Home / malware Trojan:Win32/Lowzones.gen!A
First posted on 27 November 2012.
Source: MicrosoftAliases :
Trojan:Win32/Lowzones.gen!A is also known as Backdoor.Win32.Hupigon (Ikarus), Win32/Lowzones (ESET), Trojan.LowZones (Symantec), W32/Adclicker.SG (Command).
Explanation :
Trojan:Win32/Lowzones.gen!A is a detection for trojans that lower Internet security settings.
Malware detected as Trojan:Win32/Lowzones.gen!A make changes to the registry that lower Internet security settings by modifying how your Internet browser behaves in certain Internet "zones" (such as trusted sites, pages on your intranet or network, or the Internet).
For instance, the changes may include the following:
- Allowing the downloading of unsigned (untrusted) ActiveX controls or .NET Framework components, which could be exploited to download other malware
- Allowing websites that would normally be blocked to instead be accessible by your browser
- Disabling the built-in phishing filter in Internet Explorer
The settings that are changed by these registry modifications vary between different installations of Trojan:Win32/Lowzones.gen!A.
Analysis by Hyun Choi
Last update 27 November 2012
