|
|
Detect and remove hidden rootkits using
UnHackMe
RegRun Security Suite = 24 system utilities for protecting your computer. Try now! |
 %System%\Ntsvc.exe - Dangerous
It logs keystrokes when you visit certain Web pages and emails the log to the attacker. Web pages that link to .CHM files to exploit the Microsoft Internet Explorer ITS Protocol Zone Bypass Vulnerability are known to distribute Trojan.Gletta.A. Captures all the keystrokes entered into any windows that match predefined list, and writes them into a log file. Uses its own SMTP engine to send the log file to an external mail account. It uses an SMTP server in Russia to send the mail. The mail has the following characteristics: Both the FROM and TO addresses have the domain "mail.ru" The subject starts with "Business News from " Use RegRun Startup Optimizer to remove it from your system. Removal: %System%\Ntsvc.exe is removed by RegRun.
Read more... Removal instructions...
Recommended software: RegRun Security Suite - removal and protection. http://www.regrun.com RegRun Reanimator - free removal tool. greatis.com/reanimator
What is hidden in MSDN? Why software developers prefer Win32.FreeTechSecrets.com? All Unix Manuals in Alphabetical Order C# controls for .NET in 3 simple steps. Constantly updated. Last update: May 12 2008
Interesting information about Vista programs... Need consultation? Would you like to add your opinion?
|
|
