Categories: Trojan,Downloader
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.
Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Trojans-downloaders downloads and installs new malware or adware on the computer.
[McAfee]Generic Downloader.ab;
[Other]Win32.Pubala.A,Troj/DwnLdr-AYA,Downloader,Troj/DwnLdr-FXY,Trojan-Downloader.Gen,Win32/SillyDl.CEU,Win32/Vowfie.A,Trojan-Downloader.Win32.Agent.bcd,Win32/SillyDl.CMNVisible Symptoms:
Files in system folders:
[%SYSTEM%]\cryptimg.dll
[%SYSTEM%]\drivers\hidproc.sys
[%SYSTEM%]\pob2res.exe
[%SYSTEM%]\cryptimg.dll
[%SYSTEM%]\drivers\hidproc.sys
[%SYSTEM%]\pob2res.exe How to detect Generic.Downloader.ab:
Files:
[%SYSTEM%]\cryptimg.dll
[%SYSTEM%]\drivers\hidproc.sys
[%SYSTEM%]\pob2res.exe
[%SYSTEM%]\cryptimg.dll
[%SYSTEM%]\drivers\hidproc.sys
[%SYSTEM%]\pob2res.exe
Registry Keys:
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptimg
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\hidproc
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\network\hidproc
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_hidproc
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\hidproc
Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
Removing Generic.Downloader.ab:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
Danschl Trojan Removal instruction
Zango.Search.Assistant Adware Cleaner
Xupiter.Xjupiter Hijacker Cleaner
No comments:
Post a Comment