1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. System Infected: PHP.Backdoor.Trojan Activity

System Infected: PHP.Backdoor.Trojan Activity

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

A Web based attack carrying a malformed file has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

Additional Information

This signature detects a malformed image that may result in a redirect of the host machine to a malicious web site.

Affected

  • Windows

Response

No further action is required but you may wish to perform some of the following actions as a precautionary measure.
Run the Norton Power Eraser. (home users)
Run the Symantec Power Eraser. (business users)
Update your product definitions and perform a full system scan.
Submit suspicious files to Symantec for analysis.

If you believe that the signature is reported erroneously, please read the following:
Report a potential false positive to Symantec.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube