Trojan.Swizzor.DH
MEDIUM
VERY LOW
10 KB
()
Symptoms
Presence of registry key:
HKEY_CURRENT_USER\Software\warn surf bagsWay
HTTP download activity.
Removal instructions:
Please let BitDefender delete files found infected.
Analyzed By
Mihai Neagu, virus researcher
Technical Description:
The trojan usually comes from some web sites that contain adware content.
It downloads and installs adware applications from http://bins.lop.com/.
It may create registry key and subkeys in:
HKEY_CURRENT_USER\Software\warn surf bagsWay
Also it may launch Internet Explorer and go to certain websites for visiting purposes.
The downloader may be also detected as Memscan:Trojan.Swizzor.DH or Trojan.Downloader.Swizzor.DH.
SHARE
THIS ON