Troj/BHO-HG

Category: Viruses and Spyware Protection available since:02 Oct 2008 10:04:42 (GMT)
Type: Trojan Last Updated:02 Oct 2008 10:04:42 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/BHO-HG is a Trojan for the Windows platform.

When run, Troj/BHO-HG creates the files:
<System>\retasevo.dll - detected as Troj/BHO-HG
<System>\tesawuzo.dll - detected as Troj/BHO-HG
<System>\kewuziga.dll - detected as Troj/BHO-HG

The following registry entries are set:

HKCR\CLSID\{794cc7e0-a911-4eb7-8e9f-de06450b3747}\InprocServer32\
(default)
<System>\tesawuzo.dll

HKCR\CLSID\{794cc7e0-a911-4eb7-8e9f-de06450b3747}\InprocServer32\
ThreadingModel
Both

HKLM\SOFTWARE\Microsoft\Security Center
UpdatesDisableNotify
1

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
LoadAppInit_DLLs
1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
govurarope
Rundll32.exe <System>\retasevo.dll,s

Registry entries are also created under:

HKLM\SOFTWARE\Microsoft\nidikesa\

Troj/BHO-HG includes functionality to download code from the internet.

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy