Support Forum Articles File Help Startup DB Tips Service DB Hijack This! Analyzer

 

HijackThis automated log analyzer! Submit a log and you will receive ALL the information we have in our DB's on everything on your system INSTANTLY!

funny.exe


Click here to Run a Free Scan for funny.exe Related Errors

funny.exe
What is it?
funny.exe is a file associated with the w32.funner worm.

What does is do?
W32.Funner is a worm that spreads using Microsoft's Windows Messenger instant message program and modifies the hosts file.

When W32.Funner is executed, it performs the following actions:
  1. Copies itself as:
    • %System%IEXPLORE.EXE
    • %System%EXPLORE.EXE
    • %Windir% undll32.exe
    • %System%userinit32.exe
    • c:funny.exe

      and executes the first three files listed.

      Notes:
    • The three files make sure that the other two are running and will restart them if any are stopped.
    • These files require the MSVBVM60.DLL file, which is a component of the Microsoft Visual Basic run-time environment.
    • %System% is a variable that refers to the System folder. By default this is C:WindowsSystem (Windows 95/98/Me), C:WinntSystem32 (Windows NT/2000), or C:WindowsSystem32 (Windows XP).
    • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:Windows or C:Winnt.
  2. Creates a log file named %System%sfirst2.log.
  3. Adds the value:

    "Userinit"="userinit32.exe,"

    to the registry key:

    HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon

    so that the userinit32.exe runs when you start Windows.
More info and Removal
@symantec

Fix funny.exe Errors: Free Scan

Recommended: Free PC Speed Test - what is slowing down your PC?


funny.exe is Spyware!

Startup DB Entries:
Nothing Found

Service DB Entries:
Nothing Found

Disclaimer

Every attempt has been made to ensure the information about funny.exe is accurate but alot of malware applications try to pose as valid applications. If it is something other than what was posted above please leave some feedback in the forum.
Printer Friendly

User Comments
Security Risks - Adware Spyware
sndconfg16.exe | salm.exe | isass.exe | se.dll | kazza.exe | backweb-7288971.exe | bridge.dll | wtoolsa.exe | tkbellexe.exe | dl.exe | newdot~1.dll | wupdt.exe | mwsoemon.exe | saie.exe | webrebates0.exe | bxxs5.dll | funny.exe | 180ax.exe | randreco.exe | mssearchnet.exe | service.exe | webrebates1.exe | saap.exe | sais.exe | wsup.exe | backweb-137903.exe | sed.exe | alcmtr.exe | wo.exe | ffisearch.exe | optimize.exe | iadhide4.dll | backweb-8876480.exe | cdaengine0400.dll | istsvc.exe | newdotnet6_38.dll | Fvprotect.exe | Winupdate.exe | java.exe | cmesys.exe |