W32/Dropper.CC8F!tr - Released Jun 28, 2010 - Last Updated Jun 30, 2010

Alias/es Trojan.Win32.Jorik.Oficla.j (KAV), W32/Oficla.AF (F-Prot)
Visible Symptoms The following files exist: %Temp%\[Number].tmp %System%\thxr.wgo Possible firewall alert that an executable program is attempting to connect to the Internet.
Detailed Analysis The behavior of this trojan is the same as W32/Sasfis.1BE6!tr.
Recommended Action FortiGate Systems Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option. FortiClient Systems Quarantine/delete files that are detected and replace infected files with clean backup copies.

Fortinet