Aliases: Constructor.Win32.VB.ax, Trojan-Dropper.Win32.VB.lk
Variants: 2.00
Port: 1984
Size: 102kb
Created: AUG 2006
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\
Infection: system.exe, nisnjqvmm.exe
Posts Tagged ‘AUG 2006’
BG-Hacker
Posted by FAV™ on December 19th, 2009
BadrSocket
Posted by FAV™ on December 13th, 2009
Aliases: Backdoor.Win32.Agent.agt, Trojan-PSW.Win32.VB.mu
Variants: 1.0 Minor, 1.7, 3.0, 3.5, 3.7
Port: 3500
Size: 30kb
Author: B@dr007
Created: AUG 2006
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\
Infection: kvshost.exe, alenvers.exe, boutton.exe, inverser.exe, souris.exe, efo.exe, er.exe, vock.exe, cd_close.vbs, cd_open.vbs, face.exe, ic.exe, jeu.exe, shoost.exe, tourn.exe, system.exe, loost.exe, vook.exe, rundll32.exe
B Xone
Posted by FAV™ on December 9th, 2009
Aliases: Backdoor.Win32.Delf.aty, Trojan.Win32.Agent.adw, Trojan-Downloader.Win32.Delf.bkf, Trojan-Dropper.Win32.Joiner.bd, Trojan-PSW.Win32.LdPinch.fsr, Backdoor.Win32.Delf.dld
Variants: 1.6, 1.7, 1.8, 1.9, 2.0
Port: 2006
Size: 412kb
Author: Opium
Created: AUG 2006
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\
HKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\
HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\
Infection: svchost.exe, consrerva.dat
