Trojan.Cidox
Trojan.Cidox can perform dangerous action on target computer when the NTFS boot sector’s Initial Program Loader was successfully modified. Next, Trojan.Cidox will create a malicious driver component after the Master Boot Record. It will also check for any running process like chrome.exe, opera.exe, firefox.exe, iexplore.exe and svchost.exe and injects a DLL component when spotted.
Technical Information:
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
First Aid to Stop Trojan.Cidox:
When Trojan.Cidox infects a computer, it will modify system setting and inject itself to legitimate Windows files. System Restore is the tool-to-go-to in bringing back clean files and restoring earlier configuration. If you have saved previous restore point, please restore Windows to an earlier date.
Manual Removal of Trojan.Cidox:
1. If an anti-virus program is present, update the definition file.
2. Reboot Windows in SafeMode [how to]
3. Run a full system scan and clean/delete all infected file(s)
4. Delete/Modify any values added to the registry if present. [how to edit registry]
5. Exit registry editor and restart Windows.
Additional Tools and Programs:
Scan with Norton Power Eraser:
A free removal tool from Norton Antivirus was developed to remove unfamiliar threats without using the traditional AV signatures. Download the tool from this location and start scanning the computer for viruses.
Online Virus Scanner:
Another way to remove a virus without the need to install additional anti-virus application is to perform a thorough scan with free Online Virus Scanner that can be found here or on web sites of legitimate security software provider.
Technical Details and Additional Information:
Other functionalities of this Trojan:
- Modify HTML within the browser for its own harmful purpose.
- Display a malicious HTML files.
Malicious Files Added by Trojan.Cidox:
%CurrentFolder%\[RANDOM NUMERIC CHARACTERS].bat
%Temp%\[RANDOM ALPHANUMERIC CHARACTERS].tmp