Trojan.VirtualRoot is a Trojan horse program that is dropped by the CodeRed II
worms. The Trojan allows a hacker to have full remote access to the Web server that is infected by CodeRed II or CodeRed.F. Norton AntiVirus can detect an infection of CodeRed II or CodeRed.F on a Web server by detecting the payload (Trojan component) of this worm as Trojan.VirtualRoot.
Symantec Security Response has created a tool to perform a vulnerability assessment of your computer and remove the CodeRed Worm, CodeRed II and CodeRed.F. To obtain the CodeRed removal tool, please click here
The Trojan.VirtualRoot Trojan takes advantage of a vulnerability in Windows NT and Windows 2000. Download and install the following Microsoft security patch to address that problem and to stop the Trojan from reinfecting the computer:
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.