We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Backdoor:WinNT/Tofsee.A.dr
Detected by Microsoft Defender Antivirus
Aliases: Win32/TrojanProxy.Dlena (ESET) Trojan.Flush.G (Symantec) Trojan.DNSChanger.BX (Sunbelt Software)
Summary
Backdoor:WinNT/Tofsee.A.dr is a dropper for Backdoor:WinNT/Tofsee.A!sys, a kernel-mode backdoor. WinNT/Tofsee.A!sys may download and execute files, bypass a firewall, retrieve and post information or send e-mail message to others.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us
