Home Malware Programs Backdoors Mal/EncPk-DZ

Mal/EncPk-DZ

Posted: April 15, 2011

Mal/EncPk-DZ is a malicious backdoor trojan which is able to send out malicious email with the built-in SMTp client engine to damage other computers. Mal/EncPk-DZ is designed by cyber-crooks to install and launch other versions of malicious applications on the targeted user's PC. Mal/EncPk-DZ is typically installed on the computer system through infected freeware programs and filesharing downloads. Mal/EncPk-DZ will run automatically when the operating system boots up. Mal/EncPk-DZ is a serious threat for the system and has to be removed immediately.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\trrasc.exe
    2 %System%\trraur.exe
    3 %System%\trrpug.exe
    4 c:\%ComputerName%.txt
    5 c:\trrabs.exe
    6 c:\tyu.txt

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\aPiQMvLxRead more how to delete Mal/EncPk-DZ registryHKEY_LOCAL_MACHINE\SOFTWARE\DescriptionHKEY_LOCAL_MACHINE\SOFTWARE\Description\MicrosoftHKEY_LOCAL_MACHINE\SOFTWARE\Description\Microsoft\RpcHKEY_LOCAL_MACHINE\SOFTWARE\Description\Microsoft\Rpc\UuidTemporaryDataHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSQLServerHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSQLServer\ClientHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSQLServer\Client\SuperSocketNetLibHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSQLServer\Client\SuperSocketNetLib\LastConnect
Loading...