Home / Spyware Encyclopedia / Backdoor.Akbot << Back

Recommendation to Automatically remove Backdoor.Akbot


Our products can remove Backdoor.Akbot and thousands of other Virus and Spyware automatically and instantly.

Backdoor.Akbot Details


  • Category Backdoor
  • Discovered 6/23/2009 8:58:47 AM
  • Modified 8/3/2023 5:31:12 PM
  • Threat Level High
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
5A1E94AB.DLL 365056 1.0.0.1bb2bbbe1c23ad4a84c776b3ffc7b6853 
6496B9C5.DLL 364544 1.0.0.190c32e5de28005415a0d21c90394c57d 
4AC60680.DLL 364544 1.0.0.13e817c0b337e053b4d554f2a54acee8c 
Backdoor.Win32.Agent.pw.exe 237568 1, 0, 0, 16381a081b07787cee59687d1d0d9e6c8 
4d4fa371.dll 23704  c7e29b26680d57ef3f65ad85ba5a4e57 
e86fc8f0.exe 78327  c33d678c3bfaa4052c1a89b5b72d4ea7 
1206EA00.DLL 100021  a5e354924c8d22fcf99cb7768cb938c9 
E2836DD2.EXE 400384  a06edafba3a32211c77c04b4c10f0c58 
svwhost.dll 44032  7fe09984dcd2810d8ab48e89d1635914 
svwhost.dll 44032  6a0c515c881d85a0e39c1aa625e6bab8 

The following Registry Entries were created:
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%DAS.AU.LS%\Temp\BACKDOOR.WIN32.AGENT.QS.EXE"\"%DAS.AU.LS%\Temp\BACKDOOR.WIN32.AGENT.QS.EXE:*:Enabled:Windows Update"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WindowsUpdateNT"\"%WIN.SYS%\svwhost.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WindowsUpdateNT"\"%WIN.SYS%\svwhost.exe /s"
..\Software\Microsoft\OLE\"Microsoft checker"\"MsPMSPTv.exe"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\Explorer.exe"\"%WIN.SYS32%\Explorer.exe:*:Enabled:Entorno UPnp"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN%\bxproxy.exe"\"%WIN%\bxproxy.exe:*:Enabled:Windows Update"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Microsoft checker"\"MsPMSPTv.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"bxproxy"\"%WIN%\bxproxy.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Windows Automatic Updates"\"%DAS.AU.LS%\Temp\BACKDOOR.WIN32.AGENT.PZ.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Swchost"\"%WIN.SYS32%\Swhost.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.