Home / Spyware Encyclopedia / Backdoor.Aladino << Back

Recommendation to Automatically remove Backdoor.Aladino


Our products can remove Backdoor.Aladino and thousands of other Virus and Spyware automatically and instantly.

Backdoor.Aladino Details


  • Category Backdoor
  • Discovered 4/28/2009 1:21:31 PM
  • Modified 1/23/2020 10:56:04 AM
  • Threat Level High
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
Backdoor.Win32.Agent.tk.exe 44032  d5e68f677f4172e71d2dea4eeb456fe0 
Backdoor.Win32.Agent.sy.exe 536576  d40e87b60bc211d8b5932e6a819c3a15 
lesxnmo.exe 536576  d40e87b60bc211d8b5932e6a819c3a15 
Backdoor.Win32.Agent.sz.dll 57436  68cfd32b69b03be1d9f0dc8a1611667e 
Backdoor.Win32.Agent.tg.dll 26112  19acea3cd6179473b6ed570da61469b9 
Backdoor.Win32.Agent.su.exe 31744  09335d0090cecffa3e4e7c6c3fae8c33 
wupdat.exe 31744  09335d0090cecffa3e4e7c6c3fae8c33 
BACKDOOR.WIN32.AGENT.SX.EXE 147456  9b2aae6e954cdce7ece171a37c81ff96 
svchost.exe 147456  9b2aae6e954cdce7ece171a37c81ff96 
sysedl32.dll 50688  aa70cace0bf07b1515d9621612772bda 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"System"\"%DAS.AU.LS.APP-DATA%\System\svchost.exe /run"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%DAS.AU.LS%\Temp\BACKDOOR.WIN32.AGENT.TK.EXE"\"%DAS.AU.LS%\Temp\BACKDOOR.WIN32.AGENT.TK.EXE:*:Enabled:Server"
..\Software\Microsoft\Windows\CurrentVersion\ShellComp\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"internet_plugin"\"%PF%\NetMeeting\ieplugin.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ieplugins"\"%PF%\Internet Explorer\ieplugin.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"MSN_messengers"\"%PF%\MSN Messenger\msnrecover.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Config_Lader"\"%PF%\Messenger\msnrecover.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"lesxnmo"\"%win.sys32%\lesxnmo.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.