high
Summary
Summary
Action- More Information
| Affected operating systems | Windows |
|---|---|
| Characteristics |
|
| Included in our products from | January 2006 (4.01) |
| Protection available since | 10 November 2005 10:25:49 (GMT) |
| Detected by | All Sophos products |
Action
- Summary
- Action
- More Information
Please read the instructions for removing Troj/Stinx-E.
More Information
Troj/Stinx-E is a backdoor Trojan for the Windows platform.
Troj/Stinx-E connects to one of several IP addresses and runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.
When first run Troj/Stinx-E copies itself to <System>\$sys$drv.exe.
Troj/Stinx-E can be instructed to delete, execute, and download and execute files. Troj/Stinx-E is a backdoor Trojan for the Windows platform.
Troj/Stinx-E connects to one of several IP addresses and runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.
When first run Troj/Stinx-E copies itself to <System>\$sys$drv.exe.
Troj/Stinx-E can be instructed to delete, execute, and download and execute files.
Troj/Stinx-E will attempt to circumvent the Windows Firewall if it is present by adding itself to the list of allowed programs.
Troj/Stinx-E may be stealthed on an infected system by exploiting Sony DRM (Digital Rights Management) software.
Troj/Stinx-E creates a Mutex variable named "SonyEnabled".
Troj/Stinx-E may arrive as an email attachment wherein it is claimed that the attached file is a photograph to be published that requires approval.
|
