Backdoor.Poisonivy.CV

tag:computer virus

When first run, this malware will make a copy of itself in %SYSDIR%, named systio.exe and then deletes the original file. It will also create a file named systio, where it will save information about user Reboot your computer in Safe Mode, run regedit and find the registry subkey that contains the entry named StubPath (this must point to an executable file in %SYSDIR% - in this version of malware: systio.exe). Modify its value so that it won

- The presence of a file named systio.exe in %SYSDIR% and the following registry key:
HKLM\Software\Microsoft\ActiveSetup\Installed Components\{2E811653-4F55-1574-0104-010302040505}\StubPath
value -> %SYSDIR%\systio.exe...
- An instance of Firefox running in background even after Firefox is closed

previous:Backdoor.IRCBot.ST
previous:Backdoor.Hamweq.A

Virus Source from:

New articles

TROJ_ARTIEF.SMThis Trojan exploits the RTF Stack Overflow vulnerability to drop and execute TROJ_INJECT.ART. This Trojan may be unknowingly downloaded by a user while visi...ANDROIDOS_GEINIMI.AThis backdoor may be unknowingly downloaded by a user while visiting malicious websites. Backdoor Routine This backdoor executes the following commands from...P2P-Worm.Win32.BlackControl.gThe malicious program intercepts the user’s requests to various sites and redirects them to a malicious URL. It also contains a tool for sending phishin...Backdoor.Win32.Bredolab.euaA malicious program that receives commands from a management server to download other malware to a computer. To ensure that it is launched automatically when t...Backdoor.Farfli.ABCommonly it commes as an installer so it can drop several files, detected by Bitdefender as adware (Adware.Cinmus) or tojan-downloaders.It modifies the memory o...

Hot Articles

Backdoor.Poisonivy.CV

Computer Virus Clounds