Event ID - 232

Port No232
Service NameBackdoor Skun
RFC Doc0
ProtocolTCP
DescriptionThis Backdoor Malware is used to access and manipulate a remote system. It has two (2) main components: the server and client. The server component is installed on the system, while the client component is used by a malicious user to connect and execute remote commands on an infected system. Aside from the main components enumerated above, this Backdoor Malware has a server editor component which is used to customize installation options such as; ports used and the directory where the malware will reside.
Reference Link Backdoor Skun Trojan
AttackSOLUTION :
Identifying the Malware Program

To remove this malware, first identify the malware program.
1.Scan your system with your Trend Micro antivirus product.
2.NOTE all files detected as BKDR_CYN.20.
Trend Micro customers need to download the latest pattern file before scanning their system. Other users can use Housecall, Trend Micro's online virus scanner.

Terminating the Malware Program
This procedure terminates the running malware process. You will need the name(s) of the file(s) detected earlier.
1.Open Windows Task Manager.
• On Windows 95, 98, and ME, pressCTRL+ALT+DELETE
• On Windows NT, 2000, and XP, press
CTRL+SHIFT+ESC, then click the Processes tab.
2.In the list of running programs*, locate the malware file(s) detected earlier.
3.Select one of the detected files, then press either the End Task or the End Process button, depending on the version of Windows on your system.
4.Do the same for all detected malware files in the list of running processes.
5.To check if the malware process has been terminated, close Task Manager, and then open it again.
6.Close Task Manager.

NOTE:
On systems running Windows 95, 98, and ME, Windows Task Manager may not show certain processes. You can use a third party process viewer such as Process Explorer to terminate the malware process. Otherwise, continue with the next procedure, noting additional instructions. If you were not able to terminate the malware process as described in the previous procedure, restart your system."

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.