| Port No | 49698 |
| Service Name | KiLO |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | This application is a Remote Administration Tool (RAT), a Trojan that provides an intruder with the ability to remotely control a computer via a client on the intruder's machine and a “server" on the victim's machine. Often the intruder simply e-mails the RAT to the user along with a message that convinces the user to run the application. KiLo 0.16 allows an intruder to influence Windows, affect the registry, and perform other unwanted actions on the user’s machine. |
| Reference Link | More Information |
| Attack | Name:KiLO How To Remove: These instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines. 1. Update the virus definitions. Run a full system scan and delete all the files detected as Backdoor.Kilo. Delete %System%\Boot.dat if it exists. Delete the value: 2. Boot Manager %System%\Njgal.exe from the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 3.For specific details on each of these procedures, read the following instructions. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.