high
Summary
Summary
Action- More Information
| Affected operating systems | Windows |
|---|---|
| Included in our products from | February 2009 (4.38) |
| Protection available since | 4 September 2008 11:06:12 (GMT) |
| Last updated | 3 December 2008 05:59:31 (GMT) |
| Detected by | All Sophos products |
Action
- Summary
- Action
- More Information
Please follow the instructions for removing Trojans.
The name Troj/Zlob-Gen is used where a file belongs to a particular family of Trojans, but the variant is not separately identified. Sophos's proactive protection technology will identify such files as a -Gen variant.
- Ensure that you are using the most recent IDE files, as more precise detection could now be available. If necessary
- update with the latest IDE files and
- repeat the scan.
- Please send us a sample to assist in improving our technology.
- Use the instructions for removing generically detected files to delete the file from your computer.
- If you require further assistance with disinfection, contact support.
More Information
Troj/Zlob-Gen detects members of the Zlob family of Trojan downloaders.
The Troj/Zlob-Gen family of Trojans usually attempt to stealth themselves by injecting themselves into another system process or by registering themselves as a service process.
The typical Troj/Zlob-Gen Trojan may create folders in the <System> folder and store downloaded files in these folders and set the following registry entries to run on user startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
|
