The Net's Best Services, Programs, Software, and More!
Internet Security


Trojan Providing Unauthorized Computer Access

Trojan Providing Unauthorized Computer Access..

Troj/Backsm-A is a backdoor Trojan that when executed, initiates a background process and attempts to connect to a remote IRC server and provide unauthorized access to the infected computer.

Troj/Backsm-A sets the following registry entry in an attempt to run the Trojan when Windows starts up:

  • HKLM\Software\Microsoft\Windows \CurrentVersion\Run "winlogin"=\Winlogin.exe


Trojan Drops DLL Into Windows Folder

Troj/Apdoor-A is a backdoor Trojan that drops a DLL with a random name into the Windows temporary folder and executes it.

The Trojan DLL attempts to inject itself into the Program Manager process, then copies itself and the Trojan EXE into the Windows system or temporary folder and sets the following registry entry or the corresponding HKCU entry:

  • HKLM\Software\Microsoft\Windows \CurrentVersion\Run\


Troj/Apdoor-A monitors this registry entry and attempts to reset it if the entry is modified or removed.

Troj/Apdoor-A is typically distributed by a malicious script hosted on a web site. The script will drop a downloader EXE file and run it. The dropped EXE program drops a DLL into the Windows temporary folder with a random name and executes it. The dropped DLL attempts to inject itself into the Program Manager process, copies itself and its dropper EXE into the Windows system or temporary folder and sets an HKLM or HKCU registry key.

Mass-Mailing Worm Deletes Files

W32.HLLW.Syney@mm is a mass-mailing worm that deletes Windows system files and spreads through Microsoft Outlook.

Macro Virus Infects Word Documents

W97M.Riosys is a macro virus that infects Microsoft Word documents and templates when they are closed.

Worm Spreads Via Email With Fradulent Subject Line

Mimail.B is a worm with Trojan characteristics that spreads via e-mail in a message with the subject 'Fraudulent escrow service' and the attached file INFO.ZIP.

Mimail.B exploits the following vulnerabilities:

  • Internet zone: Internet Explorer vulnerability. It allows a hacker to open an executable file already present in the affected computer.


  • MHTML: Outlook Express vulnerability. It allows hackers to send and run a file of their choice.


  • Due to its Trojan characteristics, Mimail.B logs keystrokes.


Worm/Sefex Copies Itself to Directory Upon Execution

Worm/Sefex is a memory resident Internet worm that if executed will copy itself in the \windows\ directory under the filename "RESUEM.EXE" so that it gets run each time a user restarts a computer. When the computer is restarted, the following registry key gets added:

  • HKEY_CURRENT_USER\Software\Microsoft \Windows\CurrentVersion\Run "putil"="C:\\WINDOWS\\RESUEM.EXE"


You will find much more on this topic at WorldsLargestNetwork.com

  Home
  Partners
  $100000 Club
  Is Free.. Free?
  Free Games
  Custom Software
  Website Hosting

WorldsLargestNetwork.com








Is Free really Free?








Spyware Scanner will Scan Your PC for Malicious Spyware or Adware Free!

Home | Partner with the Best
Worlds Largest Network

Active © WorldsLargestNetwork.com; All Rights Reserved