1. Skip to navigation
  2. Skip to content
  3. Skip to secondary-content

Where You Are

  1. Labs
  2. Threats
  3. Virus and threat descriptions
  4. Trojan:W32/Tiny.E

Trojan:W32/Tiny.E

Name : Trojan:W32/Tiny.E
Detection Names : Trojan.Win32.Tiny.E
Category:Malware
Type:Trojan
Platform:W32

Summary

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Additional Details

Trojan:W32/Tiny.E launches the explorer.exe process and modifies the Windows Registry to create launch points in the system.

On execution, the trojan modifies the following registry key:

  •  HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
      Userinit=C:\WINDOWS\system32\userinit.exe

The modification is as follows:

  •  Userinit=C:\WINDOWS\system32\userinit.exe, explorer.exe

Tiny.E also creates the following key:

  •  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
      Barsaka=explorer.exe