Tuesday, January 6, 2009

Supervisor.Plus RAT

Click here to remove Supervisor.Plus malware
Supervisor.Plus description:
Supervisor.Plus Category:RAT
Many trojans and backdoors now have remote administration capabilities
allowing an individual to control the victim's computer.
Many times a file called the server must be opened on the victim's computer before
the trojan can have access to it.

These are generally sent through email, P2P file sharing software,
and in internet downloads. They are usually disguised as a legitimate program or file.
Many server files will display a fake error message when opened, to make it seem like it didn't open.
Some will also kill antivirus and firewall software.

Some RAT trojans are pranks that are most likely being controlled by a friend or enemy on
April Fool's day or a holiday. Prank RATS are generally not harmful, and won't log keystrokes or hack.
They usually do whimsical things like flip the screen upside-down, open the CD-ROM tray,
and swap mouse buttons. However, they can be quite hard to remove.

Detection Supervisor.Plus :

Supervisor.Plus Files:
[%SYSTEM%]\sp.exe
[%SYSTEM%]\sp.exe

Supervisor.Plus Folders:
[%PROGRAM_FILES%]\Supervisor Plus

Supervisor.Plus Registry Keys:
HKEY_CLASSES_ROOT\clsid\{2dd336ec-f103-687b-7926-406d5ab0df68}
HKEY_CLASSES_ROOT\svplusfile
HKEY_CURRENT_USER\software\alexant

Supervisor.Plus Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\server
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\supervisor plus
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\supervisor plus

Removing Supervisor.Plus:

you can run trial version of ExterminateIt, or remove Supervisor.Plus manually.

To completely manually remove Supervisor.Plus malware from your computer, you need to delete the Windows registry keys and registry values, the files and folders associated with Supervisor.Plus.

Read also:
Backdoor.Backage.Server Trojan Cleaner
Removing Vxidl.AXY Trojan
DOB Trojan Removal
Removing Bancos.HSM Trojan
winantispyware.com Tracking Cookie Removal instruction

Posted by apajyyymoo9295 at 12:52 PM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)