Trojan.Gapz
Trojan.Gapz is a Trojan that opens a back door on the compromised PC. Trojan.Gapz may also drop and install other malware infections.
While being run, Trojan.Gapz embeds itself into the legal process 'explorer.exe'. Trojan.Gapz then ends the genuine process and deletes itself from the file system. Trojan.Gapz uses bootkit functionality to corrupt Master boot and Volume boot records so that it can load automatically whenever you boot up Windows. Trojan.Gapz uses the corrupted boot record to load a malevolent driver code, which permits other components to be downloaded and code to be added into the PC user's processes. Trojan.Gapz may connect to certain remote locations. Trojan.Gapz strives to increase its execution privileges by exploiting one of the following vulnerabilities:Microsoft Windows User Access Control (UAC) Bypass Local Privilege Escalation Vulnerability (CVE-2010-4398)
Microsoft Windows 'Win32k.sys' TrueType Font Handling Remote Code Execution Vulnerability (CVE-2011-3402)
Microsoft Windows AFD Driver CVE-2011-2005 Local Privilege Escalation Vulnerability (CVE-2011-2005)
SpyHunter Detects & Remove Trojan.Gapz
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | 2_xxx-porn-movie.avi.exe | e5b9295e0b147501f47e2fcba93deb6c | 0 |
2. | 757c08c8fb90f6eba505fb6da2081541030ac735 | 766b7c42d3b6090f5047e4cb56199daa | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.