Home / Spyware Encyclopedia / Backdoor.ircbot.gen << Back

Recommendation to Automatically remove Backdoor.ircbot.gen


Our products can remove Backdoor.ircbot.gen and thousands of other Virus and Spyware automatically and instantly.

Backdoor.ircbot.gen Details


  • Category Backdoor
  • Discovered 7/6/2013 10:07:50 PM
  • Modified 10/22/2024 10:12:53 AM
  • Threat Level High
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
3289F8ED.EXE 108597RGE1.00c77d5484a176bb4cfba952ecb8c34adb 
BD22354D.EXE 41472Microsoft Corporation (c)0.20274d1f4b514bf99c6f85efd2c8d9ab65ab 
5EF8A941.EXE 77824Microsoft Corporation (c)0.20273cbda94205d6c08dc53c9e083b295402 
3F1B6DF6.EXE 84992Microsoft Corporation6.00.2900.2180 (xps3bdf77258e6424301b64ff6968cc34f4 
284B5D23.EXE 83968Microsoft Corporation6.00.2900.2180 (xps2c1a90ddca1ef44346ac7b6ad9c37f07 
31CCBA86.EXE 247808Microsoft Corporation6.00.2800.1106 (xps4061572d0db43b2c892789a3200d6ea2 
E5F9AE28.EXE 125440Microsoft Corporation5.1.2700.0 (NT cliec17d862e87b01b3fe81863f68bb39ca9 
DB870F4B.EXE 25089Microsoft Corporation5.1.2600.0 (nt clie41cf25766de0a12405e3b3520d2881cb 
E4D8D57E.EXE 163840Microsoft Corporation5.1.2600.0 (nt clie232703364c1e5e249c3fab7565df3c99 
6247FAAB.EXE 74660Microsoft Corporation3, 10, 0, 103e3d5112c5a491b1e013633ed3d2bd06f 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"internet explorer"\"iexplorer.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ms configuration"\"msframer.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"windows services"\"shvhost.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"sysdiag64.exe"\"%win%\sysdiag64.exe"
..\Software\Microsoft\connect\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"msn"\"%win%\unek.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"windows updater microsoft.com"\"win32.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"remove me"\"texcxxcxcx.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunOnce\\"windows updater microsoft.com"\"win32.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunOnce\\"remove me"\"texcxxcxcx.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.