WI345d
WI345d is a fake security threat appearing on counterfeit warning notifications, all designed and launched by the rogue anti-spyware program known as Windows Security Suite. These WI345d pop-up windows read as follows:
"Windows Security Alert!
To help protect your computer, Windows Firewall has blocked some features of this progrma. Do you want to keep blocking this program? Name: WI345d; Publisher: Unknown... Windows Firewall has blocked this program from accepting connections from the Internet or a network. If you recognize the program or trust the publisher, you can unblock it. When should I unblock a program?"
This WI345d is a fake and should not be taken lightly. Following the prompts will only cause the user to purchase and download the fake spyware remover Windows Security Suite. Instead, remove both the rogue spyware remover and WI345d from the computer as soon as they are detected.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %UserProfile%\Recent\energy.dll | |
| 2. | %UserProfile%\Recent\PE.dll | |
| 3. |
C:\Documents and Settings\ |
|
| 4. |
C:\Documents and Settings\ |
|
| 5. | %UserProfile%\Recent\std.exe | |
| 6. | %UserProfile%\Recent\tempdoc.dll | |
| 7. | %UserProfile%\Recent\SM.dll | |
| 8. |
C:\Documents and Settings\ |
|
| 9. | %UserProfile%\Recent\grid.sys | |
| 10. | %UserProfile%\Recent\snl2w.exe | |
| 11. | %UserProfile%\Recent\kernel32.dll | |
| 12. | %UserProfile%\Recent\runddl.dll | |
| 13. | %UserProfile%\Recent\grid.dll | |
| 14. | %UserProfile%\Recent\dudl.sys | |
| 15. | %UserProfile%\Recent\CLSV.exe | |
| 16. |
C:\Documents and Settings\ |
|
| 17. | %UserProfile%\Application Data\Windows Security Suite\Instructions.ini | |
| 18. |
C:\Documents and Settings\ |
|
| 19. |
C:\Documents and Settings\ |
|
| 20. | %UserProfile%\Recent\ANTIGEN.drv | |
| 21. | %UserProfile%\Application Data\Windows Security Suite\cookies.sqlite | |
| 22. | c:\ADWARE_LOG | |
| 23. |
C:\Documents and Settings\ |
|
| 24. |
C:\Documents and Settings\ |
|
| 25. | c:\Program Files\Mozilla Firefox\searchplugins\search.xml | |
| 26. |
C:\Documents and Settings\ |
|
| 27. | %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Security Suite.lnk | |
| 28. | %UserProfile%\Start Menu\Windows Security Suite.lnk | |
| 29. | %UserProfile%\Application Data\Windows Security Suite | |
| 30. |
C:\Documents and Settings\ |
|
| 31. | %UserProfile%\Desktop\Windows Security Suite.lnk | |
| 32. | %UserProfile%\Start Menu\Programs\Windows Security Suite.lnk | |
| 33. |
C:\Documents and Settings\ |
|
| 34. | %UserProfile%\Recent\DBOLE.drv | |
| 35. | %UserProfile%\Recent\PE.tmp |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.