Trojan.DR.Webmoner.Gen.2
Trojan.DR.Webmoner.Gen.2 is a dangerous Trojan that uses keylogger functionality to record victims' keystrokes and harvest confidential information such as passwords. Trojan.DR.Webmoner.Gen.2 is able to secretly enter a system via unsolicited e-mails and file-sharing networks. Once inside a system, Trojan.DR.Webmoner.Gen.2 may open a backdoor allowing additional malware onto the system and giving a remote attacker access to the system. Trojan.DR.Webmoner.Gen.2 may also involve a compromised PC in botnet activities such as Denial of Service attacks.
File System Details
Trojan.DR.Webmoner.Gen.2 may create the following file(s):
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | %Temp%\lol.exe | |
2. | %Temp%\FreezMail v1.9_u.exe | |
3. | %System%\SiLeNtt\server.exe | |
4. | %Temp%\FreezMail v1.9.exe | |
5. | %System%\Bifrost\server.exe | |
6. | %System%\Bifrost\logg.dat | |
7. | %AppData%\addons.dat | |
8. | %AppData%\addon.dat | |
9. | %System%\SiLeNtt\klog.dat |
Registry Details
Trojan.DR.Webmoner.Gen.2 may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Bifrost
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo
stubpath = "%System%\Bifrost\server.exe s"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836}
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideo
HKEY_CURRENT_USER\Software\SiLeNtt
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}
HKEY_LOCAL_MACHINE\SOFTWARE\SiLeNtt
HKEY_CURRENT_USER\Software\Bifrost
stubpath = "%System%\SiLeNtt\server.exe s"
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.