Friday, December 12, 2008

KWM Trojan

Removing KWM
Categories: Trojan,Backdoor,RAT,Hacker Tool
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Backdoors are used by virus writers to detect and download confidential information,
execute malicious code, destroy data, include the machine in bot networks and so forth.

Many trojans and backdoors now have remote administration capabilities
allowing an individual to control the victim's computer.
Many times a file called the server must be opened on the victim's computer before
the trojan can have access to it.

These are generally sent through email, P2P file sharing software,
and in internet downloads. They are usually disguised as a legitimate program or file.
Many server files will display a fake error message when opened, to make it seem like it didn't open.
Some will also kill antivirus and firewall software.
Exploits use vulnerabilities in operating systems and applications to achieve the same result.

KWM Also known as:

[Kaspersky]Backdoor.KWM.b;
[McAfee]PWS-Susanin.dr;
[F-Prot]security risk or a "backdoor" program;
[Panda]Trj/PSW.Susanin;
[Computer Associates]Win32.PSW.KWM.B,Win32/KWM.B!PWS!Trojan

Visible Symptoms:
Files in system folders:
[%WINDOWS%]\netcfgh.exe
[%WINDOWS%]\netcfgh.exe

How to detect KWM:

Files:
[%WINDOWS%]\netcfgh.exe
[%WINDOWS%]\netcfgh.exe

Removing KWM:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Remove Soclaip Trojan
VirtualBouncer Adware Information
Removing Black.Angel Trojan

No comments: