Nivdort
Description
Nivdort is primarily a password stealing Trojan which exhibits certain bot behaviors, such as receiving commands from a remote control server.
Symptoms
Nivdort may create directories and files with completely random names. Nivdort also has the ability to insert itself through code injection into running programs and processes, making it harder to detect.
Analysis
Nivdort is designed to collect information on you and send that information back to a remote host or hosts.
It can monitor all the keystrokes you make, the websites you visit, collect credit card and banking information as well as steal username and password details.
Instructions
It is not recommended that any attempts to remove this malware be performed manually. Fortinet recommends that you remove this threat by running a complete scan of your system using FortiClient Endpoint Protection.