|
Products
|
Code: p16 Severity: Warning
Description: This event shows that a well-known Trojan Horse are running on the host, which is not a scan, but a successful connection. Impact: The Doly backdoor is one of many backdoor programs that attackers can use to access your computer system without your knowledge or consent. With the Doly backdoor, an attacker can do the following: ? log your keystrokes ? start an FTP server ? capture an image of your screen ? shut down or restart your computer Corrective: To remove the Doly backdoor from your computer, follow these steps: 1. Using Regedit, find the HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run registry key. 2. Find the registry entry named Ms Tesk that has a data value of C:\Program Files\Mdm.exe. 3. Delete this registry entry. 4. Delete Mdm.exe from C:\Program Files. 5. Delete Mdm.exe from the Startup folder in the Windows Start menu. Go to Start -> Programs -> Startup. Right-click Mdm.exe and select delete from the pop-up menu.
|
