C2/Generic-A

Category: Viruses and Spyware Protection available since:19 Jul 2013 12:04:27 (GMT)
Type: Malicious behavior Last Updated:19 Jul 2013 12:04:27 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Characteristics

  • Enables remote access

Affected Operating Systems

Windows

C2/Generic-A is the threat name associated with the command and control (C&C) servers used by malware.

Note: C2/Generic-A is not detection of a malware payload on an infected machine.

Instead it indicates Sophos products blocking network traffic (reputation or IPS filtering) to a remote machine believed to be a C&C server. The alert indicates that a machine within the network is compromised with malware.

Recommended remediation steps:

  1. Identify the compromised machine. The IP address of the machine attempting to connect to the C&C server will be visible within the alert.
  2. Perform a full system scan on the compromised machine using the Sophos Virus Removal Tool (free download).

download Try Sophos products for free
Download now