Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Backdoors >> WinSATAN


Vulnerability Assessment Details

WinSATAN

Vulnerability Assessment Summary
Searches for the existence of WinSATAN

Detailed Explanation for this Vulnerability Assessment
WinSATAN is installed.

This backdoor permits anyone to partially take control
of the remote system.

A possible hacker may use it to steal your password or prevent
your system from working properly.

Solution : use RegEdit, and find 'RegisterServiceBackUp'
in HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Run
The value's data is the path of the file.
If you are infected by WinSATAN, then
the registry value is named 'fs-backup.exe'.

Additional Info : http://online.securityfocus.com/archive/75/17508
Additional Info : http://online.securityfocus.com/archive/75/17663

Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2000 Julio César Hernández

Cables, Connectors

AMCC SATA II Storage Raid Controller; Model: 9550SX-12/16ML W/CABLES
$195.0
AMCC SATA II Storage Raid Controller; Model: 9550SX-12/16ML W/CABLES pictureMac Mini i7 2GHZ QUAD-CORE 16GB RAM 1TB SSD 900MB/s RAID 0 SHIPS FAST
$1099.0
Mac Mini i7 2GHZ QUAD-CORE 16GB RAM 1TB SSD 900MB/s   RAID 0 SHIPS FAST pictureSynology Storage DX513 5Bay JBOD RAID SATA 80x80mm Fan NO HDD Expansion Solution
$499.0
Synology Storage DX513 5Bay JBOD RAID SATA 80x80mm Fan NO HDD Expansion Solution pictureG-Technology G-RAID2 1000GB USED in Working Condition
$25.0
G-Technology G-RAID2 1000GB USED in Working Condition picture


Discussions

No Discussions have been posted on this vulnerability.