On 5/8/2014 11:15 AM, Terry Coombs wrote:
Alrighty kids , this program is a carrier for Win32/PolyCrpt.dropper.
which installs from the www.securelist.com website
a.. Backdoor.Win32.Swz.hb
Ensures subsequent autorun of installed files:
by writing to autorun keys in the system registry
Injects its code into the specific processes
Adds the following programs to the list of trusted applications:
Connects to specific Internet addresses
Creates unique identifiers to flag its presence in the system
I'll be deleting this file w/out installing . Y'all have been warned ...
I didn't have the same experience as you had. I have a pretty well
locked down system with antivirus and antimalware software. I ran a
check with another antimalware/antivirus software after reading your
post. The software is "Malwarebytes". When I ran it, the scan showed
everything I knew was on my system such as a key-logger that I purposely
installed. There were all sorts of other things that I either used like
some nefarious hacking tools or stuff I already have blocked. If you're
interested, I'm posting the link to their site. ^_^
https://www.malwarebytes.org/
https://www.malwarebytes.org/lp/lp4/...FexZ7AodrXwAeQ
TDD