Win32.downloader.gen Description
Type: TrojanWin32.downloader.gen is a Trojan downloader that propagates to targeted PCs with the help of social engineering. Win32.downloader.gen will strive to control and induce a victim to carry out an action or to reveal private details inadvertently or against his/her will. Win32.downloader.gen can also circulate via spam email messages carrying malevolent attachments. Win32.downloader.gen can distribute other malware infections to the corrupted PC. While being installed, Win32.downloader.gen makes system changes by dropping and executing harmful files. Win32.downloader.gen can grab confidential information, incorporating running Windows version on the compromised PC.
Technical Information
File System Details
Win32.downloader.gen creates the following file(s):
| # | File Name | Detection Count |
|---|---|---|
| 1 | C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe | N/A |
| 2 | C:\Windows\system32\lsm.exe | N/A |
| 3 | C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe | N/A |
| 4 | C:\Windows\system32\SLsvc.exe | N/A |
| 5 | C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE | N/A |
| 6 | C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe | N/A |
| 7 | C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe | N/A |
| 8 | C:\Program Files\Creative\Volume Panel\VolPanlu.exe | N/A |
| 9 | C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe | N/A |
| 10 | C:\Windows\system32\dmwu.exe | N/A |
| 11 | C:\Windows\system32\WebUpdateSvc4.exe | N/A |
| 12 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe | N/A |
| 13 | C:\Windows\system32\Dwm.exe | N/A |
| 14 | C:\Program Files\Windows Media Player\wmpnscfg.exe | N/A |
| 15 | C:\Windows\SYSTEM32\CTXFISPI.EXE | N/A |
| 16 | C:\Program Files\iPod\bin\iPodService.exe | N/A |
| 17 | C:\Program Files\Microsoft Security Client\msseces.exe | N/A |
| 18 | C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe | N/A |
| 19 | C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe | N/A |
| 20 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| 21 | C:\Windows\system32\SearchFilterHost.exe | N/A |
| 22 | C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe | N/A |
| 23 | C:\Windows\system32\vssvc.exe | N/A |
| 24 | c:\Program Files\Microsoft Security Client\MsMpEng.exe | N/A |
| 25 | C:\Windows\system32\wininit.exe | N/A |
| 26 | C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe | N/A |
| 27 | C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe | N/A |
| 28 | C:\Windows\System32\spoolsv.exe | N/A |
| 29 | C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe | N/A |
| 30 | C:\Program Files\Web Assistant\ExtensionUpdaterService.exe | N/A |
| 31 | C:\Windows\system32\taskeng.exe | N/A |
| 32 | C:\Program Files\Verizon\McciTrayApp.exe | N/A |
| 33 | C:\Windows\System32\Ctxfihlp.exe | N/A |
| 34 | C:\Windows\system32\lxbccoms.exe | N/A |
| 35 | C:\Windows\system32\SearchIndexer.exe | N/A |
| 36 | c:\Program Files\Microsoft Security Client\NisSrv.exe | N/A |
| 37 | C:\Windows\System32\jmdp\stij.exe | N/A |
| 38 | C:\Program Files\Garmin\Express Tray\ExpressTray.exe | N/A |
| 39 | C:\Windows\ehome\ehsched.exe | N/A |
| 40 | C:\Windows\ehome\ehRecvr.exe | N/A |
| 41 | C:\Program Files\iTunes\iTunesHelper.exe | N/A |
| 42 | C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe | N/A |
| 43 | C:\Program Files\Skype\Phone\Skype.exe | N/A |
| 44 | C:\Windows\system32\SearchProtocolHost.exe | N/A |
| 45 | C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe | N/A |
| 46 | C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe | N/A |
| 47 | C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe | N/A |
| 48 | C:\Program Files\Creative\Shared Files\CTAudSvc.exe | N/A |
| 49 | C:\Windows\system32\nvvsvc.exe | N/A |
| 50 | C:\Program Files\Bonjour\mDNSResponder.exe | N/A |
| 51 | C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe | N/A |
| 52 | C:\Program Files\Common Files\Motive\McciCMService.exe | N/A |
| 53 | C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe | N/A |
| 54 | C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe | N/A |
| 55 | C:\Windows\WindowsMobile\wmdcBase.exe | N/A |
| 56 | C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe | N/A |
| 57 | C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe | N/A |
| 58 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE | N/A |
| 59 | C:\Windows\System32\WUDFHost.exe | N/A |
| 60 | C:\Windows\Explorer.EXE | N/A |
| 61 | C:\Program Files\Windows Media Player\wmpnetwk.exe | N/A |
| 62 | C:\Windows\ehome\ehmsas.exe | N/A |
| 63 | C:\Windows\System32\mobsync.exe | N/A |
| 64 | C:\Program Files\NVIDIA Corporation\Display\nvtray.exe | N/A |
| 65 | C:\Windows\ehome\ehtray.exe | N/A |
| 66 | C:\Program Files\Google\Drive\googledrivesync.exe | N/A |
| 67 | C:\Users\GregAdmin\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe | N/A |
| 68 | C:\Windows\system32\wbem\wmiprvse.exe | N/A |
| 69 | C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe | N/A |
| 70 | C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted | N/A |
| 71 | C:\Windows\system32\svchost.exe -k GPSvcGroup | N/A |
| 72 | C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork | N/A |
| 73 | C:\Windows\System32\svchost.exe -k WerSvcGroup | N/A |
| 74 | C:\Windows\System32\svchost.exe -k swprv | N/A |
| 75 | C:\Windows\system32\svchost.exe -k rpcss | N/A |
| 76 | C:\Windows\system32\svchost.exe -k netsvcs | N/A |
| 77 | C:\Windows\system32\svchost.exe -k NetworkService | N/A |
| 78 | C:\Windows\system32\svchost.exe -k imgsvc | N/A |
| 79 | C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation | N/A |
| 80 | C:\Windows\system32\svchost.exe -k DcomLaunch | N/A |
| 81 | C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted | N/A |
| 82 | C:\Windows\system32\svchost.exe -k LocalService | N/A |
| 83 | C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted | N/A |
| 84 | C:\Windows\system32\svchost.exe -k WindowsMobile | N/A |
Site Disclaimer
Enigmasoftware.com is not associated, affiliated, sponsored or owned
by the malware creators or distributors mentioned on this article. This article should NOT be
mistaken or confused in being associated in any way with the promotion or endorsement of malware.
Our intent is to provide information that will educate computer users on how to detect, and ultimately
remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on
this article.
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.