Full
Name: |
QQRob |
| Type: |
Trojan |
| Danger Level: |
8 |
| Category Description: |
Trojans are malicious applications that pose themselves as legitimate software in order to trick users to install them. Once on the victim's machine, it may run any number of malicious process to steal vital information or inflict damage to other software. |
| Comment: |
QQRob is a password-stealing trojan. It also has the ability to disable anti-virus products and security related utilities.
This trojan modifies the registry entries so that it executes whenever any text file(*.txt) is opened.
This trojan blocks access to certain sites by altering the hosts file in Windows. |
| |
|
| Properties: |
|
| Manual Removal: |
1. Click Start > Run.
2. Type regedit
3. Click OK.
4. Navigate to the subkey:
HKEY_CLASSES_ROOT\txtfile\shell\open\command
In the right pane,modify the value:
"(Default)" = "C:\WINDOWS\system32\impai.exe "%1""
to
"(Default)" = "%SystemRoot%\system32\NOTEPAD.EXE %1"
5. Close the Registry Editor. |
