virus/win32.Downloader.gen (vsnphv71.exe)
in [Viruses]
|
Prev: Question regarding logging onto a site via fingerprint scanner
Next: TT Livescan Database Update 4-3-10
From: russg on 30 Mar 2010 21:53 While looking at my startups with Codestuff Starter, I noticed a file named vsnphv71.exe in my Windows directory. I disabled it and went to see. It was in the Windows directory and has an icon, so it is in the registry. Virus Total had 6 hits: a-squared 4.5.0.50 2010.01.30 - AhnLab-V3 5.0.0.2 2010.01.30 - AntiVir 7.9.1.154 2010.01.29 - Antiy-AVL 2.0.3.7 2010.01.28 Virus/Win32.Downloader.gen Authentium 5.2.0.5 2010.01.30 - Avast 4.8.1351.0 2010.01.30 - AVG 9.0.0.730 2010.01.30 - BitDefender 7.2 2010.01.30 - CAT-QuickHeal 10.00 2010.01.30 Trojan.Agent.ATV ClamAV0.96.0.0-git 2010.01.30 - Comodo 3761 2010.01.30 - DrWeb 5.0.1.12222 2010.01.30 - eSafe 7.0.17.0 2010.01.28 - eTrust-Vet 35.2.7271 2010.01.29 - F-Prot 4.5.1.85 2010.01.29 - F-Secure 9.0.15370.0 2010.01.29 - Fortinet 4.0.14.0 2010.01.30 - GData 19 2010.01.30 - Ikarus T3.1.1.80.0 2010.01.30 - Jiangmin 13.0.900 2010.01.28 Trojan/Snapshotvw.a K7AntiVirus 7.10.960 2010.01.29 - Kaspersky 7.0.0.125 2010.01.30 - McAfee 5876 2010.01.29 - McAfee+Artemis5876 2010.01.29 Artemis!50F7FF075722 McAfee-GW-Edition6.8.5 2010.01.30 Heuristic.BehavesLike.Win32.Rootkit.L Microsoft 1.5406 2010.01.30 - NOD32 4820 2010.01.30 - Norman 6.04.03 2010.01.30 - nProtect 2009.1.8.0 2010.01.30 Trojan/W32.Snapshotvw. 32768 Panda 10.0.2.2 2010.01.30 - PCTools 7.0.3.5 2010.01.30 - Prevx 3.0 2010.01.30 - Rising 22.32.05.04 2010.01.30 - Sophos 4.50.0 2010.01.30 - Sunbelt 3.2.1858.2 2010.01.30 - Symantec 20091.2.0.41 2010.01.30 - TheHacker 6.5.1.0.172 2010.01.30 - TrendMicro 9.120.0.1004 2010.01.30 - VBA32 3.12.12.1 2010.01.29 - ViRobot 2010.1.30.2164 2010.01.30 - VirusBuster 5.0.21.0 2010.01.29 - (Pardon the formatting) So, it is identified as a virus, a trojan and a rootkit. I have removed it from my Windows Directory and Codestuff starter deleted. How do I get rid of it in the registry? And get rid of the icon. ie. how do I finish removing it?
From: David H. Lipman on 30 Mar 2010 22:26
From: "russg" <russgilb(a)sbcglobal.net> | While looking at my startups with Codestuff Starter, I noticed a file | named | vsnphv71.exe in my Windows directory. < snip > | nProtect 2009.1.8.0 2010.01.30 Trojan/W32.Snapshotvw. < snip > | (Pardon the formatting) | So, it is identified as a virus, a trojan and a rootkit. | I have removed it from my Windows Directory and Codestuff starter | deleted. | How do I get rid of it in the registry? And get rid of the icon. ie. | how do I finish | removing it? It is a trojan. Search the registry for; vsnphv71.exe Find what's loading it and remove tghe key. -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp |