New Backdoor Trojan Discovered

Discussion in 'malware problems & news' started by Smokey, May 9, 2002.

Thread Status:
Not open for further replies.
  1. Smokey

    Smokey Registered Member

    Joined:
    Apr 1, 2002
    Posts:
    1,513
    Location:
    Annie's Pub
    Discovered new backdoor trojan:

    winlogon.exe, placed in windows\system

    Attention: there is an original non-infected file winlogon.exe by Microsoft, placed in windows\system32

    TDS-3 (DCS) has added this new trojan today to detection.

    Comment of DCS to this Trojan:

    "This trojan appears to click banners or something in the background - it opens an invisible Internet Explorer window. We would recommend you remove it immediately" and

    "We added this to detection, it looks as though it refreshes some page and attempts to fake clicks on some webpages".


    Smokey
     
  2. Technodrome

    Technodrome Security Expert

    Joined:
    Feb 13, 2002
    Posts:
    2,140
    Location:
    New York
    You already reported this Backdoor/Trojan !
    http://www.security-pro.co.uk/yabb/YaBB.pl?board=trojansbackdoors;action=display;num=1019846489

    Technodrome
     
  3. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,472
    Location:
    The Netherlands
    Although Smokey indeed posted about a possible new trojan in the thread posted by TD, consider this post as a confirmation this turned out to be a new one indeed.

    regards,

    paul
     
Loading...
Thread Status:
Not open for further replies.