Troj/Bckdr-QNB

Aliases	Backdoor.Win32.PcClient.bqd
Category	Viruses and Spyware
Type	Trojan
What to do	If you've received an alert for a virus or spyware, then follow the instructions for removing the threat.
Prevalence	low high

Summary

Summary
Action
More Information


Affected operating systems	Windows
Protection available since	20 April 2008 14:51:49 (GMT)
Detected by	All Sophos products

Free virus scan
Download the Threat Detection Test

Free virus, spyware, and adware scan
Test your existing anti-virus protection
Find threats your anti-virus missed

Action

Summary
Action
More Information

Please follow the instructions for removing Trojans.

More Information

Summary
Action
More Information

Troj/Bckdr-QNB is a Trojan for the Windows platform.

Troj/Bckdr-QNB includes functionality to access the internet and communicate with a remote server via HTTP.

When Troj/Bckdr-QNB is installed the following files are created:

<System>\drivers\ijyfuinp.sys
<System>\ijyfuinp.dll

The file ijyfuinp.dll is detected as Mal/Behav-010 and the file ijyfuinp.sys is detected as Mal/Behav-204.

The file ijyfuinp.dll is registered as a service named "SENS" (replacing any existing services named "SENS"). Registry entries are created or modified under:

HKLM\SYSTEM\CurrentControlSet\Services\SENS

Get reports about the latest virus and spyware threats delivered to your computer

In this section

Sophos blogs

Troj/Bckdr-QNB

Summary

Action

More Information