Teevsock C

Posted by: Nuuruvalar [ITS Security] under Virus

Virus Notification/Information:

Source: CA (Outside Link)

Type: Trojan/Key Logger

Aliases:

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Distribution potential: Medium
Reported infections: Low
Damage potential: High

Overall risk rating: Medium

Method(s) of Infection:
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial. Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.

Description:
This is a Trojan detection. Unlike viruses, Trojans are spread manually, often under the guise of a beneficial or wanted/needed application. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs. Distribution channels include e-mail, malicious or hacked Web pages, Internet Relay Chat (IRC), and peer-to-peer networks.

It creates and modifies registry key(s)/entry(ies) as part of its installation routine.

It drops files/components.

One component it drops contains a Key Logger.

Additional Info:

Additional Links:
Backdoor:Win32/Teevsock.C - Microsoft
Generic BackDoor!tg!b0cf416d47b5 - McAfee