Technical details:
Categories: Trojan,BHO,Hijacker,Downloader
[Kaspersky]TrojanDownloader.Win32.Small.aa;
[Eset]Win32/TrojanDownloader.Small.AA trojan kSite Files:
[%PROFILE_TEMP%]\ICD2.tmp\installer.inf
[%WINDOWS%]\TEMP\ICD1.tmp\installer.inf
[%WINDOWS%]\TEMP\ICD2.tmp\installer.inf
[%PROFILE_TEMP%]\ICD2.tmp\installer.inf
[%WINDOWS%]\TEMP\ICD1.tmp\installer.inf
[%WINDOWS%]\TEMP\ICD2.tmp\installer.inf
kSite Registry Keys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{A1DC3241-B122-195F-B21A-000000000000}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{a1dc3241-b122-195f-b21a-000000000000}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\internet settings\5.0\cache\extensible cache\mshist012003041020030411
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\fucksite
kSite Registry Values:
HKEY_CURRENT_USER\software\microsoft\internet explorer\search
kSite indications of infection
This symptoms of kSite detection are the files, registry, and network communication referenced in the technical details section.Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.
Also Be Aware of the Following Threats:
wp.pl Tracking Cookie Information
Remove The.History.of.Divine.Intervention Hacker Tool
Pigeon.ARI Trojan Cleaner
Win32.CybWar DoS Symptoms
Bancos.HPZ Trojan Cleaner
Posts
No comments:
Post a Comment