Did some research and found this from symantec security response and mcafee enterprises
"Backdoor.Doyorg is a back door Trojan which allows unauthorized remote access. The Trojan may arrive via an instant message received in AOL Instant Messenger (AIM)."
Heres how to remove it:
1. Update the virus definitions.
2. Restart the computer in Safe mode (How to start windows in safe mode)
3. Reverse the changes made to the registry.
4. Run a full system scan and delete all the files detected
Heres the changes it makes to the registry:
Click Start > Run.
Then click OK.
Navigate to the this key
In the right pane, double click the key shell, and then in the box delete whatever is there and type Explorer.exe
MAKE SURE YOU EDIT THE REGISTRY WHILE IN SAFE MODE OR THE THREAT WILL NOT BE REMOVED!!
After doing this your main antivirus should take care of the rest.....to make sure your clean after you think its removed post a hijack this log in the hijack this analyzation forum.
Edited by Techsomething, 12 June 2005 - 10:45 PM.