Malware Info: LinkReplacer Trojan

Sunday, November 23, 2008

LinkReplacer Trojan

Removing LinkReplacer
Categories: Trojan,BHO
This category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.
As this information is entered by the user, it is captured by the BHO (Browser Helper Object) and
sent back to the attacker.
Typically, keyloggers of this type will send the stolen information back to the attacker via email
or HTTP POST, which can appear suspicious.

LinkReplacer Also known as:


[Computer Associates]Win32/LinkReplacer.A!Trojan,Win32.LinkReplacer

How to detect LinkReplacer:

Registry Keys: HKEY_CLASSES_ROOT\CLSID\{4E7BD74F-2B8D-469E-DCF7-F96DA086B434} HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E7BD74F-2B8D-469E-DCF7-F96DA086B434} HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A6E50DC-BFA8-4B40-AB1B-159E03E829FD} HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\hyperlinker HKEY_CLASSES_ROOT\clsid\{4e7bd74f-2b8d-469e-dcf7-f96da086b434} HKEY_CLASSES_ROOT\clsid\{66993893-61b8-47dc-b10d-21e0c86dd9c8} HKEY_CLASSES_ROOT\instafin.instafin HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{66993893-61b8-47dc-b10d-21e0c86dd9c8} HKEY_CLASSES_ROOT\typelib\{66993893-61b8-47dc-b10d-21e0c86dd9c8} HKEY_LOCAL_MACHINE\software\classes\clsid\{66993893-61b8-47dc-b10d-21e0c86dd9c8} HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{4e7bd74f-2b8d-469e-dcf7-f96da086b434} HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{66993893-61b8-47dc-b10d-21e0c86dd9c8} HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6a6e50dc-bfa8-4b40-ab1b-159e03e829fd}

Removing LinkReplacer:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
CodeZero BHO Information
Remove HLLP.Venta Trojan
SecondPower.Multimedia.Speedbar BHO Removal instruction
Removing MegaToolbar BHO
Abetear Trojan Removal instruction

Malware Info

Blog Archive

About Me

Sunday, November 23, 2008

LinkReplacer Trojan

How to detect LinkReplacer:

Removing LinkReplacer:

No comments: