MAC-NETHow toNetwork SecurityVirus ProtectionSpyware ProtectionDownloadReferenceContact
 

Do more with FirefoxNEW

Hijacked Browser Analysis

4-counter.com 3721

C2.lop browser hijacker

CWShredder

Edmond.exe

Intercom.exe Spyware

MWSOEMON.EXE - MyWebSearch

SearchPage CC Spyware

Spin4Dough Spyware

Sqwire.com home page hijack
Home » Spyware Protection » Hijacked Browser Analysis » Re: HijackThisLog Analysis - Jdenton » 

netda.exe

identifies as: BKDR_CCT.A. Sophos calles it Dumaris(sp?)

Description of trojan:
Upon execution, it drops copies of itself as:

* %System%\netda.exe
* %System%\netdc.exe
* %Startup%\netdb.exe
* %Windows%\prntsrv.dll

This Trojan steals critical information by monitoring windows accessed by the user. It logs all keystrokes on windows containing certain strings.  It also disables access to antivirus Web sites in order to stop users from upgrading to the latest pattern files.


commentPost your comment 
Mail this pageMail this page

MAC-NET Secures IT | internet toolkit

© 2004-2008. All Rights Reserved.