Emsisoft Malware-Info

Name: Adware.Win32.EnterpriseSuite

Risklevel: Low Risk

Description:

Enterprise Suite is a rogue security program that shows false warning messages and misleading scan results.

Removal instructions for Adware EnterpriseSuite:

To delete this malware infection, buy Emsisoft Anti-Malware.
Guaranteed removal of Adware EnterpriseSuite.

Run a full scan on all drives and move all detected items to the quarantine.

More details about this danger:

Installation: Installed through EXE

Process: %random%.exe

Screenshots:

EnterpriseSuiteEnterpriseSuiteEnterpriseSuiteEnterpriseSuiteEnterpriseSuite

Used folders:

  • C:\WINDOWS\system32\
  • C:\WINDOWS\system32\drivers\etc\
  • C:\WINDOWS\system32\WBEM\Logs\
  • C:\Documents and Settings\All Users\Application Data\58969\
  • C:\Documents and Settings\All Users\Application Data\WESSys\
  • C:\Documents and Settings\[USER]\Application Data\Enterprise Suite\
  • C:\Documents and Settings\[USER]\Application Data\Microsoft\Internet Explorer\Quick Launch\
  • C:\Documents and Settings\[USER]\Desktop\
  • C:\Documents and Settings\[USER]\Desktop\WESSys\
  • C:\Documents and Settings\[USER]\Recent\
  • C:\Documents and Settings\[USER]\Start Menu\
  • C:\Documents and Settings\[USER]\Start Menu\Programs\

Used files:

  • C:\WINDOWS\system32\COMMAND.COM
    [50620 Bytes] COM File
  • C:\WINDOWS\system32\DOSX.EXE
    [53840 Bytes] EXE File
  • C:\WINDOWS\system32\HIMEM.SYS
    [4768 Bytes] SYS File
  • C:\WINDOWS\system32\MSCDEXNT.EXE
    [817 Bytes] EXE File
  • C:\WINDOWS\system32\REDIR.EXE
    [3338 Bytes] EXE File
  • C:\WINDOWS\system32\drivers\etc\hosts
    [7129 Bytes] File
  • C:\WINDOWS\system32\WBEM\Logs\mofcomp.log
    [12072 Bytes] LOG File
  • C:\WINDOWS\system32\WBEM\Logs\wbemprox.log
    [559 Bytes] LOG File
  • C:\Documents and Settings\All Users\Application Data\58969\WEf4c.exe
    [1925632 Bytes] EXE File
  • C:\Documents and Settings\All Users\Application Data\58969\WES.ico
    [4286 Bytes] ICO File
  • C:\Documents and Settings\All Users\Application Data\WESSys\wes.cfg
    [18504 Bytes] CFG File
  • C:\Documents and Settings\[USER]\Application Data\Enterprise Suite\cookies.sqlite
    [4096 Bytes] SQLITE File
  • C:\Documents and Settings\[USER]\Application Data\Enterprise Suite\Instructions.ini
    [17 Bytes] INI File
  • C:\Documents and Settings\[USER]\Application Data\Microsoft\Internet Explorer\Quick Launch\Enterprise Suite.lnk
    [1758 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Desktop\322.mof
    [330 Bytes] MOF File
  • C:\Documents and Settings\[USER]\Desktop\Enterprise Suite.lnk
    [1740 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Desktop\mozcrt19.dll
    [722392 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Desktop\sqlite3.dll
    [457688 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Desktop\WESSys\vd952342.bd
    [11382 Bytes] BD File
  • C:\Documents and Settings\[USER]\Recent\ANTIGEN.tmp
    [48 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\cb.tmp
    [28 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\CLSV.dll
    [48 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Recent\delfile.tmp
    [10 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\eb.dll
    [9 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Recent\eb.drv
    [50 Bytes] DRV File
  • C:\Documents and Settings\[USER]\Recent\energy.tmp
    [63 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\exec.exe
    [3 Bytes] EXE File
  • C:\Documents and Settings\[USER]\Recent\gid.sys
    [15 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\hymt.tmp
    [27 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\pal.drv
    [79 Bytes] DRV File
  • C:\Documents and Settings\[USER]\Recent\PE.dll
    [41 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Recent\PE.exe
    [12 Bytes] EXE File
  • C:\Documents and Settings\[USER]\Recent\PE.sys
    [54 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\PE.tmp
    [10 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\sld.exe
    [53 Bytes] EXE File
  • C:\Documents and Settings\[USER]\Recent\tjd.exe
    [11 Bytes] EXE File
  • C:\Documents and Settings\[USER]\Recent\tjd.tmp
    [31 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Start Menu\Enterprise Suite.lnk
    [1740 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Start Menu\Programs\Enterprise Suite.lnk
    [1746 Bytes] LNK File

Additional information might be found here:

Search at Google for Adware EnterpriseSuite Search at Google for Adware EnterpriseSuite
Search at Bing for Adware EnterpriseSuite Search at Bing for Adware EnterpriseSuite
Search at Yahoo for Adware EnterpriseSuite Search at Yahoo for Adware EnterpriseSuite

How can I protect myself from Adware EnterpriseSuite?

Important!
You essentially need an antivirus product, that is not only able to clean infections, but also protect your PC permanently from new dangers. This is the only way to prevent data loss and unnecessary hassle and costs of new installations of your operating system.

Take your chance and buy the multiple awarded protection software Emsisoft Anti-Malware today!

Only $40 for the security of your computer.

Buy Emsisoft Anti-Malware online:

Buy Emsisoft Anti-Malware now

Trust only on the best protection software!

Spring Offer!

Don't miss this: To your bought 1-year license of Emsisoft Anti-Malware or Emsisoft Internet Security Pack or higher you can now get a free license of the CyberGhost Anonymizer for free.
Your advantage: Surf anonymously and visit websites that are restricted in your country.

Only a few days left! Order here

Best In Test!

Emsisoft Anti-Malware is the best of 19 tested antivirus programs - Test by MRG - Malware Research Group - Q1-Q3 2011
More independent reviews of anti-malware software