Dialer.Egroup.AKY
VERY LOW
VERY LOW
~150KB
(Dialer.EgroupInstantAccess, Trojan.Win32.P2E.co, Dial.EdgaAccess.1)
Symptoms
Presence of the file:
%WinDir%\System32\p2esocks_1052.dll
Presence of the next registry key:
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]
"Instant Access" = "rundll32.exe p2esocks_1052.dll,InstantAccess"
Removal instructions:
Please let BitDefender disinfect your files.
Analyzed By
Sorin Ciorceri, virus researcher
Technical Description:
Dialer.Egroup.AKY is an adware with dialer functionality.
When installed this version performs the following actions:
a) It creates the following directory:
%ProgramFiles%\Instant Access\
b) It creates a desktop link named "Instant Access"
c) It installs the following file:
%WinDir%\System32\p2esocks_1052.dll
d) It creates the following registry entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Instant Access
SHARE
THIS ON