Title: LANfiltrator

Remove LANfiltrator. Removal instructions

Severity scale:

(70 / 100)

Many versions of this pest appeared in the internet from July 2002 to April 2004. This dangerous RAT tool includes such functions as "keylogger", "password capture", file manager, etc. It also takes screenshots of user activity and uses the webcam to spy on user. It also can disable some Firewalls and anti-virus programs. The pest affects such systems as Windows 95, Windows 98, Windows ME, Windows NT, Windows 2000 and Windows XP. The users of Windows 3.x, Microsoft IIS, Macintosh, Unix and Linux are immune to this pest. The author of this pest is a hacker called Read101.

From the publisher:

"1.0: What is LANfiltrator? LANfiltrator is a remote access tool, designed to access the remote computer through a router, LAN or proxy server. RAT's generally work by connecting to the remote computers IP address. But when the RC is behind another device, ie, router, proxy, then there is an internet IP, that the connecting device uses, and the computers own LAN IP. It's impossible for a normal RAT to connect to the remote computer, in other words, as it can not possibly access the sub-IP. Enter LANfiltrator.

How it works. Well as most of you more experienced Trojan users will know if you send a server to someone that is on a LAN you will not be able to connect to them, because their IP is given to them by their local DHCP server (The computer that shares the internet with the other computers) which connects them to the internet. So, their IP is hidden behind the server and can not be easily accessed on the internet by you. Well, with LANfiltrator it is now possible to do this. Well basically the server works like a client, but invisible, with server functions built into it. So this means that the client will listen and wait for the server to connect, basically like SIN notification but more complex, so once the server connects to your client with your ip you can use the client as if it was a normal one. If you won't to know more about how the server will connect to your ip there is more info in the edit server of the application on how this works.

Why use it? A lot of people these days are set up on LAN's, behind routers, etc. to stop the more nefarious uses of RAT's. However, this makes remote administrative access exceedingly difficult. Using LANfiltrator, the remote computer can be accessed as easily as if it were directly connected to the internet. However, the downside to the reverse client/server action is that a computer on a LAN cannot use the program to connect to a remote computer behind a LAN at all, ie, LAN cannot connect to LAN. The program is also intelligent, detecting LAN usage or not- say your remote computer is sometimes the internet server. You don't need to use a separate program."

LANfiltrator properties:
• Allows remote user connection
• Logs keystrokes
• Hides from the user
• Stays resident in background

Automatic LANfiltrator removal:

remover for LANfiltrator

SpyHunter is recommended remover to uninstall LANfiltrator. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove LANfiltrator using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

We are testing STOPzilla's efficiency at removing LANfiltrator (2005-04-04 17:02:58)

Malwarebytes Anti Malware

download | review

We are testing Malwarebytes Anti Malware's efficiency at removing LANfiltrator (2005-04-04 17:02:58)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing LANfiltrator (2005-04-04 17:02:58)

XoftSpySE Anti Spyware

download | review

LANfiltrator manual removal:

FORUM:
Discuss LANfiltrator in
spyware removal forum

Kill processes:
client.exe, ddbd259c.exe, edit server.exe, edtsrv.exe, f527c731.exe, l_server.exe, lanfiltrator.exe

HELP:
how to kill malicious processes

Unregister DLLs:
lan.dll

HELP:
how to unregister malicious DLLs

Delete files:
-?�&+??.txt, client.exe, ddbd259c.exe, dns redirection new.txt, dns redirection.txt, edit server help.txt, edit server.exe, edtsrv.exe, f527c731.exe, for the beta testers.txt, how the sin client works.txt, l_server.exe, lan.dll, lanfiltrator.exe, positioning.ini, read me[beta testers].txt, readme.txt, release nots.txt, using lanfiltrator on some one that is on a lan.txt

HELP:
how to remove harmful files

Information added: 2005-04-04 14:12:28
Information updated: 2005-04-04 14:25:43

Additional resources related to LANfiltrator:

Attention: If you know or you have a website or page about LANfiltrator removal, feel free to add a link to this list: add url

more resources

Post Comment:

Attention: Use this form only if you have additional information about LANfiltrator parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Latest spyware news:

Subscribe to news

Similar parasites:

Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.