1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. System Infected: Trojan.Viknok Activity 3

System Infected: Trojan.Viknok Activity 3

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

Trojan.Viknok is a Trojan horse that steals information from the compromised computer.

Additional Information

When the Trojan is executed, it may connect to the following command-and-control server:
[http://]dgfvv.mydad.info/778/bod8[REMOVED]

The Trojan then infects the following file so that it executes whenever Windows starts:
%System%\rpcss.dll

Affected

  • Windows 2000, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista, Windows XP
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube