| VID |
24041 |
| Severity |
40 |
| Port |
31,456 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
Backdoor Hackers Paradise is detected.
Hackers Paradise is a trojan horse program created 1997 by Daniel Lehmann.
This backdoor consists of Paradise.exe(Agent program), win.exe(Server program). It uses 31, 456 TCP port as default port, which can't be changed. It dose not register the autoload information.
Hackers Paradise is able to access locally and remotely. This means you can use Hackers Paradise on your computer to find your RAS passwords or it could be used to connect to a remote computer running the server and find the RAS passwords.
With the Hackers Paradise backdoor, a attacker can do the following :
- Control windows
- File manager (Access Files)
- Get RAS(Remote Access Server) passwords (windows NT only)
* Platforms Affected:
Microsoft Windows Any version
* References:
http://www.iss.net/security_center/reference/vuln/HackersParadise_Response.htm
http://www.dark-e.com/archive/trojans/hp/2beta3/index.shtml
http://www.iss.net/security_center/static/3113.php |
| Recommendation |
Remove it from your computer :
1. Reboot the computer or close the trojan win.exe.
2. Delete the trojan file win.exe.
-- OR--
Remove it from your computer by using a vaccine program(anti-virus program). |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
