Event ID - 28431

Port No28431
Service NameHackTack
RFC Doc0
ProtocolTCP
DescriptionThis is the detection for the file that drops another malware, which is the client Side of the BKDR_HACKTACK_2K. This backdoor program gives a hacker vital system information and compromises the security of the network
Reference LinkHACKTACK
AttackSolutions:

Clean up the registry by running REGEDIT (START/RUN/regedit) and then:
Search for the text "Cfgwiz32.exe" and remove the invalid key from
HKEY_LOCAL\Software\Microsoft\Windows
CurrentVersion\Run\ “Configuration Wizard”
“C:\Windows\Cfgwiz32.exe”
Search for the text "200ññññññññ " and remove the invalid key from
\HKEY_LOCAL_MACHINE\Software\Microsoft\General\Settings
“200ññññññññññññññññññññññññññ”
Scan your system with Trend Micro antivirus and delete all files detected as BKDR_HACKTACK.A. To do this, Trend Micro customers must download the latest pattern file and scan their system. Other email users may use HouseCall, Trend Micro's free online virus scanner.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.