Troj/Dloadr-CLQ

Category: Viruses and Spyware Protection available since:26 Apr 2009 15:13:21 (GMT)
Type: Trojan Last Updated:26 Apr 2009 15:13:21 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Dloadr-CLQ is a Trojan for the Windows platform.

Troj/Dloadr-CLQ includes functionality to access the internet and communicate with a remote server via HTTP.

The following registry entry is created to run Troj/Dloadr-CLQ on startup:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Diagnostic Manager
<pathname of the Trojan executable>

The following registry entry is set, disabling system software:

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System
DisableRegistryTools
1

Registry entries are set as follows:

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
NoFolderOptions
1

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
Hidden
0

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
HideFileExt
1

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
SuperHidden
0

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy