Virus.Win32.Suspic.gen
Virus.Win32.Suspic.gen is a dangerous virus, which is delivered via security tool exploits or existing network vulnerabilities. Virus.Win32.Suspic.gen is made to corrupt an affected computer system in the background without its victim's permission and knowledge. Virus.Win32.Suspic.gen uses a large amount of system resources to slow down your machine by running in the background. Virus.Win32.Suspic.gen enables remote cyber-criminals obtain access to the targeted PC. Virus.Win32.Suspic.gen can collect and forward your personal information to a remote cyber-criminal for illegitimate actions. It is recommended to remove Virus.Win32.Suspic.gen to protect your computer from damage.
File System Details
Virus.Win32.Suspic.gen may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Windir%\Temp\arp.bat | |
| 2. | %AppData%\LocalAccountAuthority.bat | |
| 3. | %AppData%\MouseDriver.bat | |
| 4. | %Windir%\Temp\185296.dll | |
| 5. | %System%\nwcwks.dll | |
| 6. | %AppData%\manager.exe | |
| 7. | %AppData%\ufooz13y.exe | |
| 8. | %Temp%\271859.dll | |
| 9. | %System%\eghmi3.exe | |
| 10. | %AppData%\lssas.exe | |
| 11. | %AppData%\Plug.bat | |
| 12. | %AppData%\5ryy.log | |
| 13. | %AppData%\mlog |
Registry Details
Virus.Win32.Suspic.gen may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MouseDriver
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Plug Manager\Security
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Local Account Authority Service\Security
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\VRT2\DEBUG
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\NWCWorkstation\Security
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Plug Manager\Security
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDORSYS
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\VRT2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Plug Manager
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NWCWORKSTATION\0000\Control
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.