Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Backdoors >> GirlFriend


Vulnerability Assessment Details

GirlFriend

Vulnerability Assessment Summary
Searches for the existence of GirlFriend

Detailed Explanation for this Vulnerability Assessment
GirlFriend is installed.

This backdoor permits anyone to
partially take the control of
the remote system.

A possible hacker may use it to steal your
password or prevent your from working
properly.

Solution :
To remove GirlFriend from your machine,
open regedit to
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
and look for a value named 'Windll.exe'
with the data 'c:\windows\windll.exe'. Reboot
to DOS and delete the C:\windows\windll.exe file,
then boot to Windows and remove the 'Windll.exe'
registry value.

Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 1999 Renaud Deraison

Cables, Connectors

Server HP ProLiant MicroServer G8 1x G1610T/1P/4GB-U/B120i/SATA/(not Hot Plug
$321.72
Server HP ProLiant MicroServer G8 1x G1610T/1P/4GB-U/B120i/SATA/(not Hot Plug picturesuper micro computer 7044h-82
$0.01
super micro computer 7044h-82 picture 5037MR-H8TRF MICRO CLOUD (SYS-5037MR-H8TRF) Supermicro Super Server
$1250.0
  5037MR-H8TRF MICRO CLOUD (SYS-5037MR-H8TRF) Supermicro Super Server pictureMicro-Star MS-9197 Server Intel Xeon Quad Core 2 GHZ 4GIG DDR2 6 HDD BAYS
$239.99
Micro-Star MS-9197 Server Intel Xeon Quad Core 2 GHZ 4GIG DDR2 6 HDD BAYS picture


Discussions

No Discussions have been posted on this vulnerability.