Trojan.Meredrop
Trojan.Meredrop Description
Trojan.Meredrop is a Trojan downloader that infiltrates your system under deceptive pretenses, and typically without your knowledge or approval. Once active, however, Trojan.Meredrop downloads additional malware onto your PC and may even open your computer to third party access, compromising personal and financial information.
Aliases
Dropper.Generic7.CMNG [AVG]W32/Agent.XPHS!tr [Fortinet]Trojan-Downloader.Win32.Zeagle [Ikarus]a variant of Win32/Injector.ADAP [ESET-NOD32]W32/Trojan.UKTF-7305 [Commtouch]Win32.Troj.Agent.xp.(kcloud) [Kingsoft]Trojan.Win32.Meredrop (A) [Emsisoft]TR/Symmi.1468.8 [AntiVir]Win32.HLLW.Phorpiex.84 [DrWeb]Trojan.Agent!Ywi6Z4hnpPs [Agnitum]
More aliases (5836)
Trojan.Meredrop Automatic Detection Tool (Recommended)
Is your PC infected with Trojan.Meredrop? To safely & quickly detect Trojan.Meredrop, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Trojan.Meredrop
What happens if Trojan.Meredrop does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 C:\ RECYCLER\ S-1-5-21-0243936033-3052116371-381863308-1811\ vsbntlo.exe 707 2 sdra64.exe 703 3 %TEMP%\ dsoqq.exe 593 4 %WINDIR%\ Act_Office14_KMS.exe 576 5 %APPDATA%\ Microsoft\ Windows\ Start Menu\ Programs\ Startup\ YOUTUBE.PLAYER.exe 564 6 C:\ cleansweep.exe\ cleansweep.exe 379 7 %ALLUSERSPROFILE%\ Application Data\ fXxBmVFtQRif.exe 307 8 %WINDIR%\ TEMP\ ope14.exe 286 9 %USERPROFILE%\ Start Menu\ Programs\ Startup\ syscron.exe 220 10 %WINDIR%\ winlogon.exe 204
More files
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following CLSID's were detected:
HKEY..\..\{CLSID Path} {012C0139-389C-4B8D-BC67-239173E00E4b}
Posted: September 10, 2009 | By SpywareRemove
MoreThreat Level: 9/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 8,474
this meredrop trojan really sucks! nevermind it took me 2 weeks 2 figure out wat in the heck was going on, but also this trojan does Physical damage to ur pc and or labtop.so 1 250 gb hd and 1 2 gb ddr2 6400 stick later oh & also now 1 of my ddr2 slots r totally erased,persay-inop even to bios,from this freakin thing.I\’ve done everything and I\’m aat my wits end on this.I\’ve tried ext hds usb sticks reloading with win o/s s but it keeps coming back i think it hides in a type of migration file ,somewhere… ugh i\’ve yet to find.but i do have the log/s of it reinstalling it self.u leave this thing on too long n forget ur pc.might as well head 2 the puter shop now,geez.who made this thing? and it gets better, this meredrop,really likes to have a remote controller, mine i\’ve narrowed down to I think,Japan.but who knows.I\’m pretty good with data forenics n security; but like I said I\’m really @ my wits end with this thing and would luv n appreciate HELP, with this PLEASE..
ty, Sean
ps-ty very much 4 this page.I\’m trying ur suggestions/procedures now.Plz let me know if any and/or all of my screen shots to mass log files of this darn thing would help any1 else and or me as well.again,ty 4 ur page, n help.
meredrop, Sux