Saturday, November 15, 2008

Swizzor Trojan

Click here to remove Swizzor malware
Swizzor description:
Swizzor Category:Trojan,Adware,Downloader
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer.

The downloader either launches the new malware or registers it to enable autorun
according to the local operating system requirements.

Detection Swizzor :

Swizzor Files:
[%APPDATA%]\01ACIDSECOND\ctyordzi.exe
[%APPDATA%]\Help Stupid Comp\fptlqgnu.exe
[%APPDATA%]\Hide Amok Joy\dncpxekv.exe
[%APPDATA%]\Hide Amok Joy\dxqdnnbs.exe
[%APPDATA%]\Hide Amok Joy\ikhuzxfh.exe
[%APPDATA%]\Hide Amok Joy\kddczdny.exe
[%APPDATA%]\Hide Amok Joy\xorvputf.exe
[%APPDATA%]\LOGIDOLROAM\troshemh.exe
[%APPDATA%]\UPLOCKS\rlggvcbr.exe
[%COMMON_APPDATA%]\Barb plus chic wait\REGS JUNK.exe
[%PROFILE_TEMP%]\bis508.exe
[%PROFILE_TEMP%]\bis7D2.exe
[%PROFILE_TEMP%]\pft20~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft22~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft2A~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft2C~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft3~tmp\PatchWr.exe
[%PROFILE_TEMP%]\Temporary Directory 1 for paint brushes Bittorrent downloader.zip\BitDownload fastets Bittorrent downloader.exe
[%APPDATA%]\admindeafacidtrust\browseamen.exe
[%APPDATA%]\idolonceprogrambits\battons.exe
[%APPDATA%]\Manager Window Jump Dent\Data Up.exe
[%APPDATA%]\Manager Window Jump Dent\realfor.exe
[%APPDATA%]\Manager Window Jump Dent\Regs Eggs.exe
[%APPDATA%]\Manager Window Jump Dent\SendDogWma
[%APPDATA%]\software book style vc\bash mags.exe
[%APPDATA%]\thunk plus chin defy\cash multi.exe
[%DESKTOP%]\htmato1857.exe
[%PROFILE%]\Lokala inst%E4llningar\Temp\bis508.exe
[%PROFILE%]\programdata\chinwarnintracool\hidelive.exe
[%PROFILE_TEMP%]\6bd5111a.exe
[%PROFILE_TEMP%]\aade6.exe
[%PROFILE_TEMP%]\afa6d429.exe
[%PROFILE_TEMP%]\atf\{242138dd-69ce-4398-bd64-0d69f431f913}.html
[%PROFILE_TEMP%]\atf\{3130c779-0937-4bb6-b4a6-9d0e811dceb3}.html
[%PROFILE_TEMP%]\atf\{624598b8-6f55-4bec-ab5b-062219915c18}.html
[%PROFILE_TEMP%]\atf\{ad27eb9d-9bac-4c25-96e1-2764303a375e}.html
[%PROFILE_TEMP%]\rem33.exe
[%PROFILE_TEMP%]\sta33.exe
[%PROFILE_TEMP%]\sta36.exe
[%PROFILE_TEMP%]\sta3c.exe
[%PROFILE_TEMP%]\sta3d.exe
[%PROFILE_TEMP%]\sta4d.exe
[%PROFILE_TEMP%]\sta6.exe
[%PROFILE_TEMP%]\sta79.exe
[%PROGRAM_FILES%]\16ford~1\fileteam.exe
[%PROGRAM_FILES%]\1bodyr~1\eqstupid.exe
[%PROGRAM_FILES%]\1bodyr~1\free.exe
[%PROGRAM_FILES%]\1bodyr~1\ggusdvjz.exe
[%PROGRAM_FILES%]\1bodyr~1\hadddwlv.exe
[%PROGRAM_FILES%]\1bodyr~1\jhigxeqo.exe
[%PROGRAM_FILES%]\1bodyr~1\pile name.exe
[%PROGRAM_FILES%]\1bodyr~1\poke else each.exe
[%PROGRAM_FILES%]\1bodyr~1\start rdr extra.exe
[%PROGRAM_FILES%]\1bodyr~1\xajvwrgu.exe
[%PROGRAM_FILES%]\1bodyr~1\zxzxpzpp.exe
[%PROGRAM_FILES%]\active~1\29525.exe
[%PROGRAM_FILES%]\barbba~1\keeppoke.exe
[%PROGRAM_FILES%]\bikeway\build trust.exe
[%PROGRAM_FILES%]\bluebi~1\audio tick.exe
[%PROGRAM_FILES%]\bluebi~1\daadjpqg.exe
[%PROGRAM_FILES%]\bluebi~1\ford bore date.exe
[%PROGRAM_FILES%]\bluebi~1\kbelhpmz.exe
[%PROGRAM_FILES%]\bluebi~1\lsfjwaej.exe
[%PROGRAM_FILES%]\bluebi~1\ndpgfokf.exe
[%PROGRAM_FILES%]\bluebi~1\rdr file glue.exe
[%PROGRAM_FILES%]\bluebi~1\winsaveaboutpoll.exe
[%PROGRAM_FILES%]\bluebi~1\zkumfamz.exe
[%PROGRAM_FILES%]\cakeju~1\iso setup.exe
[%PROGRAM_FILES%]\cityai~1\bookbitsdefault.exe
[%PROGRAM_FILES%]\cityai~1\imwmkspe.exe
[%PROGRAM_FILES%]\cityai~1\ncqlzyym.exe
[%PROGRAM_FILES%]\cityai~1\ooze part hold.exe
[%PROGRAM_FILES%]\cityai~1\yfieiddw.exe
[%PROGRAM_FILES%]\creati~1\jolcbvin.exe
[%PROGRAM_FILES%]\creati~1\kqxpkink.exe
[%PROGRAM_FILES%]\creati~1\mvxyvrzj.exe
[%PROGRAM_FILES%]\creati~1\qopaqzng.exe
[%PROGRAM_FILES%]\creati~1\tfgymvdd.exe
[%PROGRAM_FILES%]\creati~1\vpdbyqfl.exe
[%PROGRAM_FILES%]\debugs~1\fork error default.exe
[%PROGRAM_FILES%]\debugs~1\help safe copy.exe
[%PROGRAM_FILES%]\debugs~1\vdtjkxjx.exe
[%PROGRAM_FILES%]\defaul~1\gfkfexhs.exe
[%PROGRAM_FILES%]\defaul~1\ggmmxtuh.exe
[%PROGRAM_FILES%]\defaul~1\intrastop.exe
[%PROGRAM_FILES%]\defaul~1\kobmaahh.exe
[%PROGRAM_FILES%]\defaul~1\kyqmurlq.exe
[%PROGRAM_FILES%]\defaul~1\lite cake loud.exe
[%PROGRAM_FILES%]\defaul~1\pkajulyt.exe
[%PROGRAM_FILES%]\draw2\corn bold media.exe
[%PROGRAM_FILES%]\driveg~1\exitgreyhtm.exe
[%PROGRAM_FILES%]\driveg~1\mixmfcd.exe
[%PROGRAM_FILES%]\filmfi~1\808.exe
[%PROGRAM_FILES%]\filmfi~1\bows 2 ante.bin
[%PROGRAM_FILES%]\filmfi~1\global cdrom.dll
[%PROGRAM_FILES%]\freein~1\army load aim byte.exe
[%PROGRAM_FILES%]\freein~1\bendaceproc.exe
[%PROGRAM_FILES%]\freein~1\bytemess.exe
[%PROGRAM_FILES%]\freein~1\ford seek okay gram.exe
[%PROGRAM_FILES%]\freein~1\heroxfbu.exe
[%PROGRAM_FILES%]\freein~1\ljkpaigp.exe
[%PROGRAM_FILES%]\freein~1\xyq.exe
[%PROGRAM_FILES%]\funkba~1\cwhmzwhu.exe
[%PROGRAM_FILES%]\funkba~1\drenahjr.exe
[%PROGRAM_FILES%]\funkba~1\exit show.exe
[%PROGRAM_FILES%]\funkba~1\lite eq safe.exe
[%PROGRAM_FILES%]\funkba~1\urixtdvk.exe
[%PROGRAM_FILES%]\global~1\browse glue.exe
[%PROGRAM_FILES%]\global~1\first move rdr.exe
[%PROGRAM_FILES%]\greyreal\idplomza.exe
[%PROGRAM_FILES%]\intert~1\each beep.exe
[%PROGRAM_FILES%]\isochi~1\pile default.exe
[%PROGRAM_FILES%]\jugsse~1\4623.exe
[%PROGRAM_FILES%]\jugsse~1\more roam.dll
[%PROGRAM_FILES%]\junkst~1\ gre sof .bin
[%PROGRAM_FILES%]\junkst~1\ gre sof soft.bin
[%PROGRAM_FILES%]\junkst~1\capi grey soft.bin
[%PROGRAM_FILES%]\junkst~1\cast grey rey.bin
[%PROGRAM_FILES%]\junkst~1\cast grey soft.bin
[%PROGRAM_FILES%]\junkst~1\cast grey.bin
[%PROGRAM_FILES%]\junkst~1\cast soft.bin
[%PROGRAM_FILES%]\junkst~1\cast.bin
[%PROGRAM_FILES%]\junkst~1\castcgre gsof soft.bin
[%PROGRAM_FILES%]\junkst~1\castmapi soft.bin
[%PROGRAM_FILES%]\junkst~1\castmgrey soft.bin
[%PROGRAM_FILES%]\junkst~1\csof .bin
[%PROGRAM_FILES%]\junkst~1\dent soft.bin
[%PROGRAM_FILES%]\junkst~1\dentmapi grey soft.bin
[%PROGRAM_FILES%]\junkst~1\dentmapit.bin
[%PROGRAM_FILES%]\junkst~1\filmpeak.dll
[%PROGRAM_FILES%]\junkst~1\junk stey.bin
[%PROGRAM_FILES%]\junkst~1\mapi.bin
[%PROGRAM_FILES%]\loadroad\11739.exe
[%PROGRAM_FILES%]\loadroad\13793.exe
[%PROGRAM_FILES%]\loadroad\cast idle.dll
[%PROGRAM_FILES%]\mailin~1\bend axis.exe
[%PROGRAM_FILES%]\mediao~1\browse bows.exe
[%PROGRAM_FILES%]\memosi~1\bgbdhyvc.exe
[%PROGRAM_FILES%]\memosi~1\debug platform one.exe
[%PROGRAM_FILES%]\memosi~1\downloadkeepbleh.exe
[%PROGRAM_FILES%]\objcdrom\extra slow dvd.exe
[%PROGRAM_FILES%]\objcdrom\mdhhwkfg.exe
[%PROGRAM_FILES%]\onesoa~1\nxmukvvg.exe
[%PROGRAM_FILES%]\oozejo~1\save real.exe
[%PROGRAM_FILES%]\ownssi~1\city title.exe
[%PROGRAM_FILES%]\play audio dupe\1 jugs default.exe
[%PROGRAM_FILES%]\play audio dupe\about pile stupid.exe
[%PROGRAM_FILES%]\play audio dupe\cwinsemt.exe
[%PROGRAM_FILES%]\pollpopfour\bitsplaygrid.exe
[%PROGRAM_FILES%]\pollpopfour\each cdrom memo.exe
[%PROGRAM_FILES%]\pollpopfour\fwpesprd.exe
[%PROGRAM_FILES%]\progra~1\aim dash noun.exe
[%PROGRAM_FILES%]\progra~1\kvfnegjg.exe
[%PROGRAM_FILES%]\progra~1\mfxfwvrw.exe
[%PROGRAM_FILES%]\progra~1\ohukvvyx.exe
[%PROGRAM_FILES%]\progra~1\sect name.exe
[%PROGRAM_FILES%]\progra~1\suoplcpo.exe
[%PROGRAM_FILES%]\progra~1\weqqtqdv.exe
[%PROGRAM_FILES%]\refpin~1\findphone.exe
[%PROGRAM_FILES%]\saveba~1\setup close.exe
[%PROGRAM_FILES%]\second~1\ace tray.exe
[%PROGRAM_FILES%]\second~1\grid gpl.exe
[%PROGRAM_FILES%]\sectmp~1\aim math heart.exe
[%PROGRAM_FILES%]\sectmp~1\bookslow.exe
[%PROGRAM_FILES%]\sectmp~1\drikyzgm.exe
[%PROGRAM_FILES%]\sectmp~1\gozczace.exe
[%PROGRAM_FILES%]\sectmp~1\mfokxciu.exe
[%PROGRAM_FILES%]\sectmp~1\otyygomn.exe
[%PROGRAM_FILES%]\sectmp~1\pdwwooqk.exe
[%PROGRAM_FILES%]\sectmp~1\wmsvbohb.exe
[%PROGRAM_FILES%]\sectmp~1\wsmtdolv.exe
[%PROGRAM_FILES%]\sectmp~1\xysuncaw.exe
[%PROGRAM_FILES%]\sectmp~1\ybyncovt.exe
[%PROGRAM_FILES%]\shimbo~1\15898.exe
[%PROGRAM_FILES%]\shimbo~1\bike poke.dll
[%PROGRAM_FILES%]\shimbo~1\fileoozegreat.bin
[%PROGRAM_FILES%]\softwa~1\1067.exe
[%PROGRAM_FILES%]\softwa~1\13163.exe
[%PROGRAM_FILES%]\softwa~1\14053.exe
[%PROGRAM_FILES%]\softwa~1\15638.exe
[%PROGRAM_FILES%]\softwa~1\16037.exe
[%PROGRAM_FILES%]\softwa~1\19842.exe
[%PROGRAM_FILES%]\softwa~1\208.exe
[%PROGRAM_FILES%]\softwa~1\24760.exe
[%PROGRAM_FILES%]\softwa~1\26151.exe
[%PROGRAM_FILES%]\softwa~1\30904.exe
[%PROGRAM_FILES%]\softwa~1\4817.exe
[%PROGRAM_FILES%]\softwa~1\9032.exe
[%PROGRAM_FILES%]\softwa~1\city.bin
[%PROGRAM_FILES%]\softwa~1\citycity.bin
[%PROGRAM_FILES%]\softwa~1\cityfordmathcity.bin
[%PROGRAM_FILES%]\softwa~1\citymathcity.bin
[%PROGRAM_FILES%]\softwa~1\fitymathcity.bin
[%PROGRAM_FILES%]\softwa~1\fordmathcity.bin
[%PROGRAM_FILES%]\softwa~1\setup time.dll
[%PROGRAM_FILES%]\softwa~1\softwarecity.bin
[%PROGRAM_FILES%]\softwa~1\wave wait.dll
[%PROGRAM_FILES%]\thirda~1\ahlrfsoy.exe
[%PROGRAM_FILES%]\thirda~1\anntabrs.exe
[%PROGRAM_FILES%]\thirda~1\eyednnkm.exe
[%PROGRAM_FILES%]\thirda~1\lniegfer.exe
[%PROGRAM_FILES%]\thirda~1\lvwvyqst.exe
[%PROGRAM_FILES%]\thirda~1\mqplzhkn.exe
[%PROGRAM_FILES%]\thirda~1\wgjtoczo.exe
[%PROGRAM_FILES%]\thirda~1\yyjsckss.exe
[%PROGRAM_FILES%]\view16\burnsetup.exe
[%APPDATA%]\01ACIDSECOND\ctyordzi.exe
[%APPDATA%]\Help Stupid Comp\fptlqgnu.exe
[%APPDATA%]\Hide Amok Joy\dncpxekv.exe
[%APPDATA%]\Hide Amok Joy\dxqdnnbs.exe
[%APPDATA%]\Hide Amok Joy\ikhuzxfh.exe
[%APPDATA%]\Hide Amok Joy\kddczdny.exe
[%APPDATA%]\Hide Amok Joy\xorvputf.exe
[%APPDATA%]\LOGIDOLROAM\troshemh.exe
[%APPDATA%]\UPLOCKS\rlggvcbr.exe
[%COMMON_APPDATA%]\Barb plus chic wait\REGS JUNK.exe
[%PROFILE_TEMP%]\bis508.exe
[%PROFILE_TEMP%]\bis7D2.exe
[%PROFILE_TEMP%]\pft20~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft22~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft2A~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft2C~tmp\PatchWr.exe
[%PROFILE_TEMP%]\pft3~tmp\PatchWr.exe
[%PROFILE_TEMP%]\Temporary Directory 1 for paint brushes Bittorrent downloader.zip\BitDownload fastets Bittorrent downloader.exe
[%APPDATA%]\admindeafacidtrust\browseamen.exe
[%APPDATA%]\idolonceprogrambits\battons.exe
[%APPDATA%]\Manager Window Jump Dent\Data Up.exe
[%APPDATA%]\Manager Window Jump Dent\realfor.exe
[%APPDATA%]\Manager Window Jump Dent\Regs Eggs.exe
[%APPDATA%]\Manager Window Jump Dent\SendDogWma
[%APPDATA%]\software book style vc\bash mags.exe
[%APPDATA%]\thunk plus chin defy\cash multi.exe
[%DESKTOP%]\htmato1857.exe
[%PROFILE%]\Lokala inst%E4llningar\Temp\bis508.exe
[%PROFILE%]\programdata\chinwarnintracool\hidelive.exe
[%PROFILE_TEMP%]\6bd5111a.exe
[%PROFILE_TEMP%]\aade6.exe
[%PROFILE_TEMP%]\afa6d429.exe
[%PROFILE_TEMP%]\atf\{242138dd-69ce-4398-bd64-0d69f431f913}.html
[%PROFILE_TEMP%]\atf\{3130c779-0937-4bb6-b4a6-9d0e811dceb3}.html
[%PROFILE_TEMP%]\atf\{624598b8-6f55-4bec-ab5b-062219915c18}.html
[%PROFILE_TEMP%]\atf\{ad27eb9d-9bac-4c25-96e1-2764303a375e}.html
[%PROFILE_TEMP%]\rem33.exe
[%PROFILE_TEMP%]\sta33.exe
[%PROFILE_TEMP%]\sta36.exe
[%PROFILE_TEMP%]\sta3c.exe
[%PROFILE_TEMP%]\sta3d.exe
[%PROFILE_TEMP%]\sta4d.exe
[%PROFILE_TEMP%]\sta6.exe
[%PROFILE_TEMP%]\sta79.exe
[%PROGRAM_FILES%]\16ford~1\fileteam.exe
[%PROGRAM_FILES%]\1bodyr~1\eqstupid.exe
[%PROGRAM_FILES%]\1bodyr~1\free.exe
[%PROGRAM_FILES%]\1bodyr~1\ggusdvjz.exe
[%PROGRAM_FILES%]\1bodyr~1\hadddwlv.exe
[%PROGRAM_FILES%]\1bodyr~1\jhigxeqo.exe
[%PROGRAM_FILES%]\1bodyr~1\pile name.exe
[%PROGRAM_FILES%]\1bodyr~1\poke else each.exe
[%PROGRAM_FILES%]\1bodyr~1\start rdr extra.exe
[%PROGRAM_FILES%]\1bodyr~1\xajvwrgu.exe
[%PROGRAM_FILES%]\1bodyr~1\zxzxpzpp.exe
[%PROGRAM_FILES%]\active~1\29525.exe
[%PROGRAM_FILES%]\barbba~1\keeppoke.exe
[%PROGRAM_FILES%]\bikeway\build trust.exe
[%PROGRAM_FILES%]\bluebi~1\audio tick.exe
[%PROGRAM_FILES%]\bluebi~1\daadjpqg.exe
[%PROGRAM_FILES%]\bluebi~1\ford bore date.exe
[%PROGRAM_FILES%]\bluebi~1\kbelhpmz.exe
[%PROGRAM_FILES%]\bluebi~1\lsfjwaej.exe
[%PROGRAM_FILES%]\bluebi~1\ndpgfokf.exe
[%PROGRAM_FILES%]\bluebi~1\rdr file glue.exe
[%PROGRAM_FILES%]\bluebi~1\winsaveaboutpoll.exe
[%PROGRAM_FILES%]\bluebi~1\zkumfamz.exe
[%PROGRAM_FILES%]\cakeju~1\iso setup.exe
[%PROGRAM_FILES%]\cityai~1\bookbitsdefault.exe
[%PROGRAM_FILES%]\cityai~1\imwmkspe.exe
[%PROGRAM_FILES%]\cityai~1\ncqlzyym.exe
[%PROGRAM_FILES%]\cityai~1\ooze part hold.exe
[%PROGRAM_FILES%]\cityai~1\yfieiddw.exe
[%PROGRAM_FILES%]\creati~1\jolcbvin.exe
[%PROGRAM_FILES%]\creati~1\kqxpkink.exe
[%PROGRAM_FILES%]\creati~1\mvxyvrzj.exe
[%PROGRAM_FILES%]\creati~1\qopaqzng.exe
[%PROGRAM_FILES%]\creati~1\tfgymvdd.exe
[%PROGRAM_FILES%]\creati~1\vpdbyqfl.exe
[%PROGRAM_FILES%]\debugs~1\fork error default.exe
[%PROGRAM_FILES%]\debugs~1\help safe copy.exe
[%PROGRAM_FILES%]\debugs~1\vdtjkxjx.exe
[%PROGRAM_FILES%]\defaul~1\gfkfexhs.exe
[%PROGRAM_FILES%]\defaul~1\ggmmxtuh.exe
[%PROGRAM_FILES%]\defaul~1\intrastop.exe
[%PROGRAM_FILES%]\defaul~1\kobmaahh.exe
[%PROGRAM_FILES%]\defaul~1\kyqmurlq.exe
[%PROGRAM_FILES%]\defaul~1\lite cake loud.exe
[%PROGRAM_FILES%]\defaul~1\pkajulyt.exe
[%PROGRAM_FILES%]\draw2\corn bold media.exe
[%PROGRAM_FILES%]\driveg~1\exitgreyhtm.exe
[%PROGRAM_FILES%]\driveg~1\mixmfcd.exe
[%PROGRAM_FILES%]\filmfi~1\808.exe
[%PROGRAM_FILES%]\filmfi~1\bows 2 ante.bin
[%PROGRAM_FILES%]\filmfi~1\global cdrom.dll
[%PROGRAM_FILES%]\freein~1\army load aim byte.exe
[%PROGRAM_FILES%]\freein~1\bendaceproc.exe
[%PROGRAM_FILES%]\freein~1\bytemess.exe
[%PROGRAM_FILES%]\freein~1\ford seek okay gram.exe
[%PROGRAM_FILES%]\freein~1\heroxfbu.exe
[%PROGRAM_FILES%]\freein~1\ljkpaigp.exe
[%PROGRAM_FILES%]\freein~1\xyq.exe
[%PROGRAM_FILES%]\funkba~1\cwhmzwhu.exe
[%PROGRAM_FILES%]\funkba~1\drenahjr.exe
[%PROGRAM_FILES%]\funkba~1\exit show.exe
[%PROGRAM_FILES%]\funkba~1\lite eq safe.exe
[%PROGRAM_FILES%]\funkba~1\urixtdvk.exe
[%PROGRAM_FILES%]\global~1\browse glue.exe
[%PROGRAM_FILES%]\global~1\first move rdr.exe
[%PROGRAM_FILES%]\greyreal\idplomza.exe
[%PROGRAM_FILES%]\intert~1\each beep.exe
[%PROGRAM_FILES%]\isochi~1\pile default.exe
[%PROGRAM_FILES%]\jugsse~1\4623.exe
[%PROGRAM_FILES%]\jugsse~1\more roam.dll
[%PROGRAM_FILES%]\junkst~1\ gre sof .bin
[%PROGRAM_FILES%]\junkst~1\ gre sof soft.bin
[%PROGRAM_FILES%]\junkst~1\capi grey soft.bin
[%PROGRAM_FILES%]\junkst~1\cast grey rey.bin
[%PROGRAM_FILES%]\junkst~1\cast grey soft.bin
[%PROGRAM_FILES%]\junkst~1\cast grey.bin
[%PROGRAM_FILES%]\junkst~1\cast soft.bin
[%PROGRAM_FILES%]\junkst~1\cast.bin
[%PROGRAM_FILES%]\junkst~1\castcgre gsof soft.bin
[%PROGRAM_FILES%]\junkst~1\castmapi soft.bin
[%PROGRAM_FILES%]\junkst~1\castmgrey soft.bin
[%PROGRAM_FILES%]\junkst~1\csof .bin
[%PROGRAM_FILES%]\junkst~1\dent soft.bin
[%PROGRAM_FILES%]\junkst~1\dentmapi grey soft.bin
[%PROGRAM_FILES%]\junkst~1\dentmapit.bin
[%PROGRAM_FILES%]\junkst~1\filmpeak.dll
[%PROGRAM_FILES%]\junkst~1\junk stey.bin
[%PROGRAM_FILES%]\junkst~1\mapi.bin
[%PROGRAM_FILES%]\loadroad\11739.exe
[%PROGRAM_FILES%]\loadroad\13793.exe
[%PROGRAM_FILES%]\loadroad\cast idle.dll
[%PROGRAM_FILES%]\mailin~1\bend axis.exe
[%PROGRAM_FILES%]\mediao~1\browse bows.exe
[%PROGRAM_FILES%]\memosi~1\bgbdhyvc.exe
[%PROGRAM_FILES%]\memosi~1\debug platform one.exe
[%PROGRAM_FILES%]\memosi~1\downloadkeepbleh.exe
[%PROGRAM_FILES%]\objcdrom\extra slow dvd.exe
[%PROGRAM_FILES%]\objcdrom\mdhhwkfg.exe
[%PROGRAM_FILES%]\onesoa~1\nxmukvvg.exe
[%PROGRAM_FILES%]\oozejo~1\save real.exe
[%PROGRAM_FILES%]\ownssi~1\city title.exe
[%PROGRAM_FILES%]\play audio dupe\1 jugs default.exe
[%PROGRAM_FILES%]\play audio dupe\about pile stupid.exe
[%PROGRAM_FILES%]\play audio dupe\cwinsemt.exe
[%PROGRAM_FILES%]\pollpopfour\bitsplaygrid.exe
[%PROGRAM_FILES%]\pollpopfour\each cdrom memo.exe
[%PROGRAM_FILES%]\pollpopfour\fwpesprd.exe
[%PROGRAM_FILES%]\progra~1\aim dash noun.exe
[%PROGRAM_FILES%]\progra~1\kvfnegjg.exe
[%PROGRAM_FILES%]\progra~1\mfxfwvrw.exe
[%PROGRAM_FILES%]\progra~1\ohukvvyx.exe
[%PROGRAM_FILES%]\progra~1\sect name.exe
[%PROGRAM_FILES%]\progra~1\suoplcpo.exe
[%PROGRAM_FILES%]\progra~1\weqqtqdv.exe
[%PROGRAM_FILES%]\refpin~1\findphone.exe
[%PROGRAM_FILES%]\saveba~1\setup close.exe
[%PROGRAM_FILES%]\second~1\ace tray.exe
[%PROGRAM_FILES%]\second~1\grid gpl.exe
[%PROGRAM_FILES%]\sectmp~1\aim math heart.exe
[%PROGRAM_FILES%]\sectmp~1\bookslow.exe
[%PROGRAM_FILES%]\sectmp~1\drikyzgm.exe
[%PROGRAM_FILES%]\sectmp~1\gozczace.exe
[%PROGRAM_FILES%]\sectmp~1\mfokxciu.exe
[%PROGRAM_FILES%]\sectmp~1\otyygomn.exe
[%PROGRAM_FILES%]\sectmp~1\pdwwooqk.exe
[%PROGRAM_FILES%]\sectmp~1\wmsvbohb.exe
[%PROGRAM_FILES%]\sectmp~1\wsmtdolv.exe
[%PROGRAM_FILES%]\sectmp~1\xysuncaw.exe
[%PROGRAM_FILES%]\sectmp~1\ybyncovt.exe
[%PROGRAM_FILES%]\shimbo~1\15898.exe
[%PROGRAM_FILES%]\shimbo~1\bike poke.dll
[%PROGRAM_FILES%]\shimbo~1\fileoozegreat.bin
[%PROGRAM_FILES%]\softwa~1\1067.exe
[%PROGRAM_FILES%]\softwa~1\13163.exe
[%PROGRAM_FILES%]\softwa~1\14053.exe
[%PROGRAM_FILES%]\softwa~1\15638.exe
[%PROGRAM_FILES%]\softwa~1\16037.exe
[%PROGRAM_FILES%]\softwa~1\19842.exe
[%PROGRAM_FILES%]\softwa~1\208.exe
[%PROGRAM_FILES%]\softwa~1\24760.exe
[%PROGRAM_FILES%]\softwa~1\26151.exe
[%PROGRAM_FILES%]\softwa~1\30904.exe
[%PROGRAM_FILES%]\softwa~1\4817.exe
[%PROGRAM_FILES%]\softwa~1\9032.exe
[%PROGRAM_FILES%]\softwa~1\city.bin
[%PROGRAM_FILES%]\softwa~1\citycity.bin
[%PROGRAM_FILES%]\softwa~1\cityfordmathcity.bin
[%PROGRAM_FILES%]\softwa~1\citymathcity.bin
[%PROGRAM_FILES%]\softwa~1\fitymathcity.bin
[%PROGRAM_FILES%]\softwa~1\fordmathcity.bin
[%PROGRAM_FILES%]\softwa~1\setup time.dll
[%PROGRAM_FILES%]\softwa~1\softwarecity.bin
[%PROGRAM_FILES%]\softwa~1\wave wait.dll
[%PROGRAM_FILES%]\thirda~1\ahlrfsoy.exe
[%PROGRAM_FILES%]\thirda~1\anntabrs.exe
[%PROGRAM_FILES%]\thirda~1\eyednnkm.exe
[%PROGRAM_FILES%]\thirda~1\lniegfer.exe
[%PROGRAM_FILES%]\thirda~1\lvwvyqst.exe
[%PROGRAM_FILES%]\thirda~1\mqplzhkn.exe
[%PROGRAM_FILES%]\thirda~1\wgjtoczo.exe
[%PROGRAM_FILES%]\thirda~1\yyjsckss.exe
[%PROGRAM_FILES%]\view16\burnsetup.exe

Swizzor Folders:
[%APPDATA%]\bleh platform drive internet
[%APPDATA%]\JOY FACE MAPI COPY
[%PROGRAM_FILES%]\movefi~1

Swizzor Registry Keys:
HKEY_CLASSES_ROOT\clsid\{3ac077e2-a87a-3582-08b6-69863ce5bd2c}
HKEY_CLASSES_ROOT\clsid\{66eab452-800a-7bea-d068-c668c39d3ffb}
HKEY_CLASSES_ROOT\clsid\{751fabe0-61cf-96bf-aa53-9a328fbf459b}
HKEY_CLASSES_ROOT\clsid\{94ac8427-47d0-0328-8060-ab65bc1c0479}
HKEY_CLASSES_ROOT\clsid\{97d65e0c-f28c-051a-cec2-299b0094c1f2}
HKEY_CLASSES_ROOT\clsid\{de16043e-fed8-a12d-2409-8cd31b31de21}
HKEY_CURRENT_USER\clsid\{2bd12782-9db1-029b-8d03-2f0596305555}
HKEY_CURRENT_USER\clsid\{8e474554-79aa-115a-66d8-5fedecb66be8}
HKEY_CURRENT_USER\software\classes\clsid\{2bd12782-9db1-029b-8d03-2f0596305555}
HKEY_CURRENT_USER\software\classes\clsid\{8e474554-79aa-115a-66d8-5fedecb66be8}
HKEY_LOCAL_MACHINE\software\classes\clsid\{3ac077e2-a87a-3582-08b6-69863ce5bd2c}
HKEY_LOCAL_MACHINE\software\classes\clsid\{66eab452-800a-7bea-d068-c668c39d3ffb}
HKEY_LOCAL_MACHINE\software\classes\clsid\{751fabe0-61cf-96bf-aa53-9a328fbf459b}
HKEY_LOCAL_MACHINE\software\classes\clsid\{97d65e0c-f28c-051a-cec2-299b0094c1f2}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{751fabe0-61cf-96bf-aa53-9a328fbf459b}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{94ac8427-47d0-0328-8060-ab65bc1c0479}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{97d65e0c-f28c-051a-cec2-299b0094c1f2}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c2ba8382-9a35-cfbc-3907-c39d72a572ad}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{de16043e-fed8-a12d-2409-8cd31b31de21}

Swizzor Registry Values:
HKEY_CLASSES_ROOT\clsid\{c2ba8382-9a35-cfbc-3907-c39d72a572ad}
HKEY_CLASSES_ROOT\clsid\{c2ba8382-9a35-cfbc-3907-c39d72a572ad}\inprocserver32
HKEY_CURRENT_USER\software\microsoft\internet explorer\main
HKEY_CURRENT_USER\software\microsoft\internet explorer\main
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

Removing Swizzor:

you can run trial version of ExterminateIt, or remove Swizzor manually.

To completely manually remove Swizzor malware from your computer, you need to delete the Windows registry keys and registry values, the files and folders associated with Swizzor.

Also Be Aware of the Following Threats:
Remove Namop Trojan
Remove ISTbar.MSCache Hijacker

posted by belviacalawayrageby at 6:23 AM

0 Comments:

Post a Comment

Subscribe to Post Comments [Atom]

<< Home