This is a high risk malware, that might show up as a trojan, this trojan will attempts to load and execute remote code in explorer process, and once this task is complete by the trojan bot, your system will not start, will effect mostly windows xp and windows 7.
The applications attempted the following network connections. hxxp://www.baidu1s4.com/1mg/***** and hxxp://www.baiduscs.com/1mg/*****
| EMSI Software | Trojan-GameThief.Win32.Magania!IK |
| ahnlab | Win-Trojan/MalPackedD.suspicious |
| avast | Win32:OnLineGames-FVL [Cryp] |
| AVG (GriSoft) | Dropper.Generic2.CBHP |
| avira | Worm/Taterf.B.258 |
| Kaspersky | Packed.Win32.Klone.bq |
| BitDefender | Gen:Variant.Taterf.20 |
| clamav | PUA.Packed.ASPack |
| Dr.Web | Trojan.PWS.Wsgame.24181 |
| F-Prot | W32/Onlinegames.FV.gen!Eldorado |
| Microsoft | worm:win32/taterf.b |
| Eset | Win32/PSW.OnLineGames.OUM |
| norman | W32/Suspicious_Gen2.PCTYT |
| panda | W32/Lineage.LOH |
| rising | Trojan.Win32.Fednu.cus |
| Sophos | W32/Taterf-AR |
| Trend Micro | Mal_OLGM-41 |
| vba32 | Trojan.Agent.01152 |
| V-Buster | Trojan.Vaklik!nvEuP1vpjFk |
| Vet (Computer Associates) | Win32/Frethog.IHX |
