Loading ...|
|
Tweet |  More |
BKDR_PLUGX.SME Description
BKDR_PLUGX.SME is a backdoor Trojan that spreads on the web while via dangerous websites. BKDR_PLUGX.SME can also proliferate with the help of other malware infections. BKDR_PLUGX.SME is a remote access tool (RAT) identified as PlugX. BKDR_PLUGX.SME is one of the most common malware infections used in executing targeted attacks directed towards Japanese government institutions. After execution, BKDR_PLUGX.SME erases itself. BKDR_PLUGX.SME adds potentially infectious files.
Type: Backdoors
How Can You Detect BKDR_PLUGX.SME?
BKDR_PLUGX.SME Removal Details
BKDR_PLUGX.SME has typically the following processes in memory:
- %All Users Profile%\Gf\NvSmartMax.dll
- %User Profile%\UdpGf\NvSmart.exe
- %User Profile%\UdpGf\NvSmartMax.dll
- %All Users Profile%\Gf\NvSmart.exe
BKDR_PLUGX.SME creates the following files in the system:
- %All Users Profile%\Gf\boot.ldr
- %User Profile%\UdpGf\NvSmart.usr
BKDR_PLUGX.SME creates the following registry entries:
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FAST CLSID = “{RANDOM VALUES}”
- HKEY_LOCAL_MACHINE\Software\CLASSES\FAST
Important Article Disclaimer
This entry was last updated on 09/21/12 and posted on 09/21/12.
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
BKDR_PLUGX.SME
Leave a Comment
Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.