Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:TR/Kazy.154.528
Date discovered:16/05/2011
Type:Trojan
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
Static file:No
VDF version:7.11.08.37 - Monday, May 16, 2011
IVDF version:7.11.08.37 - Monday, May 16, 2011

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Bitdefender: Gen:Variant.Kazy.154
   •  Eset: Win32/Kryptik.NUI
   •  DrWeb: Trojan.Siggen2.25270


Platforms / OS:
   • Windows 95
   • Windows 98
   • Windows 98 SE
   • Windows NT
   • Windows ME
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Downloads a file
   • Drops files

 Files The following files are created:

– Non malicious files:
   • %HOME%\Application Data\Adobe\plugs\mmc173.exe
   • %HOME%\Application Data\Adobe\plugs\mmc197.exe

– A file that is for temporary use and it might be deleted afterwards:
   • %HOME%\Application Data\Adobe\shed\thr1.chm




It tries to download a file:

– The location is the following:
   • http://**********.ms/showthread.php?t=162539
At the time of writing this file was not online for further investigation.

Description inserted by Chiaho Heng on Wednesday, May 18, 2011
Description updated by Chiaho Heng on Wednesday, May 18, 2011

Back . . . .