Troj/Canary

Please read the instructions for removing Trojans.

Troj/Canary is a backdoor Trojan client program that can be used to download and run files from a remote server.

USAGE: Canary <server address> <filename1>, <param1>, <param2> ... (where <server address> can be specified as an IP address or resource name - URL/URI/UDI/URN).

The file will be copied to C:\<temp>\EACDownload\ as either can_temp.exe or can_temp.dat (depending upon whether it's an executable file or not). Executable files will automatically be run using the command line parameters specified.