Trojan . Trojan.Lsass (Summary)
home | requirements | help | contact | scan now  

OVER 8 MILLION PEOPLE WORLDWIDE USE NUKER TO PROTECT THEIR PC!
YOU CAN TRY ITS AUDIT TODAY ABSOLUTELY FREE!

FREE SCAN

Free Anti Spyware Audit
Click Here to scan your PC for
Trojan.Lsass
free of charge
Trojan . Trojan.Lsass (Summary)

Software Name: Trojan.Lsass
Company Name:
Product Name: Trojan.Lsass
Classification: Trojan
Website:

Brief:
Silently connects to a remote location where it downloads other files. Opens certain ports and attempts to disable certain security features on an infected computer. May cause your system to shutdown.

 

IMPORTANT!
Some of the Trojan.Trojan.Lsass components are listed below. The list is compiled as a reference. The list might not be complete and it doesn't represent instructions for manual removal. We DO NOT recommend manual removal. Incorrect removal of certain software might make your computer unstable or even unusable.
Removal of adware component might affect the related ad-supported software.

If you suspect that you have an unwanted instance of Trojan.Lsass installed on your computer we recommend a free audit of your system with INAC Anti Spyware.

Trojan.Lsass might create following folders (and inject its files inside the folders):

n/a

Trojan.Lsass might create following files (some of the files might be loaded in memory while the software is running):

  • %SYSTEM%\mljjk.dll

  • %SYSTEM%\system12.exe

  • C:\proxi.exe

  • %WINDOWS%\Lsass.exe

  • %WINDOWS%\spdauth.exe

  • %SYSTEM%\rdriv.sys

  • %PROFILE%\Local Settings\Temp\is.exe

  • %SYSTEM%\ddayw.dll

Trojan.Lsass is often accompanied by the following tracking cookies:

n/a

Trojan.Lsass might create following registry keys (and inject subkeys and values):

  • HKEY_CLASSES_ROOT\CLSID\{00DBDAC8-4691-4797-8E6A-7C6AB89BC441}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\mljjk

  • HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\lsass

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lsass

  • HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\rdriv

  • HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\spdauth

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\rdriv

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\spdauth

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00DBDAC8-4691-4797-8E6A-7C6AB89BC441}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ddayw

Trojan.Lsass might create following registry values:

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks|{00DBDAC8-4691-4797-8E6A-7C6AB89BC441}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Microsoft Windows 128bit Subsystem

  • HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate|DoNotAllowXPSP2

  • HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List|*\system12.exe

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List|*\system12.exe

Trojan.Lsass might create registry values with following data:

n/a

Trojan.Lsass might insert following entries in the HOSTS file:

n/a

 

Click here to scan your computer for Trojan.Lsass free of charge
 Download | Order Now | Partners | Index | Hunter's Log | EULA | Privacy Policy   © 2002-2007 TrekBlue, Inc.