Infostealer.lanaur
Infostealer.Lanaur is a computer Trojan that will install itself as a Browser Helper Object on the corrupted computer systems. When executed, Infostealer.Lanaur will steal information and control Internet activities such as browsing and emails. Collected data will be sent remotely to a predefined email address. If your computer has been corrupted by Infostealer.Lanaur, remove it at the first opportunity.
File System Details
Infostealer.lanaur may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %CurrentFolder%\md_[NUMBER].dll |
Registry Details
Infostealer.lanaur may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Alx\Config\"VRS" = "[VERSION NUMBER]"
HKEY_CLASSES_ROOT\CLSID\{0DBB4430-2805-4FF2-AC7D-43985BC678B8}\ProgID\"Default" = "[TROJAN FILE NAME].MsShutt_
HKEY_CLASSES_ROOT\CLSID\{0DBB4430-2805-4FF2-AC7D-43985BC678B8}\InprocServer32\"ThreadingModel" = "Apartment"
FILE NAME].dll"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Play_Background_Sounds" = "no"
HKEY_CLASSES_ROOT\[TROJAN FILE NAME].MsShutt_[VERSION NUMBER]\”Default” = “Alx2000?
HKEY_CLASSES_ROOT\[TROJAN FILE NAME].MsShutt_[VERSION NUMBER]\Clsid\"Default" = "{0DBB4430-2805-4FF2-AC7D-43985BC678B8}"
HKEY_CLASSES_ROOT\CLSID\{0DBB4430-2805-4FF2-AC7D-43985BC678B8}\InprocServer32\"Default" = “%CurrentFolder%\[TROJAN
HKEY_CURRENT_USER\Software\Alx\Config\"INSTALADO" = "S"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\"*.bradesco.com.br" = "[BINARY VALUE]"
[VERSION NUMBER]"
HKEY_CLASSES_ROOT\CLSID\{0DBB4430-2805-4FF2-AC7D-43985BC678B8}\"Default" = "Alx2000"
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.