Home / malware Trojan:Win32/Insebro.C
First posted on 12 June 2009.
Source: SecurityHomeAliases :
Trojan:Win32/Insebro.C is also known as Also Known As:Win32/FakeAV.AJE (CA), Trojan.DL.Agent.IMFG (VirusBuster), Downloader.Agent2.VG (AVG), Trojan.BHO.OFP (BitDefender), Win32/Adware.WinPCDefender (ESET), FakeAlert-CC (McAfee), :Trj/Downloader.MDW (Panda), Trojan.Fakeavalert (Symantec).
Explanation :
Trojan:Win32/Insebro.C is a DLL component of the Trojan:Win32/FakeRean malware family. It checks for the presence of certain registry subkeys.
Symptoms
System ChangesThe following system changes may indicate the presence of this malware:The presence of the following file:
%windir%ieocx.dll
Trojan:Win32/Insebro.C is a DLL component of the Trojan:Win32/FakeRean malware family. It may arrive in the system as the file %windir%ieocx.dll. Its main purpose is to check if the following registry keys exist: HKCUSoftwareWinPC DefenderSite
HKCUSoftwareWinPC DefenderId If the above keys do exist, Trojan:Win32/Insebro.C reports back to Trojan:Win32/FakeRean.
Analysis by Tim LiuLast update 12 June 2009
