Backdoor:Win32/Godo.A
Backdoor:Win32/Godo.A is a backdoor Trojan that enables cybercriminals to obtain unauthorized remote access and control over the affected PC. Backdoor:Win32/Godo.A aims at connecting to the server by using the Google Docs server as a proxy to conceal the Trojan's network activity by using an SSL-encrypted connection. While being activated on the targeted computer system, Backdoor:Win32/Godo.A adds malevolent files. Backdoor:Win32/Godo.A is found as an executable file using a Microsoft Word icon. This social engineering technique seduces computer users into loading Backdoor:Win32/Godo.A by making them believe the file is a document. When the file is opened, instead of opening a document the PC user will execute Backdoor:Win32/Godo.A. Backdoor:Win32/Godo.A installs a copy of itself as 'scvhost.exe' in the [startup folder] to make sure its copy is run whenever Windows is started. Backdoor:Win32/Godo.A contacts a remote server to upload information about the affected computer. Backdoor:Win32/Godo.A transfers the collected information about the corrupted PC to the external server.
File System Details
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | [startup folder]\scvhost.exe |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.