Once installed, BKDR_ANDROM.NTW creates an opening in the victim's computer's security. This opening, known as a backdoor, allows criminals to install malware or steal information from the infected computer without alerting the infected computer's security software. Backdoor Trojans are the main way in which other attacks involving data theft or the installation of other malware (such as bitcoin miners or rogue security software) are carried out. The payload of a BKDR_ANDROM.NTW attack allows criminals to take over the infected computer in order to use it in additional malware attacks, send out spam email or to carry out other kinds of attacks that use thousands of coordinated infected computers. It is important to understand that the presence of the BKDR_ANDROM.NTW Trojan on a computer indicates a severe threat to a computer's security and should be followed with immediate action involving a reliable anti-malware application.
Preventing Malware Attacks Associated with BKDR_ANDROM.NTW
The best way to prevent BKDR_ANDROM.NTW infections is to disable Java entirely, especially in the wake of the Zero Day vulnerabilities reported in the media. Trojan droppers associated with BKDR_ANDROM.NTW use malicious Java Script files disguised as updates for Java. It is also recommended ensuring that your computer is protected with a reliable anti-malware scanner that is from a reliable source (preferably, directly from the manufacturer). This, coupled with safe browsing practices, should protect you and your data from a BKDR_ANDROM.NTW attack and other forms of malware.
File System Details
|3||%System Root%\Documents and Settings\All Users\svchost.exe|
|5||%User Temp%\ms[RANDOM CHARACTERS].[EXTENSION NAME]|
|6||%System Root%\Documents and Settings\All Users\Local Settings\Temp\ms[RANDOM CHARACTERS].[EXTENSION NAME]|
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.