Panda ActiveScan found a hacking tool named Processor

Hi,

I ran Panda Active Scan today and it found the following:


ProcessorThreat Level:
Damage:
Distribution:

Common name: Processor

Technical name: Application/Processor

Threat level: Low

Type: Potentially Unwanted Program (PUP)

Effects:
It gathers information and interacts with the processes that are being run, it allows running processes to be viewed, closed, ended and suspended, and it permits process priority and affinity to be changed. It can be locally or remotely run.

Affected platforms: Windows 2003/XP/2000/NT/ME/98/95

First detected on: Aug. 18, 2005

Detection updated on: Aug. 22, 2005

In circulation? No

Brief Description

Processor is a hacking tool. Though these programs are legitimate and useful tools when they are appropriately used, a hacker could take advantage of them in order to carry out malicious actions.

Processor is a command line application that can be locally or remotely run, as it is compatible with Telnet Server (tlntsvr).

Processor gathers information and interacts with the processes that are being run in the affected computer. It permits running processes to be viewed, as well as their owners, set of permissions, CPU time, creation time, etc.

Additionally, Processor allows processes to be ended or closed and to be suspended or resumed later. It also permits process affinity and priority to be changed.

Processor does not pose a risk by itself, but it can be used with malicious intentions.

Visible Symptoms

Processor is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.

Effects

Processor carries out the following actions:

It gathers information and interacts with the processes that are being run in the affected computer.
It allows the running processes to be viewed, as well as their owners, set of permissions, CPU time, creation time, etc.
It allows processes to be ended or closed, by means of their PID (Process Identifier) or name.
It permits processes to be suspended and to be resumed later.
It allows process priority to be modified.
It permits process affinity to be changed, that is, the binary mask that identifies the processor on which they can be run.
It is a command line program that can be locally or remotely run, as it is compatible with Telnet Server (tlntsvr).

Processor does not pose a risk by itself, but it can be used with malicious intentions.

Further Details

Processor is written in the Assembler language with the compiler Masm32 v.7. This application is 499,712 bytes in size.

Is my computer infected by Processor?

Bear in mind that Processor is not really a virus but a Hacking Tool. Firstly, make sure that your Panda solution detects this type of threat by checking our comparative table on Panda Products.

In order to make absolutely sure that Processor has not affected your computer, carry out a full scan of your computer using a Panda Product detecting Hacking Tools, after checking that it is updated. For detailed information on how to update your solution, check the User Guide corresponding to it.


How to remove Processor?

Keep in mind that Processor is not really a virus but a Hacking Tool. So make sure that your Panda solution detects and removes this type of threat. For more detailed information, check the comparative table on Panda Products.

If your Panda product detects Processor during the scan, it will automatically offer you the option of deleting it. Do this by following the program's instructions.


In case that you do not have a product of such characteristics at your disposal, we strongly recommend you to consider the benefits of purchasing a solution detecting all types of malware.


Additional notes:

After deleting this malware by following the specified steps, if your computer runs Windows Millenium, click here to find out how to eliminate it from the _Restore folder.
After deleting this malware by following the specified steps, if your computer runs Windows XP, click here to find out how to eliminate it from the _Restore folder.


Even though Processor is a low risk hacking tool, it needs to be removed from my computer. When I clicked on "Disinfection Device," it opened up a window which recommended that my only choice to rid my pc of this hacking tool was to buy Panda for $12.95 (picture attached).

Is there another way that I can remove Processor?

Denise

 

Sorry, I've attached the Panda ActiveScan Report.

Denise

 

I'm sorry, but I don't understand computerese. Are you saying that I should remove Smitfraud\SmitfraudFix.zip[SmitfraudFix/Process.exe? I never ran Smitfraud.

Can you be more specific and let me know what I should do?

Denise

 

Thanks chaslang. I did download it a while ago as an anti-spyware/virus/malware program because it seems like I always have some little bug popping up. It was a program I'd never used and sometimes a new program finds something that my others haven't.

Much appreciated . . .

Denise