www.esecurityplanet.com/alerts/article.php/3737831
Back to Article
4/1: Proxy-Fireby Trojan Used by Malware Authors to Control System
By Esther Shein
April 1, 2008
%WINDIR%\system32\sarc.exe (20,531 bytes)
%WINDIR%\system32\SVCHOST.EXE (589,824 bytes)
%WINDIR%\system32\VNCHooks.dll (77,824 bytes)
Back to Article
4/1: Proxy-Fireby Trojan Used by Malware Authors to Control System
By Esther Shein
April 1, 2008
Proxy-Fireby is a Trojan that could be used by malware authors to remotely control the machine. When the executable is run on the victim machine, the trojan copies itself to the following locations:
More information can be found at this McAfee page.