Protector Plus Download Antivirus
Home
Download Antivirus
Antivirus Products
Order Antivirus


Antivirus Software for Windows XP/2000/2003
Antivirus Software for Windows Me/98
Antivirus Software for Exchange 2000/2003
Antivirus Software for NetWare

W32/Yabe.BT Trojan

Name W32/Yabe.BT Trojan
Aliases TROJ_YABE.BT
Discovered on March 21, 2007

 Virus Information - W32/Yabe.BT Trojan:

W32/Yabe.BT is a mass mailing trojan. The trojan will infect Windows systems and spreads through email.

The trojan usually arrives as a dropped or downloaded file of other malware from a remote site.

Upon execution, it drops a copy of ISCA.EXE in the Windows System folder.

It modifies the registry at the following location to ensure its automatic execution at every system startup.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

The trojan attempts to download text file from any one of the following web sites:

http://{blocked}rthernsoulclub.com/biographies/images/alwilson.txt
http://{blocked}deonsarmy3.com/index_files/image002.txt
http://{blocked}leaseforlife.com/images/index09.txt
http://{blocked}aceinthedesert.org/images/photo_page/index21.txt
http://{blocked}pemanor.com/images/main_template.txt
http://{blocked}vitech.net/images/buttons/index31.txt
http://{blocked}tent-advocates.com/zip/readme.txt
http://{blocked}pnc.org/rudnicki/P7060022.txt
http://{blocked}arcleaningservice.com.au/images/index31.txt
http://{blocked}tercitiprojects.com.au/images/index31.txt

The downloaded text file contain encrypted link leads to download malicious file.

Anti virus for Windows Download Now!

Home Page Download Antivirus Antivirus Products Order Antivirus

Copyright © 2007 Proland Software.All rights reserved

antivirus software, anti virus software, anti virus, download antivirus, download anti virus, free antivirus, free anti virus, antivirus, download, free, windows, windows xp, xp, sp2, windows me, windows 2000, 98, 95, nt, me, 2003, netware, anti-virus, virus, worm, trojan, protector, plus, proland, virus software, spyware