Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Rootkit.Agent << Back

Recommendation to Automatically remove Rootkit.Agent

Our products can remove Rootkit.Agent and thousands of other Virus and Spyware automatically and instantly.

Rootkit.Agent Details

Category Rootkit
Discovered 10/27/2009 10:12:32 AM
Modified 10/11/2024 3:28:28 PM
Threat Level Critical
Category Description
A Rootkit is a collection of tools (programs) that enable administrator-level (root) access to a computer or computer network. A Rootkit may consist of spyware and other programs that: monitor traffic and keystrokes; create a "backdoor" into the system for the hacker's use; alter log files; attack other machines on the network; and alter existing system tools to escape detection. They are usually hidden and difficult to clean as they ingranulate deeply within the Registry and system files.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
6e1b6c42.exe	12160	Windows (R) 2000 DDK provider	5.1.2600.0 built by	e58d0a95496f326fa42dc048162fc538
9223ffc4.exe	12160	Windows (R) 2000 DDK provider	5.1.2600.0 built by	e1c6a2d711fbb7fbabc773c67923d901
d2023551.exe	17536	raptorsoft	1.0.0.17	bc53d6f93766ebe48635602c459c3c0d
e74dcfb6.exe	16384	Raptorsoft	1.0.0.17	ae766799cebe848bdfaac995c18c9b47
4442993f.exe	15104	raptorsoft	1.0.0.17	1723ea092c36a5b8badcebc1395223b9
osb.exe	221184	Psycho.Inc	1.0.0.0
D3E9099C.EXE	2022400	HTTP://ACTIVESPY.ORG	1.2.0.0	4ebe131058e22961bf07f9eb6e84d00e
7B8DB2DA.DLL	8704	Beijing Rising Information Technology Co., Ltd.	21.0.0.2	da3589e894a480cf1f6123533a6e9d37
03747776.DLL	7680	Beijing Rising Information Technology Co., Ltd.	21.0.0.2	776b524554c42480123e80946d43f483
IETimbar.dll	116088	????????	3.0.0.1	a62da78ecdf01bef5d3898788fdcd314

The following Registry Entries were created:

..\Software\Microsoft\Windows\CurrentVersion\bits\"id"\"17396050039564240964491460435265"

..\System\CurrentControlSet\Enum\root\legacy_krrbohgfnmii\(Default)

..\Software\Microsoft\Windows\CurrentVersion\bits\"id"\"41801952381325183402187085712802"

..\System\CurrentControlSet\Enum\root\legacy_jewjyvj\(Default)

..\Software\Microsoft\Windows\CurrentVersion\bits\"ii"\"1"

..\Software\Microsoft\Windows\CurrentVersion\bits\"id"\"72733297517782414941694852879135"

..\Software\Microsoft\Windows\CurrentVersion\bits\"host"\"93.174.95.145"

..\System\CurrentControlSet\Enum\root\legacy_onhctn\(Default)

..\System\CurrentControlSet\Enum\root\legacy_jwraxlccxdjj\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"system"\"interneters.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Rootkit.Agent

Rootkit.Agent Details

Useful Links