|
AKA : Acid Shiver Backdoor.AcidShiver.Kor PWS-Shivers
Trojan.PSW.AcidShiver
Name: Acid Shivers
Type: Trojan
Danger Level : 8 /10
Description: A Trojan is a software program
that enables an attacker to get nearly complete control over
an infected PC. Frequently used by as a tool by malicious hackers.
When this program executes, the program performs a specific
set of actions, usually working toward the goal of allowing
the trojan to survive on a system and open up a backdoor.
Manual removal (source : spywareguide) : This
trojan runs on a random tcp port each time it's started and
it sends an email to the infector, telling them the info. To
connect to it, you need to connect via telnet on the specified
port. Everything is command line based but it's still a very
good Trojan. Btw if you add a cool feature please remember this
is an open source project..." Functions - Lists most of
the commands (description of command) - Hide a task from control
+ alt + delete - Show a hidden task in control + alt + delete
- List Contents of Current Directory - List Contents of Current
Directory - Change To Specified Directory/Drive - Clear Screen
- Kill Process by PID (Shown in PS) - Shows Running Processes
- Deletes Specified Files - Change Port Acid Shiver Listens
on (Until Next Reboot) - Change to default Windows Desktop folder
- Change to Windows Recent folder - Change to default WS_FTP
folder - Show Version Number of Acid Shiver - Show physical,
RAM, CD-ROM, and Network drives - Relay connection to host on
port, Control + C to abort - Sendkeys to active window - Show
Ethernet stats and physical address - Rename the users computer
- Shows DOS Environment variables - Beeps the specified number
of times - Type 'CDROM' for more information - Terminate Acid
Shiver - Rename a specified disk drive - Type 'Shutdown' for
more information - Retrieves information on specified drive
- Disconnect a session by socket index show in 'STATUS' - Shows
users current system date - Shows some general system information
about host and user - Show the state of all sockets used since
last reboot - Retrieve specified file - Retrieve specified file
in hex form - Run the specified shell command - Run the specified
command and display results (may lock up) - Make a new directory
- Remove a directory and all files and subdirectories inside
- Copy file1 to file2
How to detect, remove, protect your PC against Acid
Shivers
See also
|
