INF.Infort Trojan
INF.Infort description:
INF.Infort Category:Trojan,Backdoor,Downloader,DoS
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.
Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Backdoors are the most dangerous type of Trojans and the most popular.
Backdoors open infected machines to external control via Internet.
They function in the same way as legal remote administration programs used by system administrators.
This makes them difficult to detect.
Backdoors are installed and launched without the consent of the user of computer.
Often the backdoor will not be visible in the log of active programs.
Once a backdoor has been successfully launched, the computer is wide open.
Backdoor functions can include:
- Launching/ deleting files
- Sending/ receiving files
- Deleting data
- Displaying notification
- Rebooting the machine
- Executing files
Backdoors are used by virus writers to detect and download confidential information,
execute malicious code, destroy data, include the machine in bot networks and so forth.
Backdoors combine the functionality of most other types of in one package.
Backdoors have one especially dangerous sub-class: variants that can propagate like worms.
This family of Trojans downloads and installs new malware or adware on the computer.
The downloader then either launches the new malware or registers it to enable autorun
according to the local operating system requirements.
The names and locations of malware to be downloaded are either coded into the
Trojan or downloaded from a specified website.
DoS trojans conduct attacks from a single computer with the consent of the user.
Detection INF.Infort :
INF.Infort Files:
[%PROFILE_TEMP%]\msbb_gdf.dat
[%WINDOWS%]\msbb_gdf.dat
[%PROFILE_TEMP%]\msbb_gdf.dat
[%WINDOWS%]\msbb_gdf.dat
INF.Infort Registry Keys:
HKEY_LOCAL_MACHINE\software\180solutions
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\app management\arpcache\ncase
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\salm
Removing INF.Infort:
you can run trial version of ExterminateIt, or remove INF.Infort manually.To completely manually remove INF.Infort malware from your computer, you need to delete the Windows registry keys and registry values, the files and folders associated with INF.Infort.
Also Be Aware of the Following Threats:
Miewer Trojan Symptoms
Keyboard.Spectator.Pro Spyware Removal instruction
Removing Amahkey Trojan
Runouce.b Worm Removal instruction
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home