Troj/Agent-MJO

Category: Viruses and Spyware Protection available since:03 Feb 2010 03:50:32 (GMT)
Type: Trojan Last Updated:03 Feb 2010 03:50:32 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Agent-MJO is a Trojan for the Windows platform.

Troj/Agent-MJO includes functionality to:

- copy itself to the <WINDOWS> folder
- steal confidential information
- access the internet and communicate with a remote server via HTTP

Troj/Agent-MJO communicates via HTTP with the following locations:

bb . com . br
santander . com . br
itau . com . br
itaupersonnalite . com . br
bradesco . com . br


When Troj/Agent-MJO is installed it creates the file <Windows>\avg.exe.

Registry entries are set as follows:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies
system
EnableLUA

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings
Connections
SavedLegacySettings

Registry entries are created under:

HKCU\avg

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy