Bitdefender Offers Free Removal Tool for Red October Cyber-Espionage Piece

US Banks Including JPMorgan Hit in Wave of Cyber-attacks

Details of a new cyber-espionage tool dubbed Red October emerged early this week This complex piece of malware is built in a modular manner and carries all the prerequisite for a successful attack, such as infection components, plugins and command and control mechanisms.

State-Sponsored Cyber-Espionage up 75 Percent, Says Defense Security Service

The infection appears to have gone unnoticed for an incredible amount of time, judging by the timestamp of its components, even though some of the files had been successfully detected and blocked by some antivirus products.

If you are running a computer network crucial to your business, you are advised to download and run the free removal tool provided by Bitdefender to remove any traces of infection. You can download the file from the Bitdefender Removal Tools repository, or, alternatively, from the Bitdefender Labs blog.

Removal tool provided courtesy to Andrei Nacu, malware researcher.

About the author


Bogdan Botezatu is living his second childhood at Bitdefender as senior e-threat analyst. When he is not documenting sophisticated strains of malware or writing removal tools, he teaches extreme sports such as surfing the web without protection or rodeo with wild Trojan horses. He believes that most things in life can be beat with strong heuristics and that antimalware research is like working for a secret agency: you need to stay focused at all times, but you get all the glory when you catch the bad guys.


Click here to post a comment
  • come on…
    to kill svchost.exe (C:\Program Files\Windows NT\svchost.exe)
    and delete 2 files : svchost.exe and lhafd.gcp from C:\Program Files\Windows NT\

    is need a removal tool?

    • This may look super-easy to you, but removal tools are usually designed for regular Internet users. Some of them have never killed a process, let alone delete files from system areas.

  • The Removal Tool detected uTorrent.exe in Program Files and Skype(updater.exe). I installed Skype from their website and that was on 15.01.2013 so it couldn’t be infected. I think this is false positive. (I scanned two of my PCs and Bitdef. Removal tool showed the same thing. 2 infected files Skype(updater.exe) and uTorrent.exe. Hope you fix this .I also scanned the files with . and it didn’t pick up any virus or similar.