Main Menu
Home
Bookmark
Contact Us



 
Tro.YourStartingPage Trojan Information

Name: Tro.YourStartingPage
Category: Trojan
Advice: Remove
Risk: High Risk High risk threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction. May open up communication ports, use polymorphic tactics, stealth installations, and/or anti-spy counter measures. May use a security flaw in the operating system to gain access to your computer.
Description: Tro.YourStarting page is a program that modifies the Windows system hosts file.

Tro.YourStarting creates the following entries in the hosts file:

213.222.11.6 auto.search.msn.com
213.222.11.6 ieautosearch

If a user enters an incorrect URL, the web browser will be re-directed (hijacked) to http://www.yourstartingpage.com/ or http://www.findthewebsiteyouneed.com/. Tro.YourStartingPage also generates potentially unwanted pop-up advertising.

Signatures: process: sp2update00.exe: MD5 Hash: ec50c17528840b7a32a... process: asupdate.exe: MD5 Hash: 3657513c9b8c560eccb... process: msresearch.exe: MD5 Hash: a56e4354d62cc09a6c1..
Type: Trojan -



Top Trojan Visited Pages:
Anti Netbus - 3480 visits
Tro.Downloader.loadadv - 589 visits
Netbus Fucker - 294 visits
Server Sockets - Alias: Backdoor.Sockets, Sockets23 - 284 visits
SMF.166.Batch - 271 visits
Enable Regedit - 252 visits
Trojan.BankerSpy - 236 visits
Java.ClassLoader.Dummy.d - 234 visits
Lamping - 187 visits
Silver Surfer Trojan - 151 visits

Random Trojan Pages:
Trojan.Startup.NameShifter.EV
Trojan.Startup.NameShifter.I
Trojan.BHO.NameShifter.BW
Hidden Port 2.0
Annotate NetRadar - Alias: NetRadar
XMLid.Exploit - Alias: Exploit-CodeBase, Exploit.CodeBaseExec
MsgGhost 4.0 - Alias: Trojan.Win32.MsgGhost.40
LoadKey
Dood
Tiny.Batch


 


2006-2008 spyware32.com - Privacy Policy