FB.73[1].EXE
Malicious SoftwareYour PC is infected. The file called FB.73[1].EXE is considered unsafe and there may be other infections on your PC.
You should urgently check your PC and remove any malicious software including FB.73[1].EXE as soon as possible. The free version of Prevx 3.0 will scan your PC for millions of spyware and malware infections in less than 2 minutes. Don't put your confidential data, or your identity at risk, check your PC now with Prevx 3.0.
File Behavior
FB.73[1].EXE has been seen to perform the following behavior:
- The Process is packed and/or encrypted using a software packing process
- Writes to another Process's Virtual Memory (Process Hijacking)
- This process creates other processes on disk
- Executes a Process
- Adds a Registry Key (RUN) to auto start Programs on system start up
- Can communicate with other computer systems using HTTP protocols
- This Process Deletes Other Processes From Disk
- Injects code into other processes
- Performs DNS look ups to resolve URL IP addresses
- Found on infected systems and resists interrogation by security products
FB.73[1].EXE has been the subject of the following behavior:
- Created as a process on disk
- Executed as a Process
- Has code inserted into its Virtual Memory space by other programs
- Deleted as a process from disk
- Added as a Registry auto start to load Program on Boot up
- Terminated as a Process
- Executed from Temporary Folders
Country Of Origin
The filename FB.73[1].EXE was first seen on Nov 9 2009 in the following geographical region of the Prevx community:
- Hong Kong on Nov 9 2009
File Name Aliases
FB.73[1].EXE can also use the following file names:
- FB.73.EXE
- FB.73_037.EXE
- FB.73_047.EXE
- FB.73_027.EXE
- FB.73_057.EXE
- FB.73_067.EXE
- FB.73_012.EXE
- FB.73_011.EXE
- FB.73_013.EXE
- FB.73_010.EXE
- FB.73_014.EXE
- FB.73_015.EXE
- FB.73_016.EXE
- FB.73_017.EXE
- FB.73_018.EXE
- FB.73_019.EXE
- FB.73_022.EXE
- FB.73_023.EXE
- FB.73_026.EXE
- FB.73_028.EXE
- FB.73_029.EXE
- FB.73_030.EXE
- FB.73_025.EXE
- FB.73_032.EXE
- FB.73_034.EXE
- FB.73_035.EXE
- FB.73_038.EXE
- FB.73_044.EXE
- FB.73_052.EXE
- FB.73_053.EXE
- FB.73_056.EXE
- FB.73_060.EXE
- FB.73_064.EXE
- FB.73_065.EXE
- FB.73_066.EXE
- FB.73_071.EXE
- FB.73_068.EXE
- FB.73_062.EXE
- FB.73_061.EXE
- FB.73_059.EXE
- FB.73_058.EXE
- FB.73_051.EXE
- FB.73_042.EXE
- FB.73_040.EXE
- FB.73_031.EXE
- FB.73_021.EXE
- FB.73_009.EXE
- FB.73_006.EXE
- FB.73_005.EXE
- FB.73_004.EXE
- FB.73_001.EXE
- DF1A245S4_1780.EXE
- FREDDY73.EXE
- DPLYMRIESI-280.PMS.EXE
- FB.73_007.EXE
- ZPSKON_1257836289.EXE
- ZPSKON_1257837138.EXE
- ZPSKON_1257837045.EXE
- ZPSKON_1242290997.EXE
- ZPSKON_1257832963.EXE
- ZPSKON_1257851308.EXE
- FB.73_003.EXE
- DF1A245S4_2856.EXE
- DF1A245S4_3856.EXE
- ZPSKON_1257895875.EXE
- FF2IE1 (1).EXE
- ZPSKON_1257902244.EXE
- FB[1].73.EXE
- ZPSKON_1257923261.EXE
- ZPSKON_1257955075.EXE
- FB.73_002.EXE
- ZPSKON_1257975033.EXE
- ZPSKON_1257963853.EXE
- ZPSKON_1257990841.EXE
- ZPSKON_1258007269.EXE
- ZPSKON_1258015030.EXE
- ZPSKON_1257998395.EXE
- ZPSKON_1258002069.EXE
- ZPSKON_1258032661.EXE
- DF1A245S4_2964.EXE
- ZPSKON_1258051137.EXE
- ZPSKON_1258066398.EXE
- DF1A245S4_1052.EXE
- ZPSKON_1258085151.EXE
- ZPSKON_1258071340.EXE
- ZPSKON_1258078155.EXE
- ZPSKON_1257894848.EXE
- DF1A245S4_1768.EXE
Filesizes
This file has been seen with the following file size:
- 55,808 bytes
Vendor, Product and Version Information
A file with the name FB.73[1].EXE have been seen to have the following Vendor, Product and Version Information in the file header:
- IVT Corporation.; Bluetooth Application; 3.2.2.8
File Type
The filename FB.73[1].EXE refers to an executable program.
Help the Prevx Community to fight cyber crime
We are always looking for ways to improve the quality and speed of research to help us protect you from malicious software and cyber crime.
© Prevx 2002 - 2010. All Rights Reserved.
