Backdoor.Akak
This is a backdoor server that also creates a SOCKS proxy on the compromised system.
Opens an unauthorized backdoor to the compromised system.
May be installed when you visit a malicious Web site using Internet Explorer. These pages may contain code that exploits the Microsoft Internet Explorer Drag And Drop File Installation Vulnerability.
Creates a SOCKS proxy on TCP port 5555.
This allows the compromised computer to be used to proxy protocols such as HTTP.
Listens on TCP port 4321 for commands from the remote attacker.
The attacker can do any of the following:
- Obtain system information
- Download and execute files on the compromised computer
- Uninstall the back door
- Update the address of the master server
Use RegRun Startup Optimizer to automatically remove it from startup.
Removal: rb.exe is removed by RegRun.
Read more... Removal instructions...
Recommended software:
UnHackMe - easy removal Rootkits/Adware/Spyware.
http://www.unhackme.com
RegRun Security Suite - removal and protection.
http://www.regrun.com
RegRun Reanimator - free removal tool.
greatis.com/reanimator
RegRun - User's Choice
Vista Programs - full info...
What is hidden in MSDN?
.NET Secrets Revealed
Why software developers prefer Win32.FreeTechSecrets.com?
All Unix Manuals in Alphabetical Order
C# controls for .NET in 3 simple steps.
Constantly updated. Last update:
June 30 2008
Interesting information about Vista programs...
Need consultation?
Would you like to add your opinion?