Discovered: August 16, 2000
Updated: February 13, 2007 11:52:49 AM
Also Known As: Backdoor.Trojan
Type: Trojan Horse
To remove this Trojan, delete files detected as Backdoor.Bla and remove the value that it added to the registry.
To remove the Trojan:
- Run LiveUpdate to make sure that you have the most recent virus definitions.
- Start Norton AntiVirus (NAV), and run a full system scan, making sure that NAV is set to scan all files.
- If any files are detected as Backdoor.Bla, first write down the file names, and then delete them.
NOTE: If NAV displays a message that it cannot delete the file, you must first remove the value that it added to the registry, restart the computer, and run the scan again.
To edit the registry:
CAUTION: We strongly recommend that you back up the system registry before making any changes. Incorrect changes to the registry could result in permanent data loss or corrupted files. Please make sure you modify only the keys specified. Please see the document How to back up the Windows registry before proceeding.
- Click Start, and click Run. The Run dialog box appears.
- Type regedit and then click OK. The Registry Editor opens.
- Navigate to the key
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
- In the right pane, in the Data column, look for a reference to the file name that you wrote down earlier (the file that NAV detected as infected). The entry in the Name column will vary, but the following have been reported:
System
IO System Debug
- Delete the entry that refers to the Trojan file name.
- Click Registry, and then click Exit to save the change.
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine