Welcome to the Virus Encyclopedia of Panda Security.
It opens the port 8181, waits for a file to be transferred through it, and executes this file.
|First detected on:||Dec. 14, 2004|
|Detection updated on:||June 19, 2009|
|Yes, using TruPrevent Technologies
|Repair utility:||Panda QuickRemover|
Zafi.D is a worm with backdoor characteristics, as it opens the port 8181 and waits for a file to be transferred through it. Zafi.D executes this file, which is usually other malware.
Additionally, Zafi.D impedes access to applications that contain the text strings reged, msconfig or task.
Zafi.D spreads via e-mail messages that pass themselves off as Christmas greetings. It also spreads through peer-to-peer (P2P) file sharing programs.
Zafi.D is easy to recognize once it has affected the computer, as it displays the following error message on screen the first time it is run: