Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It ends processes belonging to antivirus programs and firewalls. It drops a Trojan that joins to an IRC channel in order to receive remote control commands.|
|First detected on:||Oct. 30, 2003|
|Detection updated on:||Jan. 3, 2007|
|Yes, using TruPrevent Technologies
|Country of origin:||RUSSIA|
Dumaru.gen is a generic detection for future variants of the Dumaru family. This group of worms share the following common characteristics:
It spreads via e-mail.
It installs a Trojan on the affected computer. The Trojan incorporates its own IRC client in order to join an IRC channel and accept remote control commands, download and run files, etc.
It ends processes belonging to several antivirus programs, firewalls, etc. This leaves the affected computer vulnerable to the attack of other malware.
Dumaru.gen is difficult to recognize, as it does not show any messages or warnings that indicate it has reached the computer.