Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It allows to gain remote access to the affected computer. It listens to the TCP port 961.|
|Detection updated on:||Dec. 16, 2003|
Ierk.A is a Trojan with backdoor characteristics that only affects Windows 2003/XP/2000/NT computers. It allows to gain remote access to the affected computer, in order to carry out actions that compromise user confidentiality or impede the tasks performed.
Ierk.A listens to the TCP port 961. It usually operates with a driver called IERK8243.SYS, used by several malwares in order to hide their activity (Windows Registry entries, processes, files, etc). This driver renders Ierk.A undetectable for the antivirus program.
Ierk.A can also operate with another backdoor called IPSECHLP.DLL, which listens to the port 449.
Ierk.A is difficult to recognize, as it does not show any messages or warnings that indicate it has reached the computer.
However, if the user accesses the Control panel, option Administrative tools/ Services, it can be viewed as a Windows service called Virtual Memory Manager.