Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Win32.Ciadoor.12.A (backdoor trojan)

Nov 17, 2003 12:32AM PST

Alias: Backdoor.Ciadoor (Symantec),
Backdoor.Ciadoor.12.a (Kaspersky)
Category: Win32
Type: Trojan
Published Date: 11/16/2003
Last Modified: 11/17/2003

CHARACTERISTICS
Win32.Ciadoor.12 is a backdoor trojan, which allows remote control of an affected machine. It is highly configurable.

Method of Installation
The Ciadoor server is configurable, and can install itself in a number of ways.

The trojan copies itself to the Windows directory. The file name used is configurable, but the default is:

%windows%\Csrss.exe

Depending on its settings, it may delete the original file after copying itself to this location.


More: http://www3.ca.com/virusinfo/virus.aspx?ID=37583

Discussion is locked