Summary

Summary
Action
More Information
| Affected operating systems | Windows |
|---|---|
| Characteristics |
|
| Included in our products from | June 2008 (4.30) |
| Protection available since | 16 April 2008 06:46:40 (GMT) |
| Detected by | All Sophos products |
Action

Summary
Action
More Information
Please follow the instructions for removing Trojans.
More Information
Troj/Dwnldr-HCH is a Trojan for the Windows platform.
When first run,Troj/Dwnldr-HCH copies itself to C:\WINDOWS\msnmsg.exe or C:\msnmsg.exe.
Troj/Dwnldr-HCH creates C:\Program Files\Internet Explorer\msupdate.log
Troj/Dwnldr-HCH has the functionalities to:
-download files from preconfigured URL.
The following registry entry is created on startup:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
msnmsg
C:\WINDOWS\msnmsg.exe
or
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
msnmsg
C:\msnmsg.exe.
