4 réponses
Name: Downloader-GR
This is a downloader trojan. The purpose of this malware is simply to connect to a remote system, download the specified files to the local machine, and execute those files.
When run, the trojan contacts the server named en.fix.pixnetwork.com. A web page on this server contains a hidden list of files for the trojan to download. This list of files may be changed at any moment by the administrator of the site.
Indications of Infection
Presence of the following files:
* d1ki.exe - Runs d1k.exe
* d1k.exe - runs Internet Explorer to display czech porn site
* ole32ws.dll -Adware DLL
* Q80164935.exe - porn dialer which dials premium rate numbers
* Q80635352.exe - porn dialer which dials premuim rate number
* d.cmd - checks to see if either of the Q???????? files listed above are present on the system. If they are it deletes itself.
This is a downloader trojan. The purpose of this malware is simply to connect to a remote system, download the specified files to the local machine, and execute those files.
When run, the trojan contacts the server named en.fix.pixnetwork.com. A web page on this server contains a hidden list of files for the trojan to download. This list of files may be changed at any moment by the administrator of the site.
Indications of Infection
Presence of the following files:
* d1ki.exe - Runs d1k.exe
* d1k.exe - runs Internet Explorer to display czech porn site
* ole32ws.dll -Adware DLL
* Q80164935.exe - porn dialer which dials premium rate numbers
* Q80635352.exe - porn dialer which dials premuim rate number
* d.cmd - checks to see if either of the Q???????? files listed above are present on the system. If they are it deletes itself.
moi aussi j'ai trouvé le OLE32WS.DLL et je ne sais pas l'éliminer.
Mon antivirus c'est Norton 2004. Mon système c'est Microsoft XP
Que dois-je faire.
Aidez moi. Un grand merci
Mon antivirus c'est Norton 2004. Mon système c'est Microsoft XP
Que dois-je faire.
Aidez moi. Un grand merci
