Subscribe
Once launched, the Trojan downloads a file from the following URL:
http://mit*****.lycos.de/iserver2/is.binThis file is saved to the Trojan
If your computer does not have an up-to-date antivirus, or does not have an antivirus solution at all, follow the instructions below to delete the malicious program:
- Delete the original Trojan file (the location will depend on how the program originally penetrated the victim machine).
- Delete the following file: %WorkDir%\i.vbs
- Update your antivirus databases and perform a full scan of the computer (download a trial version of Kaspersky Anti-Virus).
This Trojan downloads another malicious program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 7169 bytes in size. It is packed using UPX. The unpacked file is approximately 20KB in size. It is written in Visual Basic.
Payload
Hot Articles