Sophos

Troj/Loony-P

Aliases
  • Backdoor.Win32.Hackarmy.gen.
  • W32/Spybot.worm.gen.b
Category
Type
What to do
Prevalence low high

Summary

 
Affected operating systems Windows
Characteristics
  • Installs itself in the registry
Protection available since 17 December 2004 22:57:52 (GMT)
Detected by All Sophos products
Download Free virus scan
Download the Threat Detection Test
  • Free virus, spyware, and adware scan
  • Test your existing anti-virus protection
  • Find threats your anti-virus missed

Action

More Information

Troj/Loony-P is a backdoor Trojan which allows unauthorised remote access to infected computers via the IRC network.

In order to run automatically on Windows log-on, Troj/Loony-P copies itself to the Windows system folder and creates the following registry entry:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
Msn Messenger =
"msnmsgs.exe"

RSS|Atom
Get reports about the latest virus and spyware threats delivered to your computer