ntsyst32.exe - Dangerous
ntsyst32.exe
Manual removal instructions:
Antivirus Report of ntsyst32.exe:
ntsyst32.exe
W32/Sdbot-LT is a worm which spreads via network shares.
It searches for shared folders with weak passwords and copies itself to the Windows System folder of a vulnerable computer as ntsyst32.exe.
Also may drop a backup copy of itself into payload.dat
The worm includes backdoor functions which can be controlled by a remote attacker over IRC.
The infected computer can be used to perform any of the following functions:
- Proxy server (SOCKS4)
- FTP server
- SMTP server
- File system Manipulation
- Port scanner
- DDoS floods (TCP,UDP,SYN)
- Remote shell (RLOGIN)
Automatic Removal: Use RegRun Startup Optimizer to remove it from startup.
| ntsyst32.exe | Malware |
| ntsyst32.exe | Dangerous |
| ntsyst32.exe | High Risk |
It searches for shared folders with weak passwords and copies itself to the Windows System folder of a vulnerable computer as ntsyst32.exe.
Also may drop a backup copy of itself into payload.dat
The worm includes backdoor functions which can be controlled by a remote attacker over IRC.
The infected computer can be used to perform any of the following functions:
- Proxy server (SOCKS4)
- FTP server
- SMTP server
- File system Manipulation
- Port scanner
- DDoS floods (TCP,UDP,SYN)
- Remote shell (RLOGIN)
Automatic Removal: Use RegRun Startup Optimizer to remove it from startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.