Home / Spyware Encyclopedia / Backdoor.Agent << Back

Recommendation to Automatically remove Backdoor.Agent


Our products can remove Backdoor.Agent and thousands of other Virus and Spyware automatically and instantly.

Backdoor.Agent Details


  • Category Backdoor
  • Discovered 3/3/2009 12:47:45 PM
  • Modified 10/14/2024 11:30:39 AM
  • Threat Level Critical
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
a8f4948f.dll 147456奇虎网4, 3, 0, 1003538f24fe81030fc954edd49a40816fb4 
55E9127A.EXE 282624YHook5.54.0.054f447a5fdc331bb9057883fde4f1de8 
y!hook.exe 282624YHook5.54.0.054f447a5fdc331bb9057883fde4f1de8 
947108e7.exe 286208yhook4.80.0.012a86b8112d136f0ae88f424603cc7c4 
YCli.dll 174080YHook2.54.0.01efb39d3f006d97b95be46f459e415b1 
YCli.dll 173056YHook2.42.0.08189f98d1a2a488696bf9e57f5563479 
yc_show.exe 33280YHook1.30.0.07293718aaec8e8d4640eac4b2091a3e9 
yc_view.exe 29696YHook1.24.0.062b6cf2e5250e461da2c3cc1637c08bb 
YUpdate.dll 48128YHook1.20.0.055c0ae1a5ba7e589298acac029fe08b6 
YUpdate.dll 48128YHook1.12.0.005c7db1ef91d98eb0f918874eb0632ca 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\image file execution options\fssm32.exe\(Default)
..\Software\Microsoft\active setup\installed components\{cae4973b-6e51-eaa7-e215-21afaeb0dc78}\(Default)
..\Software\Microsoft\active setup\installed components\{8cee828f-507a-d288-f5b2-f375d6640dc0}\(Default)
..\System\CurrentControlSet\Enum\root\legacy_ntservice\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"jdbtray"\"%root%\input\11139_backdoor.win32.agent_20091109\c84d4111.exe"
..\Software\Microsoft\wbem\"udbb"\"trza2kipko9es6ok+jdyk/lcpe2p5qqffvzsmadiactw7lpzlyhik87m6ko"
..\System\CurrentControlSet\Enum\root\legacy_sysloader\(Default)
..\System\CurrentControlSet\Enum\root\legacy_windows_update_servrices!\(Default)
..\System\CurrentControlSet\Services\windows update servrices!\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"vxvfkhgt.exe"\"%win%\vxvfkhgt.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.