On 5/8/2014 11:15 AM, Terry Coombs wrote:

Alrighty kids , this program is a carrier for Win32/PolyCrpt.dropper.
which installs from the www.securelist.com website
a.. Backdoor.Win32.Swz.hb

Ensures subsequent autorun of installed files:

by writing to autorun keys in the system registry

Injects its code into the specific processes

Adds the following programs to the list of trusted applications:

Connects to specific Internet addresses

Creates unique identifiers to flag its presence in the system



I'll be deleting this file w/out installing . Y'all have been warned ...

I didn't have the same experience as you had. I have a pretty well
locked down system with antivirus and antimalware software. I ran a
check with another antimalware/antivirus software after reading your
post. The software is "Malwarebytes". When I ran it, the scan showed
everything I knew was on my system such as a key-logger that I purposely
installed. There were all sorts of other things that I either used like
some nefarious hacking tools or stuff I already have blocked. If you're
interested, I'm posting the link to their site. ^_^

https://www.malwarebytes.org/

https://www.malwarebytes.org/lp/lp4/...FexZ7AodrXwAeQ

TDD