Event ID - 1208

Port No1208
Service NameInfector
RFC Doc0
ProtocolTCP
DescriptionWorks on Windows 95, 98 and ME, together with ICQ.
Reference LinkInfector Trojan
AttackIt does the following :

1.Downloading trojan
2.Trojanizes EXE-files
3.Trojan droper
4.ICQ trojan

Alters System.ini. Trojanizes files and adds about 29k to the infected file. It may only be configuerad only when connected to the trojan server. The file "Setup.int " consists of all logged keys the user has pressed. The server is always distributed in a uncompresed version, so others can us any compresor of their choice. It also make the server harder to detect. Version 1.7 bonus is a recompiled version of 1.7 - the same trojan but with a different signature.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.