RES_AB4.EXE - Dangerous
RES_AB4.EXE
Jeff's Story:
My PC had gotten a bad rootkit that my ISP antivirus software (powered by McAfee) could not detect, nor could fix.
I sought a solution on the Internet and discovered your product and tried out the trial.
You quickly found the rootkit and SAVED my PC!
I haven't had any problems since, and I'm extremely grateful.
Manual removal instructions:
RES_AB4.EXE is known as: Malware.Virut [PCTools] W32.Virut.CF [Symantec] Virus.Win32.Virut.ce [Kaspersky Lab] W32/Virut.n.gen [McAfee] W32/Scribble-B [Sophos] Virus.Win32.Virut [Ikarus] Win32/Virut.F [AhnLab].
MD5 of RES_AB4.EXE = BF2407B0A92E10822F270F492FC7E99D
RES_AB4.EXE size is 84992 bytes.
Full path on a computer: %WINDIR%\TEMP\ RES_AB4.EXE
Related Files:
%WINDIR%\TEMP\15.TMP
%WINDIR%\TEMP\ FB_SPAM_AB4.EXE
%APPDATA%\MACROMEDIA\FLASH PLAYER\MACROMEDIA.COM\SUPPORT\FLASHPLAYER\SYS\#CANDYSTAND.COM\SETTINGS.SOL
%APPDATA%\MACROMEDIA\FLASH PLAYER\MACROMEDIA.COM\SUPPORT\FLASHPLAYER\SYS\SETTINGS.SOL
%WINDIR%\TEMP\ RES_AB4.EXE
%WINDIR%\TEMP\ MAIN.EXE
%DESKTOPDIR%\RAILA ODINGA.GIF
%WINDIR%\TEMP\6.TMP
%TEMP%\34BYL.EXE
%TEMP%\4.TMP
%TEMP%\9.TMP
%TEMP%\9CHO4.LOG
%TEMP%\NSW2.TMP\SYSTEM.DLL
%TEMP%\O6JV.EXE
%PROGRAMS%\STARTUP\[FILENAME OF THE SAMPLE #1 WITHOUT EXTENSION].LNK
%WINDIR%\DUMP28E4.TMP
%FONTSDIR%\SERVICES.EXE
%WINDIR%\TEMP\6H0ZB460H.EXE
%SYSTEM%\6C6S4.LOG
%SYSTEM%\ANGYAOO.LOG
%SYSTEM%\COMSATS.SYS
%SYSTEM%\DRIVERS\[FILENAME OF THE SAMPLE #1]
%SYSTEM%\GUYIK45HBH.EXE
%SYSTEM%\GUYIK45HBH.TXT
%WINDIR%\TEMP\QTJEJ4DC.EXE
%SYSTEM%\INSTALL.TXT
%SYSTEM%\NWCWKS.DLL
%SYSTEM%\SERVICE.SYS
%SYSTEM%\UPDATA.EXE
%WINDIR%\TEMP\486EQ056D.EXE
%WINDIR%\TASKS\FBAGENT.JOB
%WINDIR%\TEMP\1.JPG
%WINDIR%\TEMP\2.JPG
%WINDIR%\TEMP\5RNONQGB.EXE
%WINDIR%\TEMP\7.TMP
%WINDIR%\TEMP\8.TMP
%WINDIR%\TEMP\9CHO4.LOG
%WINDIR%\TEMP\9RX6P3P5I.EXE
%WINDIR%\TEMP\A.TMP
%WINDIR%\TEMP\C.TMP
%WINDIR%\TEMP\FILE.EXE
%WINDIR%\TEMP\INDEX.HTML