Trojan.Spambot.11349
Trojan.Spambot.11349 Description
Trojan.Spambot.11349 is a Trojan that infects the targeted PC system via security loopholes and unsafe downloads. Trojan.Spambot.11349 can also infect the computer system via malicious spam email attachments and bogus video media codecs. Once installed, Trojan.Spambot.11349 creates the certain files on the PC system. Trojan.Spambot.11349 can also delete particular files on the infected computer. Trojan.Spambot.11349 replaces the HOSTS file. Trojan.Spambot.11349 modifies the Windows registry by changing some registry keys. To avoid firewall, Trojan.Spambot.11349 removes or modifies the particular registry keys.
Aliases
Trj/CI.A [Panda]Generic32.CKRP [AVG]Win32/Injector.AFYC [ESET-NOD32]Dropper/Win32.Injector [AhnLab-V3]Win32.Troj.Injector.ID.(kcloud) [Kingsoft]Heuristic.LooksLike.Win32.Suspicious.B [McAfee-GW-Edition]Trojan.GenericKD.969797 (B) [Emsisoft]Trojan-Dropper.Win32.Injector.idwe [Kaspersky]TROJ_GEN.RC1H1DU [TrendMicro-HouseCall]PWS-Zbot-FAQD!072419361172 [McAfee]
More aliases (32)
Trojan.Spambot.11349 Automatic Detection Tool (Recommended)
Is your PC infected with Trojan.Spambot.11349? To safely & quickly detect Trojan.Spambot.11349, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Trojan.Spambot.11349
What happens if Trojan.Spambot.11349 does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 ferest1.tmp 438 2 SVCNOST.EXE 417 3 file.exe 403 4 %USERPROFILE%\ qokozypkabaq.exe 98 5 %SystemDrive%\ windows\ temp\ svchost.exe 21 6 %AppData%\ntuser.dat N/A 7 %AppData%\desktop.ini N/A
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY..\..\{Value}HKEY_CURRENT_USER>\Software\Microsoft\Windows\CurrentVersion\Run 'Windows Init'= '"%APPDATA%\x3ctnjmbqssceevmcdfs2pzhzy3sknhv2\svcnost.exe"'HKEY_LOCAL_MACHINE>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List '%APPDATA%\x3ctnjmbqssceevmcdfs2pzhzy3sknhv2\svcnost.exe' = '%APPDATA%\x3ctnjmbqssceevmcdfs2pzhzy3sknhv2\svcnost.exe:*:Ena
Posted: May 24, 2012 | By SpywareRemove
MoreThreat Level: 9/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 42
