Troj/FakeAV-AUF

Category: Viruses and Spyware Protection available since:08 Feb 2010 06:00:42 (GMT)
Type: Trojan Last Updated:08 Feb 2010 06:00:42 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/FakeAV-AUF is a Trojan for the Windows platform.

Troj/FakeAV-AUF includes functionality to access the internet and communicate with a remote server via HTTP.

Troj/FakeAV-AUF communicates via HTTP with the following locations:

cokalesabules . com
koksabudkaqweraf . com
dumkcervulikoks . com
anutayadokalug . com
keminorvarioban . com
rvationgadergi . com
abulkominoskade . com


When Troj/FakeAV-AUF is installed the following files are created:

<User>\Local Settings\Application Data\av.exe
<User>\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

Registry entries are created under:

HKCU\Software\Microsoft
HKCU\Software\Classes\.exe
HKCU\Software\Classes\secfile
HKCU\Software\Classes
HKLM\SOFTWARE\Microsoft

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy