high
Summary
Summary
Action- More Information
| Protection available since | 19 July 2007 02:11:34 (GMT) |
|---|---|
| Last updated | 19 July 2007 03:52:11 (GMT) |
| Detected by | All Sophos products |
Free virus scan
- Free virus, spyware, and adware scan
- Test your existing anti-virus protection
- Find threats your anti-virus missed
Action
- Summary
- Action
- More Information
Please follow the instructions for removing Trojans.
More Information
Troj/Dorf-Gen is a family of backdoor Trojans for the Windows platform.
Members of Troj/Dorf-Gen typically attempt to drop a file with a SYS extension to the Windows system folder. This file is registered as a new system driver service with a startup type of automatic, so that it is started automatically during system startup. Registry entries are created under:
HKLM\SYSTEM\CurrentControlSet\Services\<service name>
Members of Troj/Dorf-Gen also usually attempt to inject another file into services.exe. This file may create the clean file <System>\peers.ini, as well as download and execute code from the internet, and provide backdoor functionality to allow access to the computer by a remote user.
|
