Trojan.Ascesso.A
Trojan.Ascesso.A is a Trojan horse that uses rootkit techniques to hide its presence. Once inside a PC, Trojan.Ascesso.A will inject code into services.exe and download malicious files from a remote server. Trojan.Ascesso.A is able to harvest e-mail addresses on an infected PC and send e-mails containing malicious links to those addresses. Trojan.Ascesso.A should be removed from a compromised PC before it causes too much damage.
File System Details
Trojan.Ascesso.A may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\[RANDOM LETTERS]\"ErrorControl" = "0" | |
| 2. | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DeviceControl\DevData | |
| 3. | HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\[RANDOM LETTERS]\"Start" = "0" | |
| 4. | HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\[RANDOM LETTERS]\"Group" = "SCSI Class" | |
| 5. | HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\[RANDOM LETTERS]\"Type" = "1" | |
| 6. | HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\[RANDOM LETTERS]\"ImagePath" = "System32\Drivers\[RANDOM LETTERS].sys" |
