Program:Win32/MalwareBurn

(?)

Encyclopedia entry
Updated: Apr 17, 2011 | Published: Feb 03, 2010

Aliases

Adware.Malwarewipe.63

Dr.Web

Win32/Adware.MalwareWipe (ESET)
SpyCrush (McAfee)
W32/FakeAV.W!genr (Norman)
Application/MalwareBurn (Panda)
MalwareBurn (other)
Malware Wipe (other)

Alert Level (?)
High

Antimalware protection details
Microsoft recommends that you download the latest definitions to get protected.

Detection last updated:
Definition: 1.101.892.0
Released: Apr 05, 2011

Detection initially created:
Definition: 1.45.287.0
Released: Oct 07, 2008

Summary

Program:Win32/MalwareBurn is a program that may be promoted as a security scanner. When run, it may display exaggerated or false claims of threat detection.

Top

Symptoms

System Changes

The following system changes may indicate the presence of Program:Win32/MalwareBurn:

The presence of the following files and folders:
%ProgramFiles%\Malwareburn 7.3\Malwareburn 7.3.exe
%ProgramFiles%\Malwareburn 7.3\msvcr71.dll
%ProgramFiles%\Malwareburn 7.3\msvcp71.dll
%ProgramFiles%\Malwareburn 7.3\mwdb.dat
%ProgramFiles%\Malwareburn 7.3\lang\english.ini
%ProgramFiles%\Malwareburn 7.3\uninst.exe
%ProgramFiles%\Malwareburn 7.3\Malwareburn.ini
%UserProfile%\Start Menu\Programs\Malwareburn 7.3
The presence of the following shortcut:
The presence of the following user interface:

Top

Technical Information (Analysis)

Program:Win32/MalwareBurn is a program that may be promoted as a security scanner. When run, it may display exaggerated or false claims of threat detection.

Installation

When installed, Program:Win32/MalwareBurn creates the following folders:

%ProgramFiles%\Malwareburn 7.3
%ProgramFiles%\Malwareburn 7.3\quarantine
%ProgramFiles%\Malwareburn 7.3\lang
%UserProfile%\Start Menu\Programs\Malwareburn 7.3

Within these folders it creates the following files:

%ProgramFiles%\Malwareburn 7.3\Malwareburn 7.3.exe
%ProgramFiles%\Malwareburn 7.3\msvcr71.dll
%ProgramFiles%\Malwareburn 7.3\msvcp71.dll
%ProgramFiles%\Malwareburn 7.3\mwdb.dat
%ProgramFiles%\Malwareburn 7.3\lang\english.ini
%ProgramFiles%\Malwareburn 7.3\uninst.exe
%ProgramFiles%\Malwareburn 7.3\Malwareburn.ini

It also creates the following shortcuts that link back to its main executable "Malwareburn 7.3.exe":

%ProgramFiles%\Malwareburn 7.3\Malwareburn 7.3.url
%UserProfile%\application data\microsoft\internet explorer\quick launch\Malwareburn 7.3.lnk
%UserProfile%\Desktop\Malwareburn 7.3.lnk
%UserProfile%\Start Menu\Malwareburn 7.3.lnk
%UserProfile%\Start Menu\Programs\Malwareburn 7.3\Malwareburn 7.3.lnk
%UserProfile%\Start Menu\Programs\Malwareburn 7.3\Malwareburn 7.3 website.lnk
%UserProfile%\Start Menu\Programs\Malwareburn 7.3\uninstall Malwareburn 7.3.lnk

Execution

Program:Win32/MalwareBurn has the following shortcut:

It may be present in the system taskbar with the following icon:

When run, the following image may display:

It has the following user interface:

Analysis by Patrick Nolan

Top

Prevention

Follow these general security tips to better protect your computer.

Top

Recovery

Program:Win32/MalwareBurn may place an uninstaller entry in Control Panel>Add or Remove Programs (Windows XP) or Control Panel>Programs>Uninstall a Program (Windows Vista and Windows 7). If an uninstaller is not available or if you do not want to use the uninstaller that is provided, use Microsoft Windows Defender, Microsoft Security Essentials, the Microsoft Safety Scanner, or another up-to-date scanning and removal tool to detect and remove MalwareBurn and other potentially unwanted software from your computer. For more information, see http://www.microsoft.com/protect/products/computer/default.mspx.

Top


	Provide feedback Please note: While your feedback is very important to us, we do not respond to individual submissions through this channel. Feedback, requests, or questions submitted through this form are monitored, however responses are not generated. If you require support, please visit the Safety & Security Center.