high
Summary
Summary
Action- More Information
| Detected by | All Sophos products |
|---|---|
Free virus scan
- Free virus, spyware, and adware scan
- Test your existing anti-virus protection
- Find threats your anti-virus missed
Action
- Summary
- Action
- More Information
Please follow the instructions for removing Trojans.
Please read the instructions for removing Trojans.
Windows NT/2000
In Windows NT/2000 you will also need to delete the following registry key. The removal of this key is optional in Windows 95/98/Me.
At the taskbar, click Start|Run. Type 'Regedit' and press Return. The registry editor opens.
Before you edit the registry, you should make a backup. On the 'Registry' menu, click 'Export Registry File'. In the 'Export range' panel, click 'All', then save your registry as Backup.
Locate the HKEY_LOCAL_MACHINE key:
HKLM\Software\Microsoft\Windows\
CurrentVersion\Run\Microsoft Diagnostic
and delete the reference to the file you deleted (if one exists).
Close the registry editor and reboot your computer.
If you have any of the firewalls mentioned above you should uninstall and reinstall them.
More Information
Troj/Bdoor-ABN is a backdoor Trojan that allows others remote access to your computer over a network.
The trojan copies itself to the Windows System folder as a file with a random name and adds an entry to the registry at
HKLM\Software\Microsoft\Windows\
CurrentVersion\Run\Microsoft Diagnostic
to run itself on Windows startup.
The Trojan may attempt to update itself by downloading and executing an EXE file from the internet.
It may disable the following firewall programs:
ZoneAlarm
ZoneAlarm Pro
Tiny Personal Firewall
Sygate Personal Firewall.
Troj/Bdoor-ABN attempts to connect to an IRC server and join a channel where it will wait for commands issued by an attacker. The attacker will be able to launch DDoS (distributed denial of service) attacks on designated IP addresses.
|
