Home / Spyware Encyclopedia / Backdoor.mIRC-based << Back

Recommendation to Automatically remove Backdoor.mIRC-based


Our products can remove Backdoor.mIRC-based and thousands of other Virus and Spyware automatically and instantly.

Backdoor.mIRC-based Details


  • Category Backdoor
  • Discovered 8/6/2013 10:45:49 PM
  • Modified 10/14/2024 11:31:18 AM
  • Threat Level High
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
gps.exe 36864Unknown1.0.0.036aa7143d4814fc1b3f18564eaa6fc9b 
C54BCD06.EXE 941422Instyler® Software1.70ba157cdb000fdadfefdccbb27ce0fca7 
0FDB096B.EXE 921789instyler installation software1, 6, 0b9a3295773a1d3e439d9457c05b02594 
D36985A1.EXE 2509918instyler installation software1, 6, 0af4e2925318c07200c8d8b84c0cca8b0 
02679FF9.EXE 1289296instyler installation software1, 6, 0913d7f40bdd00eaa75756ecaefc9be5c 
EE7B319D.EXE 930073instyler installation software1, 6, 056f8c1fbc3e6eacf3c74d9b7fea07c49 
DFFB192B.EXE 40960ANTI-MSN CLAN4.6.0.0326793f151766c51536c99b575ca3a8e 
43107521.EXE 11776[DEF]1.0083dbf4a0fac4d50eaa828988d8bc5498 
BE65D3CE.EXE 902364 2, 0, 0, 22db8520393555dd2486b4debfe3414613 
41585800.EXE 2135428  fd8351f23a09576d5e416999d554cb8a 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"rvhost.exe"\"%das.au.app data%\microsoft\rvhost.exe"
..\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\registry.exe\(Default)
..\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\csrsz.exe\(Default)
..\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AmyMastura.exe\(Default)
..\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Acha.exe\(Default)
..\Software\Microsoft\Windows NT\CurrentVersion\image file execution options\wscript.exe\"debugger"\"rundll32.exe"
..\System\CurrentControlSet\Services\svchost\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.