Troj/RJump-I

Category:	Viruses and Spyware	Protection available since:	03 Jan 2007 00:00:00 (GMT)
Type:	Trojan	Last Updated:	03 Jan 2007 00:00:00 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/RJump-I is a backdoor Trojan for the Windows platform.

Troj/RJump-I includes functionality to connect to the internet and communicate with a remote server using HTTP.

Troj/RJump-I listens for incoming connections on a randomly-chosen TCP port between 12000 and 19000, allowing a remote attacker to gain access and control over the infected computer.

When first run, Troj/RJump-I copies itself to AdobeR.exe in the Windows folder and creates the following registry entry in order to be run automatically on startup:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
RavAv
<Windows>\AdobeR.exe

If run with sufficient rights Troj/RJump-I will install itself as an application authorised by Windows Firewall to communicate with the outside world.

Try Sophos products for free
Download now

Troj/RJump-I

Free Mac Anti-Virus

Popular topics