| VID |
24068 |
| Severity |
40 |
| Port |
1025,1035,1041,1047,1054 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
The Backdoor RemoteNC is detected on the Windows system.
Backdoor.RemoteNC is a backdoor Trojan that works on Windows NT, 2000 and XP and are written in Visual C++. When Backdoor.RemoteNC is executed it opens a random (usually it is 1025, 1035, 1041, 1047, 1054 , or similar) port and listens for a connection. A remote attacker can connect the opened port and have access to affected system to delete, rename, copy, execute files on the remote system.
* References:
http://www.symantec.com/avcenter/venc/data/backdoor.remotenc.html
http://pestpatrol.com/PestInfo/r/remotenc.asp
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
Remove it from the infected computer by using a anti-virus program (vaccine program). Refer to the rapter.net web site at www.rapter.net/jm2.htm for more details on removal. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
