Troj/Bckdr-QVN

Category: Viruses and Spyware Protection available since:16 Jun 2009 17:33:16 (GMT)
Type: Trojan Last Updated:16 Jun 2009 17:33:16 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

When Troj/Bckdr-QVN is first run the following files are created:

<System>\lowsec\user.ds - zero byte file
<System>\lowsec\local.ds - zero byte file
<System>\lowsec\user.ds.lll - data file
<System>\sdra64.exe - copy of Troj/Bckdr-QVN

The following registry entry is set to start Troj/Bckdr-QVN automatically on startup:

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit
<System>\userinit.exe,<System>\sdra64.exe

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy