Trojan.Dogrobot
Trojan.Dogrobot is a damaging computer Trojan that will reduce security protection settings on the affected computer to let other malware threats access the corrupted PC system in the future. Trojan.Dogrobot is able to bring other malware infections to the infected computer by downloading files to the computer without a user's consent. Trojan.Dogrobot also downloads additional components before the attackers gain remote access to the targeted PC. Trojan.Dogrobot needs to be removed once detected to keep your computer clean and protected.
File System Modifications
- The following files were created in the system:
# File Name 1 %UserProfile%\Local Settings\Temp\ope4.tmp 2 %UserProfile%\Local Settings\Temp\updata.exe 3 %Windir%\inf\oem[RANDOM NUMBER].inf 4 %Windir%\LastGood\INF\oem[RANDOM NUMBER].inf 5 %Windir%\LastGood\INF\oem[RANDOM NUMBER].PNF 6 %Windir%\Program Files\ATI\amdk8.dll (Trojan Horse) 7 %Windir%\system32\ccte1sto.dat (Trojan Horse) 8 %Windir%\system32\drivers\amdk8.sys (Hacktool.Rootkit) 9 %Windir%\system32\kav.exe
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DOGKILLERHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\amdk8HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"kav" = "C:\WINDOWS\system32\kav.exe"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.