Hacker`s Paradise backdoor for Windows 95/98 and Windows NT

backdoor-hackersparadise (3113) The risk level is classified as HighHigh Risk

Description:

The Hacker's Paradise backdoor is one of many backdoor programs that attackers can use to access your computer system without your knowledge or consent. With the Hacker's Paradise backdoor, an attacker can do the following:

  • access files on your computer
  • manipulate the appearance of your desktop
  • retrieve RAS (Remote Access Server) passwords (Windows NT only)

Consequences:

Gain Access

Remedy:

To remove the Hacker's Paradise backdoor from your computer:

  1. Stop the Hacker's Paradise program (Antihack.exe) from running. Open the task list by following the steps below for your platform:
    • In Windows 95/98, press Ctrl+Alt+Del to display the Close Programs dialog box.
    • In Windows NT, press Ctrl+Alt+Del, then click the Task Manager button to start the NT Task Manager.
  2. Select Antihack.exe, and then click End Task. If Antihack.exe does not appear in the list, the backdoor is using a different file name and could be very difficult to locate. Refer to the steps below for using an antivirus program to remove the backdoor.
  3. Find and delete the file Antihack.exe.

To use an antivirus program to remove the Hacker's Paradise backdoor:

  1. If you do not have an antivirus program installed, download and install one of these virus scanners:
    • Norton AntiVirus: http://www.symantec.com/nav/indexA.html
    • McAfee VirusScan: http://software.mcafee.com/centers/download/
    • Trend Micro PC-Cillin: http://www.antivirus.com/pc-cillin/products/
  2. Run the antivirus program to scan your system for this backdoor. The virus scanner should find and remove the Hacker's Paradise backdoor from your computer.

References:

  • CVE-1999-0660: A hacker utility, back door, or Trojan Horse is installed on a system, e.g. NetBus, Back Orifice, Rootkit, etc.

Platforms Affected:

  • Microsoft Windows 2000
  • Microsoft Windows 2003 Server
  • Microsoft Windows 95
  • Microsoft Windows 98
  • Microsoft Windows NT 4.0
  • Microsoft Windows XP

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page