829ac709d1c1d41fc04ebd15 Size: 353.28 KB (353280 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: January 8, 2010
38.	file.exe	6812e2dea82a11a9d5f4c64623ae9a26	0
Name: file.exe MD5: 6812e2dea82a11a9d5f4c64623ae9a26 Size: 368.64 KB (368640 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: May 31, 2016

More files

Registry Details

Trojan.Renos may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

RUNNING PROGRAMpphcj7cj0ea59.exe

RUNNING PROGRAMwcs.exe

HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ sprof

RUNNING PROGRAMpphcpgsj0ega1.exe

HKEY_CURRENT_USERSOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN Lsass Service

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{1AB6932F-92FE-42E6-870C-544AE458EA78}

HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerSharedTaskScheduler{b36d60c8-e1ce-464e-b74c-8128a627ef56}

RUNNING PROGRAMpphcc4dj0epbv.exe

RUNNING PROGRAMiebtm.exe

HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ realtecss

Promote SpyHunter via ShareASale & Get a 55% Payout

Search

Change Region

Trojan.Renos

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove Trojan.Renos

File System Details

Registry Details

Submit Comment

Related Posts

Trojan.Renos.J

Trojan.Renos.G

Trending

1xlite-230379.top

Bgjs Ransomware

Bgzq Ransomware

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?