SillyDL.7QD Trojan

SillyDL.7QD virus description
Technical details:
Categories: Trojan,Adware,Downloader
SillyDL.7QD Aliases:
[Other]W32/DLoader.BEIC

SillyDL.7QD Files:
[%WINDOWS%]\Temp\1.exe
[%PROFILE_TEMP%]\ieplorer.exe
[%SYSTEM%]\11683765931.exe
[%SYSTEM%]\drivers\qwwkbo52.sys
[%SYSTEM%]\qwwkbo52.dll
[%SYSTEM%]\s1168376583.web
[%WINDOWS%]\Temp\10565.exe
[%WINDOWS%]\Temp\1.exe
[%PROFILE_TEMP%]\ieplorer.exe
[%SYSTEM%]\11683765931.exe
[%SYSTEM%]\drivers\qwwkbo52.sys
[%SYSTEM%]\qwwkbo52.dll
[%SYSTEM%]\s1168376583.web
[%WINDOWS%]\Temp\10565.exe

SillyDL.7QD Registry Values:
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000\control
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_qwwkbo52\0000\control
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52\enum
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52\enum
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52\enum
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\qwwkbo52\security

SillyDL.7QD indications of infection

This symptoms of SillyDL.7QD detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Stupen Trojan Symptoms

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)