New Backdoor Trojan Discovered

Discussion in 'malware problems & news' started by Smokey, May 9, 2002.

Thread Status:
Not open for further replies.
  1. Smokey

    Smokey Registered Member

    Joined:
    Apr 1, 2002
    Posts:
    1,514
    Location:
    Annie's Pub
    Discovered new backdoor trojan:

    winlogon.exe, placed in windows\system

    Attention: there is an original non-infected file winlogon.exe by Microsoft, placed in windows\system32

    TDS-3 (DCS) has added this new trojan today to detection.

    Comment of DCS to this Trojan:

    "This trojan appears to click banners or something in the background - it opens an invisible Internet Explorer window. We would recommend you remove it immediately" and

    "We added this to detection, it looks as though it refreshes some page and attempts to fake clicks on some webpages".


    Smokey
     
    Smokey, May 9, 2002
    #1
  2. Technodrome

    Technodrome Security Expert

    Joined:
    Feb 13, 2002
    Posts:
    2,140
    Location:
    New York
    You already reported this Backdoor/Trojan !
    http://www.security-pro.co.uk/yabb/YaBB.pl?board=trojansbackdoors;action=display;num=1019846489

    Technodrome
     
    Technodrome, May 9, 2002
    #2
  3. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,475
    Location:
    The Netherlands
    Although Smokey indeed posted about a possible new trojan in the thread posted by TD, consider this post as a confirmation this turned out to be a new one indeed.

    regards,

    paul
     
    Paul Wilders, May 10, 2002
    #3
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...