Categories: RAT
Many trojans and backdoors now have remote administration capabilities
allowing an individual to control the victim's computer.
Many times a file called the server must be opened on the victim's computer before
the trojan can have access to it.
These are generally sent through email, P2P file sharing software,
and in internet downloads. They are usually disguised as a legitimate program or file.
Many server files will display a fake error message when opened, to make it seem like it didn't open.
Some will also kill antivirus and firewall software.
Some RAT trojans are pranks that are most likely being controlled by a friend or enemy on
April Fool's day or a holiday. Prank RATS are generally not harmful, and won't log keystrokes or hack.
They usually do whimsical things like flip the screen upside-down, open the CD-ROM tray,
and swap mouse buttons. However, they can be quite hard to remove.
Visible Symptoms:
Files in system folders:
[%WINDOWS%]\hellraider.exe
[%WINDOWS%]\hellraider.exe
How to detect Hellraider:
Files:
[%WINDOWS%]\hellraider.exe
[%WINDOWS%]\hellraider.exe
Registry Values:
HKEY_CURRENT_USER\software\mirabilis\icq\agent\apps\cxyfp
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices
Removing Hellraider:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
Arara.dr RAT Symptoms
Priosted Trojan Removal
Bancos.HXJ Trojan Removal
Agent.FZ Trojan Cleaner
Removing Pigeon.EMG Trojan
No comments:
Post a Comment