Know Your Malware: Telemot.b Removal

Telemot.b is a backdoor that gives the attacker unauthorized remote access to the compromised computer. It allows the intruder to terminate running processes, alter the Windows registry, take screenshots of user activity, download and upload arbitrary files, shutdown a computer and update the backdoor. Telemot.b injects malicious code into legitimate system processes in order to hide itself from the user. It is able to bypass the Windows Firewall. The backdoor runs on every Windows startup.

Related files: chkdsk64.exe

Telemot.b properties:
Allows remote user connection
Takes and sends out screenshots of user activity
Connects itself to the internet
Hides from the user
Stays resident in background Remove Telemot.b, removal instructions

Linked by shanmuga Wednesday, 1st February 2006 12:28AM