Meine Bibliothek
Meine Bibliothek

+ Zur Bibliothek hinzufügen

Support

Ihre Anfragen

Rufen Sie uns an

+7 (495) 789-45-86

Profil

Tool.IMMonitor.17

Added to the Dr.Web virus database: 2012-10-22

Virus description added:

Technical Information

Malicious functions:
Executes the following:
  • <SYSTEM32>\rundll32.exe advpack.dll,DelNodeRunDLL32 "<Full path to virus>"
Modifies file system :
Creates the following files:
  • %WINDIR%\XPlite.log
Deletes the following files:
  • %WINDIR%\inf\netfxocm.PNF
  • %WINDIR%\inf\netfw.PNF
  • %WINDIR%\inf\netgpc.PNF
  • %WINDIR%\inf\netibm.PNF
  • %WINDIR%\inf\netias.PNF
  • %WINDIR%\inf\netforeh.PNF
  • %WINDIR%\inf\netfa410.PNF
  • %WINDIR%\inf\netfa312.PNF
  • %WINDIR%\inf\netfjvi.PNF
  • %WINDIR%\inf\netfore.PNF
  • %WINDIR%\inf\netfjvj.PNF
  • %WINDIR%\inf\netlanem.PNF
  • %WINDIR%\inf\netktc.PNF
  • %WINDIR%\inf\netlanep.PNF
  • %WINDIR%\inf\netlm56.PNF
  • %WINDIR%\inf\netlm.PNF
  • %WINDIR%\inf\netklsi.PNF
  • %WINDIR%\inf\netip6.PNF
  • %WINDIR%\inf\netibm2.PNF
  • %WINDIR%\inf\netiprip.PNF
  • %WINDIR%\inf\netirsir.PNF
  • %WINDIR%\inf\netirda.PNF
  • %WINDIR%\inf\nete100i.PNF
  • %WINDIR%\inf\nete1000.PNF
  • %WINDIR%\inf\netejxmp.PNF
  • %WINDIR%\inf\netel574.PNF
  • %WINDIR%\inf\netel515.PNF
  • %WINDIR%\inf\netdm.PNF
  • %WINDIR%\inf\netdefxa.PNF
  • %WINDIR%\inf\netdav.PNF
  • %WINDIR%\inf\netdf650.PNF
  • %WINDIR%\inf\netdlh5x.PNF
  • %WINDIR%\inf\netdgdxb.PNF
  • %WINDIR%\inf\netepvcm.PNF
  • %WINDIR%\inf\netepro.PNF
  • %WINDIR%\inf\netepvcp.PNF
  • %WINDIR%\inf\netf56n5.PNF
  • %WINDIR%\inf\netex10.PNF
  • %WINDIR%\inf\netepicn.PNF
  • %WINDIR%\inf\netel90a.PNF
  • %WINDIR%\inf\netel5x9.PNF
  • %WINDIR%\inf\netel90b.PNF
  • %WINDIR%\inf\netel99x.PNF
  • %WINDIR%\inf\netel980.PNF
  • %WINDIR%\inf\netrwan.PNF
  • %WINDIR%\inf\netrtsnt.PNF
  • %WINDIR%\inf\netsap.PNF
  • %WINDIR%\inf\netsis.PNF
  • %WINDIR%\inf\netserv.PNF
  • %WINDIR%\inf\netrtpnt.PNF
  • %WINDIR%\inf\netrast.PNF
  • %WINDIR%\inf\netrass.PNF
  • %WINDIR%\inf\netrlw2k.PNF
  • %WINDIR%\inf\netrsvp.PNF
  • %WINDIR%\inf\netrndis.PNF
  • %WINDIR%\inf\nettcpip.PNF
  • %WINDIR%\inf\nettb155.PNF
  • %WINDIR%\inf\nettdkb.PNF
  • %WINDIR%\inf\nettpro.PNF
  • %WINDIR%\inf\nettiger.PNF
  • %WINDIR%\inf\netsnmp.PNF
  • %WINDIR%\inf\netsk_fp.PNF
  • %WINDIR%\inf\netsk98.PNF
  • %WINDIR%\inf\netsla30.PNF
  • %WINDIR%\inf\netsnip.PNF
  • %WINDIR%\inf\netsmc.PNF
  • %WINDIR%\inf\netnf3.PNF
  • %WINDIR%\inf\netnb.PNF
  • %WINDIR%\inf\netngr.PNF
  • %WINDIR%\inf\netnovel.PNF
  • %WINDIR%\inf\netnm.PNF
  • %WINDIR%\inf\netmscli.PNF
  • %WINDIR%\inf\netloop.PNF
  • %WINDIR%\inf\netlnev2.PNF
  • %WINDIR%\inf\netlpd.PNF
  • %WINDIR%\inf\netmhzn5.PNF
  • %WINDIR%\inf\netmadge.PNF
  • %WINDIR%\inf\netpsa.PNF
  • %WINDIR%\inf\netpnic.PNF
  • %WINDIR%\inf\netpschd.PNF
  • %WINDIR%\inf\netrasa.PNF
  • %WINDIR%\inf\netpwr2.PNF
  • %WINDIR%\inf\netpc100.PNF
  • %WINDIR%\inf\netnwlnk.PNF
  • %WINDIR%\inf\netnwcli.PNF
  • %WINDIR%\inf\netoc.PNF
  • %WINDIR%\inf\netosi5.PNF
  • %WINDIR%\inf\netosi2c.PNF
  • %WINDIR%\inf\netctmrk.PNF
  • %WINDIR%\inf\mwmbatam.PNF
  • %WINDIR%\inf\mwavmdm1.PNF
  • %WINDIR%\inf\mwremove.PNF
  • %WINDIR%\inf\mxboard.PNF
  • %WINDIR%\inf\mwtpdsp.PNF
  • %WINDIR%\inf\multiprt.PNF
  • %WINDIR%\inf\mstask.PNF
  • %WINDIR%\inf\mstape.PNF
  • %WINDIR%\inf\msxpsdrv.PNF
  • %WINDIR%\inf\multimed.PNF
  • %WINDIR%\inf\mtxvideo.PNF
  • %WINDIR%\inf\net1394.PNF
  • %WINDIR%\inf\net10.PNF
  • %WINDIR%\inf\net21x4.PNF
  • %WINDIR%\inf\net3c589.PNF
  • %WINDIR%\inf\net3c556.PNF
  • %WINDIR%\inf\neo20xx.PNF
  • %WINDIR%\inf\mymusic.PNF
  • %WINDIR%\inf\mxport.PNF
  • %WINDIR%\inf\nabtsfec.PNF
  • %WINDIR%\inf\ndisuio.PNF
  • %WINDIR%\inf\ndisip.PNF
  • %WINDIR%\inf\msdv.PNF
  • %WINDIR%\inf\mscpqpa1.PNF
  • %WINDIR%\inf\mshdc.PNF
  • %WINDIR%\inf\msmouse.PNF
  • %WINDIR%\inf\msinfo32.PNF
  • %WINDIR%\inf\mqsysoc.PNF
  • %WINDIR%\inf\moviemk.PNF
  • %WINDIR%\inf\monitor8.PNF
  • %WINDIR%\inf\mpe.PNF
  • %WINDIR%\inf\mpsstln.PNF
  • %WINDIR%\inf\mplayer2.PNF
  • %WINDIR%\inf\msoe50.PNF
  • %WINDIR%\inf\msnmsn.PNF
  • %WINDIR%\inf\msports.PNF
  • %WINDIR%\inf\msrio8.PNF
  • %WINDIR%\inf\msrio.PNF
  • %WINDIR%\inf\msnike.PNF
  • %WINDIR%\inf\msmscsi.PNF
  • %WINDIR%\inf\msmqocm.PNF
  • %WINDIR%\inf\msmsgs.PNF
  • %WINDIR%\inf\msnetmtg.PNF
  • %WINDIR%\inf\msmusb.PNF
  • %WINDIR%\inf\netcb102.PNF
  • %WINDIR%\inf\netbrzw.PNF
  • %WINDIR%\inf\netcb325.PNF
  • %WINDIR%\inf\netce2.PNF
  • %WINDIR%\inf\netcbe.PNF
  • %WINDIR%\inf\netbrdgs.PNF
  • %WINDIR%\inf\netbcm4p.PNF
  • %WINDIR%\inf\netbcm4e.PNF
  • %WINDIR%\inf\netbcm4u.PNF
  • %WINDIR%\inf\netbrdgm.PNF
  • %WINDIR%\inf\netbeac.PNF
  • %WINDIR%\inf\netcpqc.PNF
  • %WINDIR%\inf\netclass.PNF
  • %WINDIR%\inf\netcpqg.PNF
  • %WINDIR%\inf\netcpqmt.PNF
  • %WINDIR%\inf\netcpqi.PNF
  • %WINDIR%\inf\netcis.PNF
  • %WINDIR%\inf\netcem28.PNF
  • %WINDIR%\inf\netce3.PNF
  • %WINDIR%\inf\netcem33.PNF
  • %WINDIR%\inf\netcicap.PNF
  • %WINDIR%\inf\netcem56.PNF
  • %WINDIR%\inf\net656c5.PNF
  • %WINDIR%\inf\net650d.PNF
  • %WINDIR%\inf\net656n5.PNF
  • %WINDIR%\inf\net83820.PNF
  • %WINDIR%\inf\net713.PNF
  • %WINDIR%\inf\net575nt.PNF
  • %WINDIR%\inf\net3sr.PNF
  • %WINDIR%\inf\net3c985.PNF
  • %WINDIR%\inf\net5515n.PNF
  • %WINDIR%\inf\net559ib.PNF
  • %WINDIR%\inf\net557.PNF
  • %WINDIR%\inf\netana.PNF
  • %WINDIR%\inf\netan983.PNF
  • %WINDIR%\inf\netasp2k.PNF
  • %WINDIR%\inf\netb57xp.PNF
  • %WINDIR%\inf\netauni.PNF
  • %WINDIR%\inf\netamdhl.PNF
  • %WINDIR%\inf\netali.PNF
  • %WINDIR%\inf\net8511.PNF
  • %WINDIR%\inf\netambi.PNF
  • %WINDIR%\inf\netamd2.PNF
  • %WINDIR%\inf\netamd.PNF
  • %WINDIR%\inf\volsnap.PNF
  • %WINDIR%\inf\viafir2k.PNF
  • %WINDIR%\inf\volume.PNF
  • %WINDIR%\inf\wave.PNF
  • %WINDIR%\inf\wab50.PNF
  • %WINDIR%\inf\vgx.PNF
  • %WINDIR%\inf\usbport.PNF
  • %WINDIR%\inf\usb.PNF
  • %WINDIR%\inf\usbprint.PNF
  • %WINDIR%\inf\usbvideo.PNF
  • %WINDIR%\inf\usbstor.PNF
  • %WINDIR%\inf\wdma_aur.PNF
  • %WINDIR%\inf\wdma_ali.PNF
  • %WINDIR%\inf\wdma_avc.PNF
  • %WINDIR%\inf\wdma_csc.PNF
  • %WINDIR%\inf\wdma_azt.PNF
  • %WINDIR%\inf\wdmaudio.PNF
  • %WINDIR%\inf\wbemsnmp.PNF
  • %WINDIR%\inf\wbemoc.PNF
  • %WINDIR%\inf\wbfirdma.PNF
  • %WINDIR%\inf\wdma10k1.PNF
  • %WINDIR%\inf\wceusbsh.PNF
  • %WINDIR%\inf\SYSOC.PNF
  • %WINDIR%\inf\syscomp.PNF
  • %WINDIR%\inf\syssetup.PNF
  • %WINDIR%\inf\tape.PNF
  • %WINDIR%\inf\tabletpc.PNF
  • %WINDIR%\inf\swnt.PNF
  • %WINDIR%\inf\stillcam.PNF
  • %WINDIR%\inf\sti.PNF
  • %WINDIR%\inf\streamip.PNF
  • %WINDIR%\inf\swflash.PNF
  • %WINDIR%\inf\SVCPACK.PNF
  • %WINDIR%\inf\tsoc.PNF
  • %WINDIR%\inf\tshoot.PNF
  • %WINDIR%\inf\umax.PNF
  • %WINDIR%\inf\unknown.PNF
  • %WINDIR%\inf\umaxpp.PNF
  • %WINDIR%\inf\tsbvcap.PNF
  • %WINDIR%\inf\tgiu.PNF
  • %WINDIR%\inf\tdibth.PNF
  • %WINDIR%\inf\trid3d.PNF
  • %WINDIR%\inf\tridxp.PNF
  • %WINDIR%\inf\tridkb.PNF
  • %WINDIR%\inf\wmfsdk.PNF
  • %WINDIR%\inf\wmdm.PNF
  • %WINDIR%\inf\wmp.PNF
  • %WINDIR%\inf\wmtour.PNF
  • %WINDIR%\inf\wmpocm.PNF
  • %WINDIR%\inf\wmaccess.PNF
  • %WINDIR%\inf\wfp5.PNF
  • %WINDIR%\inf\wfp4.PNF
  • %WINDIR%\inf\wfp6.PNF
  • %WINDIR%\inf\wfp8.PNF
  • %WINDIR%\inf\wfp7.PNF
  • %WINDIR%\inf\wtv4.PNF
  • %WINDIR%\inf\wtv3.PNF
  • %WINDIR%\inf\wtv5.PNF
  • %WINDIR%\XPlite.log
  • %WINDIR%\inf\xscan_xp.PNF
  • %WINDIR%\inf\wtv2.PNF
  • %WINDIR%\inf\wsh.PNF
  • %WINDIR%\inf\wordpad.PNF
  • %WINDIR%\inf\wstcodec.PNF
  • %WINDIR%\inf\wtv1.PNF
  • %WINDIR%\inf\wtv0.PNF
  • %WINDIR%\inf\wdma_int.PNF
  • %WINDIR%\inf\wdma_ess.PNF
  • %WINDIR%\inf\wdma_m2e.PNF
  • %WINDIR%\inf\wdma_neo.PNF
  • %WINDIR%\inf\wdma_ne2.PNF
  • %WINDIR%\inf\wdma_es3.PNF
  • %WINDIR%\inf\wdma_ctl.PNF
  • %WINDIR%\inf\wdma_csf.PNF
  • %WINDIR%\inf\wdma_cwr.PNF
  • %WINDIR%\inf\wdma_es2.PNF
  • %WINDIR%\inf\wdma_ens.PNF
  • %WINDIR%\inf\wfp0.PNF
  • %WINDIR%\inf\wdmjoy.PNF
  • %WINDIR%\inf\wfp1.PNF
  • %WINDIR%\inf\wfp3.PNF
  • %WINDIR%\inf\wfp2.PNF
  • %WINDIR%\inf\wdma_ymh.PNF
  • %WINDIR%\inf\wdma_sis.PNF
  • %WINDIR%\inf\wdma_rip.PNF
  • %WINDIR%\inf\wdma_usb.PNF
  • %WINDIR%\inf\wdma_ym2.PNF
  • %WINDIR%\inf\wdma_via.PNF
  • %WINDIR%\inf\stalport.PNF
  • %WINDIR%\inf\ovcam.PNF
  • %WINDIR%\inf\optional.PNF
  • %WINDIR%\inf\ovcomp.PNF
  • %WINDIR%\inf\p2p.PNF
  • %WINDIR%\inf\ovsound.PNF
  • %WINDIR%\inf\oobe.PNF
  • %WINDIR%\inf\oeaccess.PNF
  • %WINDIR%\inf\nvts.PNF
  • %WINDIR%\inf\oem0.PNF
  • %WINDIR%\inf\oem2.PNF
  • %WINDIR%\inf\oem1.PNF
  • %WINDIR%\inf\phil2vid.PNF
  • %WINDIR%\inf\phil1vid.PNF
  • %WINDIR%\inf\phildec.PNF
  • %WINDIR%\inf\pinball.PNF
  • %WINDIR%\inf\philtune.PNF
  • %WINDIR%\inf\phdsext.PNF
  • %WINDIR%\inf\pchealth.PNF
  • %WINDIR%\inf\parhmse.PNF
  • %WINDIR%\inf\pcmcia.PNF
  • %WINDIR%\inf\perm3.PNF
  • %WINDIR%\inf\perm2.PNF
  • %WINDIR%\inf\netw940.PNF
  • %WINDIR%\inf\netw926.PNF
  • %WINDIR%\inf\netwlan.PNF
  • %WINDIR%\inf\netwv48.PNF
  • %WINDIR%\inf\netwlan2.PNF
  • %WINDIR%\inf\netw840.PNF
  • %WINDIR%\inf\nettun.PNF
  • %WINDIR%\inf\nettpsmp.PNF
  • %WINDIR%\inf\netupnp.PNF
  • %WINDIR%\inf\netvt86.PNF
  • %WINDIR%\inf\netupnph.PNF
  • %WINDIR%\inf\nv3.PNF
  • %WINDIR%\inf\ntprint.PNF
  • %WINDIR%\inf\nv4_disp.PNF
  • %WINDIR%\inf\nvdm.PNF
  • %WINDIR%\inf\nvct.PNF
  • %WINDIR%\inf\ntgrip.PNF
  • %WINDIR%\inf\netx500.PNF
  • %WINDIR%\inf\netwzc.PNF
  • %WINDIR%\inf\netx56n5.PNF
  • %WINDIR%\inf\ntapm.PNF
  • %WINDIR%\inf\netxcpq.PNF
  • %WINDIR%\inf\shl_img.PNF
  • %WINDIR%\inf\shell.PNF
  • %WINDIR%\inf\sis300i.PNF
  • %WINDIR%\inf\sisgr.PNF
  • %WINDIR%\inf\sis6306.PNF
  • %WINDIR%\inf\sgiu.PNF
  • %WINDIR%\inf\secdrv.PNF
  • %WINDIR%\inf\sdwndr2k.PNF
  • %WINDIR%\inf\secrecs.PNF
  • %WINDIR%\inf\sffdisk.PNF
  • %WINDIR%\inf\setupqry.PNF
  • %WINDIR%\inf\spxports.PNF
  • %WINDIR%\inf\spx.PNF
  • %WINDIR%\inf\sr.PNF
  • %WINDIR%\inf\srusbusd.PNF
  • %WINDIR%\inf\srchasst.PNF
  • %WINDIR%\inf\sonypvu1.PNF
  • %WINDIR%\inf\skins.PNF
  • %WINDIR%\inf\sisv6326.PNF
  • %WINDIR%\inf\slip.PNF
  • %WINDIR%\inf\smi.PNF
  • %WINDIR%\inf\smartcrd.PNF
  • %WINDIR%\inf\ptpusb.PNF
  • %WINDIR%\inf\ps5333.PNF
  • %WINDIR%\inf\qmgr.PNF
  • %WINDIR%\inf\ricoh.PNF
  • %WINDIR%\inf\ramdisk.PNF
  • %WINDIR%\inf\prtupg9x.PNF
  • %WINDIR%\inf\pnpscsi.PNF
  • %WINDIR%\inf\pmxmcro.PNF
  • %WINDIR%\inf\ppa.PNF
  • %WINDIR%\inf\printupg.PNF
  • %WINDIR%\inf\ppa3.PNF
  • %WINDIR%\inf\sceregvl.PNF
  • %WINDIR%\inf\sbp2.PNF
  • %WINDIR%\inf\scsi.PNF
  • %WINDIR%\inf\sdbus.PNF
  • %WINDIR%\inf\scsidev.PNF
  • %WINDIR%\inf\sapi5.PNF
  • %WINDIR%\inf\s3sav3d.PNF
  • %WINDIR%\inf\rootau.PNF
  • %WINDIR%\inf\s3sav4.PNF
  • %WINDIR%\inf\s3trio3d.PNF
  • %WINDIR%\inf\s3savmx.PNF
  • %WINDIR%\inf\monitor7.PNF
  • %WINDIR%\inf\ie.PNF
  • %WINDIR%\inf\icwnt5.PNF
  • %WINDIR%\inf\ieaccess.PNF
  • %WINDIR%\inf\igames.PNF
  • %WINDIR%\inf\iereset.PNF
  • %WINDIR%\inf\icminst.PNF
  • %WINDIR%\inf\ibmvcap.PNF
  • %WINDIR%\inf\i81xnt5.PNF
  • %WINDIR%\inf\icam3.PNF
  • %WINDIR%\inf\icam5usb.PNF
  • %WINDIR%\inf\icam4usb.PNF
  • %WINDIR%\inf\irdasmc.PNF
  • %WINDIR%\inf\irdaalif.PNF
  • %WINDIR%\inf\irmk7w2k.PNF
  • %WINDIR%\inf\irstusb.PNF
  • %WINDIR%\inf\irnsc.PNF
  • %WINDIR%\inf\irbus.PNF
  • %WINDIR%\inf\image.PNF
  • %WINDIR%\inf\iis.PNF
  • %WINDIR%\inf\ims.PNF
  • %WINDIR%\inf\intl.PNF
  • %WINDIR%\inf\input.PNF
  • %WINDIR%\inf\fsvgadel.PNF
  • %WINDIR%\inf\fsvgaadd.PNF
  • %WINDIR%\inf\fxsocm.PNF
  • %WINDIR%\inf\g400.PNF
  • %WINDIR%\inf\g200.PNF
  • %WINDIR%\inf\fsvga.PNF
  • %WINDIR%\inf\flpydisk.PNF
  • %WINDIR%\inf\flash.PNF
  • %WINDIR%\inf\fltmgr.PNF
  • %WINDIR%\inf\fp40ext.PNF
  • %WINDIR%\inf\font.PNF
  • %WINDIR%\inf\hpdigwia.PNF
  • %WINDIR%\inf\hidserv.PNF
  • %WINDIR%\inf\hpojscan.PNF
  • %WINDIR%\inf\i740nt5.PNF
  • %WINDIR%\inf\hpscan.PNF
  • %WINDIR%\inf\HidDigi.PNF
  • %WINDIR%\inf\games.PNF
  • %WINDIR%\inf\gameport.PNF
  • %WINDIR%\inf\genprint.PNF
  • %WINDIR%\inf\hidbth.PNF
  • %WINDIR%\inf\hal.PNF
  • %WINDIR%\inf\mdmarn.PNF
  • %WINDIR%\inf\mdmarch.PNF
  • %WINDIR%\inf\mdmati.PNF
  • %WINDIR%\inf\mdmatt.PNF
  • %WINDIR%\inf\mdmatm2k.PNF
  • %WINDIR%\inf\mdmar1.PNF
  • %WINDIR%\inf\mdmaiwa3.PNF
  • %WINDIR%\inf\mdmaiwa.PNF
  • %WINDIR%\inf\mdmaiwa4.PNF
  • %WINDIR%\inf\mdmaiwat.PNF
  • %WINDIR%\inf\mdmaiwa5.PNF
  • %WINDIR%\inf\mdmc26a.PNF
  • %WINDIR%\inf\mdmbw561.PNF
  • %WINDIR%\inf\mdmcdp.PNF
  • %WINDIR%\inf\mdmcm28.PNF
  • %WINDIR%\inf\mdmchipv.PNF
  • %WINDIR%\inf\mdmbug3.PNF
  • %WINDIR%\inf\mdmbcmsm.PNF
  • %WINDIR%\inf\mdmaus.PNF
  • %WINDIR%\inf\mdmboca.PNF
  • %WINDIR%\inf\mdmbtmdm.PNF
  • %WINDIR%\inf\mdmbsb.PNF
  • %WINDIR%\inf\ksfilter.PNF
  • %WINDIR%\inf\kscaptur.PNF
  • %WINDIR%\inf\LAYOUT.PNF
  • %WINDIR%\inf\lwngmadi.PNF
  • %WINDIR%\inf\legcydrv.PNF
  • %WINDIR%\inf\ks.PNF
  • %WINDIR%\inf\kdk2x0.PNF
  • %WINDIR%\inf\irtos4mo.PNF
  • %WINDIR%\inf\kdkscan.PNF
  • %WINDIR%\inf\kodak.PNF
  • %WINDIR%\inf\keyboard.PNF
  • %WINDIR%\inf\mdm5674a.PNF
  • %WINDIR%\inf\mdm3mini.PNF
  • %WINDIR%\inf\mdm656n5.PNF
  • %WINDIR%\inf\mdmairte.PNF
  • %WINDIR%\inf\mdmadc.PNF
  • %WINDIR%\inf\mdm3cpcm.PNF
  • %WINDIR%\inf\machine.PNF
  • %WINDIR%\inf\lwusbhid.PNF
  • %WINDIR%\inf\mchgr.PNF
  • %WINDIR%\inf\mdm3com.PNF
  • %WINDIR%\inf\mdac.PNF
  • %WINDIR%\inf\fjtscan.PNF
  • %WINDIR%\inf\battery.PNF
  • %WINDIR%\inf\banshee.PNF
  • %WINDIR%\inf\bda.PNF
  • %WINDIR%\inf\branches.PNF
  • %WINDIR%\inf\biosinfo.PNF
  • %WINDIR%\inf\axant5.PNF
  • %WINDIR%\inf\atixpwdm.PNF
  • %WINDIR%\inf\atividin.PNF
  • %WINDIR%\inf\au.PNF
  • %WINDIR%\inf\avmisdn.PNF
  • %WINDIR%\inf\avc.PNF
  • %WINDIR%\inf\bthpan.PNF
  • %WINDIR%\inf\bth.PNF
  • %WINDIR%\inf\bthprint.PNF
  • %WINDIR%\inf\camdsh20.PNF
  • %WINDIR%\inf\bthspp.PNF
  • %WINDIR%\inf\brmfport.PNF
  • %WINDIR%\inf\brmfcmf.PNF
  • %WINDIR%\inf\brmfcmdm.PNF
  • %WINDIR%\inf\brmfcsto.PNF
  • %WINDIR%\inf\brmfcwia.PNF
  • %WINDIR%\inf\brmfcumd.PNF
  • %WINDIR%\inf\adm_mult.PNF
  • %WINDIR%\inf\acpi.PNF
  • %WINDIR%\inf\adm_port.PNF
  • %WINDIR%\inf\agtinst.PNF
  • %WINDIR%\inf\agp.PNF
  • %WINDIR%\inf\acerscan.PNF
  • %WINDIR%\inf\1394vdbg.PNF
  • %WINDIR%\inf\1394.PNF
  • %WINDIR%\inf\3dfxvs2k.PNF
  • %WINDIR%\inf\accessor.PNF
  • %WINDIR%\inf\61883.PNF
  • %WINDIR%\inf\atiixpag.PNF
  • %WINDIR%\inf\atiixpaa.PNF
  • %WINDIR%\inf\atim128.PNF
  • %WINDIR%\inf\atirage3.PNF
  • %WINDIR%\inf\atimpab.PNF
  • %WINDIR%\inf\ati1xwdm.PNF
  • %WINDIR%\inf\appmig.PNF
  • %WINDIR%\inf\apcompat.PNF
  • %WINDIR%\inf\apps.PNF
  • %WINDIR%\inf\asynceqn.PNF
  • %WINDIR%\inf\asroc.PNF
  • %WINDIR%\inf\dot4.PNF
  • %WINDIR%\inf\divasrv.PNF
  • %WINDIR%\inf\dot4prt.PNF
  • %WINDIR%\inf\drvindex.PNF
  • %WINDIR%\inf\drm.PNF
  • %WINDIR%\inf\divac.PNF
  • %WINDIR%\inf\digirprt.PNF
  • %WINDIR%\inf\digirp.PNF
  • %WINDIR%\inf\dimaps.PNF
  • %WINDIR%\inf\display.PNF
  • %WINDIR%\inf\disk.PNF
  • %WINDIR%\inf\epsnscan.PNF
  • %WINDIR%\inf\epsnmfp.PNF
  • %WINDIR%\inf\epstw2k.PNF
  • %WINDIR%\inf\fdc.PNF
  • %WINDIR%\inf\eqnport.PNF
  • %WINDIR%\inf\epcfw2k.PNF
  • %WINDIR%\inf\dtcnt5.PNF
  • %WINDIR%\inf\dshowext.PNF
  • %WINDIR%\inf\dvd.PNF
  • %WINDIR%\inf\enum1394.PNF
  • %WINDIR%\inf\dwup.PNF
  • %WINDIR%\inf\corelist.PNF
  • %WINDIR%\inf\comnt5.PNF
  • %WINDIR%\inf\cpu.PNF
  • %WINDIR%\inf\cyclad-z.PNF
  • %WINDIR%\inf\ctmaport.PNF
  • %WINDIR%\inf\communic.PNF
  • %WINDIR%\inf\camvid30.PNF
  • %WINDIR%\inf\camvid20.PNF
  • %WINDIR%\inf\ccdecode.PNF
  • %WINDIR%\inf\certclas.PNF
  • %WINDIR%\inf\cdrom.PNF
  • %WINDIR%\inf\dgasync.PNF
  • %WINDIR%\inf\dgaport.PNF
  • %WINDIR%\inf\digiasyn.PNF
  • %WINDIR%\inf\digimps.PNF
  • %WINDIR%\inf\digiisdn.PNF
  • %WINDIR%\inf\dfrg.PNF
  • %WINDIR%\inf\cyyport.PNF
  • %WINDIR%\inf\cyclom-y.PNF
  • %WINDIR%\inf\cyzport.PNF
  • %WINDIR%\inf\devxprop.PNF
  • %WINDIR%\inf\defltwk.PNF
  • %WINDIR%\inf\mdmsmart.PNF
  • %WINDIR%\inf\mdmsiil6.PNF
  • %WINDIR%\inf\mdmsonyu.PNF
  • %WINDIR%\inf\mdmsun1.PNF
  • %WINDIR%\inf\mdmspq28.PNF
  • %WINDIR%\inf\mdmsii64.PNF
  • %WINDIR%\inf\mdmsetup.PNF
  • %WINDIR%\inf\mdmrpciw.PNF
  • %WINDIR%\inf\mdmsgsml.PNF
  • %WINDIR%\inf\mdmsier.PNF
  • %WINDIR%\inf\mdmsgsmu.PNF
  • %WINDIR%\inf\mdmtdkj4.PNF
  • %WINDIR%\inf\mdmtdkj3.PNF
  • %WINDIR%\inf\mdmtdkj5.PNF
  • %WINDIR%\inf\mdmtdkj7.PNF
  • %WINDIR%\inf\mdmtdkj6.PNF
  • %WINDIR%\inf\mdmtdkj2.PNF
  • %WINDIR%\inf\mdmsupr3.PNF
  • %WINDIR%\inf\mdmsun2.PNF
  • %WINDIR%\inf\mdmsupra.PNF
  • %WINDIR%\inf\mdmtdk.PNF
  • %WINDIR%\inf\mdmsuprv.PNF
  • %WINDIR%\inf\mdmpace.PNF
  • %WINDIR%\inf\mdmosice.PNF
  • %WINDIR%\inf\mdmpbit.PNF
  • %WINDIR%\inf\mdmpenr.PNF
  • %WINDIR%\inf\mdmpctel.PNF
  • %WINDIR%\inf\mdmosi.PNF
  • %WINDIR%\inf\mdmnttte.PNF
  • %WINDIR%\inf\mdmnttp2.PNF
  • %WINDIR%\inf\mdmolic.PNF
  • %WINDIR%\inf\mdmoptn.PNF
  • %WINDIR%\inf\mdmomrn3.PNF
  • %WINDIR%\inf\mdmrock3.PNF
  • %WINDIR%\inf\mdmrock.PNF
  • %WINDIR%\inf\mdmrock4.PNF
  • %WINDIR%\inf\mdmrpci.PNF
  • %WINDIR%\inf\mdmrock5.PNF
  • %WINDIR%\inf\mdmrisa.PNF
  • %WINDIR%\inf\mdmpn1.PNF
  • %WINDIR%\inf\mdmpin.PNF
  • %WINDIR%\inf\mdmpp.PNF
  • %WINDIR%\inf\mdmracal.PNF
  • %WINDIR%\inf\mdmpsion.PNF
  • %WINDIR%\inf\mfmhzn5.PNF
  • %WINDIR%\inf\mflm56.PNF
  • %WINDIR%\inf\mfosi5.PNF
  • %WINDIR%\inf\mfsupra.PNF
  • %WINDIR%\inf\mfsocket.PNF
  • %WINDIR%\inf\mflm.PNF
  • %WINDIR%\inf\mfcem28.PNF
  • %WINDIR%\inf\mf.PNF
  • %WINDIR%\inf\mfcem33.PNF
  • %WINDIR%\inf\mff56n5.PNF
  • %WINDIR%\inf\mfcem56.PNF
  • %WINDIR%\inf\monitor3.PNF
  • %WINDIR%\inf\monitor2.PNF
  • %WINDIR%\inf\monitor4.PNF
  • %WINDIR%\inf\monitor6.PNF
  • %WINDIR%\inf\monitor5.PNF
  • %WINDIR%\inf\monitor.PNF
  • %WINDIR%\inf\mgau.PNF
  • %WINDIR%\inf\mfx56nf.PNF
  • %WINDIR%\inf\minioc.PNF
  • %WINDIR%\inf\modemcsa.PNF
  • %WINDIR%\inf\mmopt.PNF
  • %WINDIR%\inf\mdmusrk1.PNF
  • %WINDIR%\inf\mdmusrgl.PNF
  • %WINDIR%\inf\mdmusrsp.PNF
  • %WINDIR%\inf\mdmvv.PNF
  • %WINDIR%\inf\mdmvdot.PNF
  • %WINDIR%\inf\mdmusrg.PNF
  • %WINDIR%\inf\mdmti.PNF
  • %WINDIR%\inf\mdmtexas.PNF
  • %WINDIR%\inf\mdmtosh.PNF
  • %WINDIR%\inf\mdmusrf.PNF
  • %WINDIR%\inf\mdmtron.PNF
  • %WINDIR%\inf\mdmzyxlg.PNF
  • %WINDIR%\inf\mdmzyxel.PNF
  • %WINDIR%\inf\medctroc.PNF
  • %WINDIR%\inf\memstpci.PNF
  • %WINDIR%\inf\memcard.PNF
  • %WINDIR%\inf\mdmzyp.PNF
  • %WINDIR%\inf\mdmx5560.PNF
  • %WINDIR%\inf\mdmwhql0.PNF
  • %WINDIR%\inf\mdmxircc.PNF
  • %WINDIR%\inf\mdmzoom.PNF
  • %WINDIR%\inf\mdmxirmp.PNF
  • %WINDIR%\inf\mdmnttp.PNF
  • %WINDIR%\inf\mdmgen.PNF
  • %WINDIR%\inf\mdmgcs.PNF
  • %WINDIR%\inf\mdmgl001.PNF
  • %WINDIR%\inf\mdmgl003.PNF
  • %WINDIR%\inf\mdmgl002.PNF
  • %WINDIR%\inf\mdmgatew.PNF
  • %WINDIR%\inf\mdmess.PNF
  • %WINDIR%\inf\mdmeric2.PNF
  • %WINDIR%\inf\mdmetech.PNF
  • %WINDIR%\inf\mdmfj2.PNF
  • %WINDIR%\inf\mdmexp.PNF
  • %WINDIR%\inf\mdmgsm.PNF
  • %WINDIR%\inf\mdmgl010.PNF
  • %WINDIR%\inf\mdmhaeu.PNF
  • %WINDIR%\inf\mdmhandy.PNF
  • %WINDIR%\inf\mdmhamrw.PNF
  • %WINDIR%\inf\mdmgl009.PNF
  • %WINDIR%\inf\mdmgl005.PNF
  • %WINDIR%\inf\mdmgl004.PNF
  • %WINDIR%\inf\mdmgl006.PNF
  • %WINDIR%\inf\mdmgl008.PNF
  • %WINDIR%\inf\mdmgl007.PNF
  • %WINDIR%\inf\mdmcrtix.PNF
  • %WINDIR%\inf\mdmcpv.PNF
  • %WINDIR%\inf\mdmcxsf2.PNF
  • %WINDIR%\inf\mdmdcm5.PNF
  • %WINDIR%\inf\mdmcxsft.PNF
  • %WINDIR%\inf\mdmcpq2.PNF
  • %WINDIR%\inf\mdmcom1.PNF
  • %WINDIR%\inf\mdmcodex.PNF
  • %WINDIR%\inf\mdmcommu.PNF
  • %WINDIR%\inf\mdmcpq.PNF
  • %WINDIR%\inf\mdmcomp.PNF
  • %WINDIR%\inf\mdmdyna.PNF
  • %WINDIR%\inf\mdmdsi.PNF
  • %WINDIR%\inf\mdmeiger.PNF
  • %WINDIR%\inf\mdmeric.PNF
  • %WINDIR%\inf\mdmelsa.PNF
  • %WINDIR%\inf\mdmdp2.PNF
  • %WINDIR%\inf\mdmdf56F.PNF
  • %WINDIR%\inf\mdmdcm6.PNF
  • %WINDIR%\inf\mdmdgden.PNF
  • %WINDIR%\inf\mdmdigi.PNF
  • %WINDIR%\inf\mdmdgitn.PNF
  • %WINDIR%\inf\mdmmoto1.PNF
  • %WINDIR%\inf\mdmmoto.PNF
  • %WINDIR%\inf\mdmmotou.PNF
  • %WINDIR%\inf\mdmneuhs.PNF
  • %WINDIR%\inf\mdmmts.PNF
  • %WINDIR%\inf\mdmmod.PNF
  • %WINDIR%\inf\mdmmhza.PNF
  • %WINDIR%\inf\mdmmhrtz.PNF
  • %WINDIR%\inf\mdmmhzel.PNF
  • %WINDIR%\inf\mdmminij.PNF
  • %WINDIR%\inf\mdmmhzk1.PNF
  • %WINDIR%\inf\mdmntt1.PNF
  • %WINDIR%\inf\mdmntstm.PNF
  • %WINDIR%\inf\mdmnttd2.PNF
  • %WINDIR%\inf\mdmnttme.PNF
  • %WINDIR%\inf\mdmnttd6.PNF
  • %WINDIR%\inf\mdmnova.PNF
  • %WINDIR%\inf\Mdmnis2u.PNF
  • %WINDIR%\inf\Mdmnis1u.PNF
  • %WINDIR%\inf\Mdmnis3t.PNF
  • %WINDIR%\inf\mdmnokia.PNF
  • %WINDIR%\inf\Mdmnis5t.PNF
  • %WINDIR%\inf\MDMJF56E.PNF
  • %WINDIR%\inf\mdmisdn.PNF
  • %WINDIR%\inf\mdmke.PNF
  • %WINDIR%\inf\mdmlasat.PNF
  • %WINDIR%\inf\mdmkortx.PNF
  • %WINDIR%\inf\mdmirmdm.PNF
  • %WINDIR%\inf\mdmhayes.PNF
  • %WINDIR%\inf\mdmhay2.PNF
  • %WINDIR%\inf\mdminfot.PNF
  • %WINDIR%\inf\mdmiodat.PNF
  • %WINDIR%\inf\mdmintel.PNF
  • %WINDIR%\inf\mdmmcom.PNF
  • %WINDIR%\inf\mdmmcd.PNF
  • %WINDIR%\inf\mdmmct.PNF
  • %WINDIR%\inf\mdmmetri.PNF
  • %WINDIR%\inf\mdmmega.PNF
  • %WINDIR%\inf\mdmmc288.PNF
  • %WINDIR%\inf\mdmlt3.PNF
  • %WINDIR%\inf\mdmlasno.PNF
  • %WINDIR%\inf\mdmltleo.PNF
  • %WINDIR%\inf\mdmlucnt.PNF
  • %WINDIR%\inf\mdmltsft.PNF
Deletes itself.
Miscellaneous:
Searches for the following windows:
  • ClassName: 'MS_WINHELP' WindowName: ''

Curing recommendations

  1. If the operating system (OS) can be loaded (either normally or in safe mode), download Dr.Web Security Space and run a full scan of your computer and removable media you use. More about Dr.Web Security Space.
  2. If you cannot boot the OS, change the BIOS settings to boot your system from a CD or USB drive. Download the image of the emergency system repair disk Dr.Web® LiveDisk , mount it on a USB drive or burn it to a CD/DVD. After booting up with this media, run a full scan and cure all the detected threats.
Download Dr.Web

Download by serial number

Use Dr.Web Anti-virus for macOS to run a full scan of your Mac.

After booting up, run a full scan of all disk partitions with Dr.Web Anti-virus for Linux.

Download Dr.Web

Download by serial number

  1. If the mobile device is operating normally, download and install Dr.Web for Android. Run a full system scan and follow recommendations to neutralize the detected threats.
  2. If the mobile device has been locked by Android.Locker ransomware (the message on the screen tells you that you have broken some law or demands a set ransom amount; or you will see some other announcement that prevents you from using the handheld normally), do the following:
    • Load your smartphone or tablet in the safe mode (depending on the operating system version and specifications of the particular mobile device involved, this procedure can be performed in various ways; seek clarification from the user guide that was shipped with the device, or contact its manufacturer);
    • Once you have activated safe mode, install the Dr.Web for Android onto the infected handheld and run a full scan of the system; follow the steps recommended for neutralizing the threats that have been detected;
    • Switch off your device and turn it on as normal.

Find out more about Dr.Web for Android