Troj/Bckdr-QPF

Category:	Viruses and Spyware	Protection available since:	28 Aug 2008 18:58:12 (GMT)
Type:	Trojan	Last Updated:	28 Aug 2008 18:58:12 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Bckdr-QPF is a Trojan for the Windows platform.

When Troj/Bckdr-QPF is installed the following files are created:

<User>\Application Data\addon.dat
<Temp>\ganastes.exe
<Program Files>\SysKeyQPFdll\SysUpdate.exe
<Program Files>\SysKeyQPFdll\klog.dat

The files addon.dat and klog.dat are not malicious and may be deleted. The files ganastes.exe and SysUpdate.exe are detected as Troj/Bckdr-QPF

The following registry entry is created to run SysUpdate.exe on startup:

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{CEB942AC-3873-FEDA-738C-0E08174D6042}
stubpath
<Program Files>\SysKeyQPFdll\SysUpdate.exe s

Registry entries are created under:

HKCU\Software\Iexplorer.exe

Try Sophos products for free
Download now

Troj/Bckdr-QPF

Free Mac Anti-Virus

Popular topics