SdBot.XV Trojan Definition - Trojan Spywares, Adwares, Viruses Reviews and Info

Main Menu

Categories

Adware
Adware Bundler
AOL Exploit
Backdoor
Browser Hijacker
Browser Plug-in
Commercial Key Logger
Commercial Remote Control
Cookie
Dialer
E-Mail Flooder
Hostile ActiveX Control
ICQ Exploit
Joke Program
Key Logger
Loader
Low Risk Adware
Misc
Nuker
P2P
Password Hijacker
Potential Privacy Risk
Potentially Dangerous Tools
RAT
Search Hijacker
Security Disabler
Spyware
Stealth Notifier
Surveillance
Toolbar
Trojan
Trojan Downloader
Trojan FTP
Trojan Telnet
Viruses
Worm

SdBot.XV Trojan Information

Name:	SdBot.XV
Category:	Trojan
Advice:	Remove
Risk:	Severe Risk Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.
Description:	SDBot is the name of a family of remote access tools, also known as backdoors or worms, used by hackers to control a machine without the owner's knowledge. SdBot.XV is a network worm with backdoor Trojan functionality for the Windows platform. When first run, SdBot.XV copies itself to the Windows system folder as mskev.exe and creates the following registry entries in order to run each time a user logs on: HKLMSystemCurrentControlSetControlLsa Windows kev Messenger mskev.exe HKLMSoftwareMicrosoftOle Windows kev Messenger mskev.exe HKLMSoftwareMicrosoftWindowsCurrentVersionRun Windows kev Messenger mskev.exe HKLMSoftwareMicrosoftWindowsCurrentVersionRunOnce Windows kev Messenger mskev.exe HKLMSoftwareMicrosoftWindowsCurrentVersionRunServices Windows kev Messenger mskev.exe HKCUSoftwareMicrosoftWindowsCurrentVersionRun Windows kev Messenger mskev.exe HKCUSoftwareMicrosoftWindowsCurrentVersionRunServices Windows kev Messenger mskev.exe The worm spreads through network shares protected by weak passwords and through various operating system vulnerabilities. SdBot.XV connects to a predetermined IRC channel and awaits further commands from remote users.
Signatures:	process: mskev.exe: MD5 Hash: f7113d9b526af011c80... process: mskev.exe: MD5 Hash: a439ee6370ee4a05b4d..
Type:	Trojan - A Trojan software is any software on a user's computer that the user is not aware or intentionally installed. Most Trojan software is designed to perform some sort of actions that could jeopardize the user's security or privacy.

Top Trojan Visited Pages:

Tro.Downloader.loadadv - 407 visits
Enable Regedit - 191 visits
Java.ClassLoader.Dummy.d - 182 visits
Trojan.BankerSpy - 175 visits
RBot.steam - 85 visits
Startup.NameShifter.Xgtray - 76 visits
Tro.Bagle.SP - 58 visits
Trojan.BHO.NameShifter.EZ - 54 visits
LRPatch Trojan - 53 visits
Tro.YourStartingPage - 53 visits

Random Trojan Pages:

Web Cache Trojan
Trojan.Startup.NameShifter.HS
Trojan.Spooner.D - Alias: Trojan:Win32/Spooner.D
ILL-Eagle DL
Happy 98 - Alias: Friendly joke, Trojan.Win16.Parkin, Win/Parkin.trojan.15360
Rots
Backdoor.Win32.Optix.f
527.Batch
Fav Trojan
Tro.Nabload

� 2006-2008 spyware32.com - Privacy Policy