Fakesysdef.BDA is a Trojan. A Trojan is a program that pretends to have a valid use, but in fact modifies the user's computer in malicious way. Trojans do not replicate or spread to other computers.
Process Related Changes
It creates the following mutex(es):
- "IESQMMUTEX_0_208"
- "625773d0-1eb5-4879-8322-8bdc33d9d4fe"
It creates the following process(es): - C:\PROGRA~2\fz6cqTKLfroMy.exe
Network Activity
It attempts to connect to the following remote servers: - searchalaska.org:80 (173.230xxxxxx)
- searchant.org:80 (208.87.xxxxxx)
We observed the following DNS query/queries: - searchate.org
- searchant.org
- searchbattle.org
- searchalaska.org
- clicksalem.org
|
