hvhle.exe
xmwdf.exe
zPharaoh.exe
No avast detection…
symptoms not yet discovered…
infects flash drives or any removable disk…
Virus update please… =)
hvhle.exe
xmwdf.exe
No avast detection…
symptoms not yet discovered…
infects flash drives or any removable disk…
Virus update please… =)
Uh, we need the files to find the virus inside of them.
If you still have the files (if you had them at all), send it to virus@avast.com in zip format.
Easier method:
Send the sample/s to avast as a Undetected Malware:
Open the chest and right click in the Chest and select Add, navigate to where you have the sample and add it to the chest (see image). Once in the chest, right click on the file and select ‘Submit to virus lab…’ complete the form and submit, the file will be uploaded during the next update.
Hi malware fighters,
zPharaoh.exe is known malware: Total number of reports analysed 611,932
Number of cases that involved the file “zpharaoh.exe” 701
Number of incidents when this file was found to be a threat 659
Statistical volume of cases when “zpharaoh.exe” was a threat 94%
zpharaoh.exe is a mischievous and disruptive malware infection that may change security processes in task manager and obstruct your access to msconfig and regedit. Upon installation, zpharaoh.exe may generate corrupt files, inactivate security programs andproduce annoying pop-ups. zpharaoh.exe may gather your personal information and cause sluggish computer performance.Associated threats: documentsample.doc.exe, d4c7cf4d.exe, zpharoh.exe, winword.exe, tazebama.dll, readme.doc.exe
Aliases: W32/Mabezat, Worm.Mabezat.C, Bloodhound.Unknown, W32.Mabezat.B, W32/Mabezat.a, Mal/Sality-Gen, Win32/Mabezat, Worm.Win32.Mabezat, Win32/Mabezat.worm.32768, Virus.Win32.KillFiles.058, Win32/Mabezat.B, W32.Blastclan, Worm.generic!ct, Win32.Malware.gen!92, Win32/Mabezat.A, Worm.Win32.Mabezat.b, Win32.Mabezat.b, W32/Mabezat-B, Virus:Win32/Mabezat.B, Worm.Mabezat.A Re: http://www.sophos.com/security/analyses/viruses-and-spyware/w32waznera.html
Removal of this malware found to reside on pendrives malcode first found in Oman and Saudi Arabia:
[DRIVE]:\zPharaoh.exe Manual Detection
Below are manual removal instructions for [DRIVE]:\zPharaoh.exe so you can remove the unwanted file from your PC. Always be sure to back up your PC before you modify anything.
A. check for [DRIVE]:\zPharaoh.exe .
Step 1: Use Windows File Search Tool to Find [DRIVE]:\zPharaoh.exe Path
Step 2: Use Windows Task Manager to Remove [DRIVE]:\zPharaoh.exe Processes
Step 3: Detect and Delete Other [DRIVE]:\zPharaoh.exe Files
polonus
yes sir(s)… done that… thanks!
I ran a small cyber cafe here, so Im more prone to new viruses… hahaha Glad I signed up for the forum…
problem with zpharoah, its undetectable… see, i ran a scan and deleted all the contents as much as i could but its still coming back, on a particular flash drive… dunnno why… my pc on the other hand is not infected coz when i inserted a fresh formated FD nothing seems to appear…
O_O really weird…