Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Troj/Loony-D

Mar 17, 2004 11:32PM PST

Aliases
Backdoor.Loony, BackDoor-AZV.gen, Backdoor.SDBot.Gen

Type
Trojan

Description
Troj/Loony-D is a backdoor Trojan which allows unauthorised access and control of the computer from a remote network location via IRC channels.
The Trojan copies itself to the Windows System folder as MSTASK32.EXE and sets the following registry entry so that it is executed every time that the computer restarts:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
Mstask32driver = Mstask32.exe

http://www.sophos.com/virusinfo/analyses/trojloonyd.html

Discussion is locked