Troj/Banker-EWP

Category: Viruses and Spyware Protection available since:11 Mar 2010 21:30:37 (GMT)
Type: Trojan Last Updated:11 Mar 2010 21:30:37 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Banker-EWP is a Trojan for the Windows platform.

Troj/Banker-EWP includes functionality to:

- start services
- create files in the <System> folder
- access the internet and communicate with a remote server via HTTP

Troj/Banker-EWP communicates via HTTP with the following locations:

pfjuridica . com . br
ysmyters . site . br . com


Registry entries are created under:

HKCR\CLSID
HKCR\ccrpTimers6.ccrpCountdown
HKCR\ccrpTimers6.ccrpStopWatch
HKCR\ccrpTimers6.ccrpTimer
HKCR\ccrpTimers6.ccrpTimerStats
HKCR\ccrpTimers6.ICcrpCountdownNotify
HKCR\ccrpTimers6.ICcrpCountdownNotifyEx
HKCR\ccrpTimers6.ICcrpTimerNotify
HKCR\ccrpTimers6.ICcrpTimerNotifyEx
HKLM\SOFTWARE\Microsoft\DownloadManager
HKCU\Software\Microsoft

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy