Home / Spyware Encyclopedia / Backdoor.Ambush << Back

Recommendation to Automatically remove Backdoor.Ambush


Our products can remove Backdoor.Ambush and thousands of other Virus and Spyware automatically and instantly.

Backdoor.Ambush Details


  • Category Backdoor
  • Discovered 1/10/2014 6:42:43 AM
  • Modified 3/5/2024 7:04:24 PM
  • Threat Level High
  • Category Description
    A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
9932bec9.exe 45056ICQ NetDetect Agent1.0.0.0caaa8781f36cab90f0725c82e3f19d80 
Backdoor.Win32.Agobot.aeb.exe 170496  6c1a9273774edb27f36d812d87818b3a 
salmk.exe 170496  6c1a9273774edb27f36d812d87818b3a 
Backdoor.Win32.Agobot.adp.exe 259072  6821ba480c0c1e568a303ea40ce00be0 
Backdoor.Win32.Agobot.aee.exe 94782  471a7497d63c6c35db0f8e538368ebba 
Backdoor.Win32.Agobot.adx.exe 175755  1ed9c8cea3e7c97ab955bf0264e51ef5 
backdoor.win32.ambush.exe 32768 1.0.0.1702380007182bf5c75d5c1e2fecd6253 
19031104846e3f7dacbf5823ce7b37f08d4750dbf6556cfa397981a4d9c114a9e4b694465a88cd077b97bcb70cb0a.exe 34041ICQ NetDetect Agent1.0027d6df2fe22003061f208c3b892e3b3d 
34a77236dee300fadcfbf59e8a61bb2ba324bfd7791fef472fc9df455ee81d46.exe 27513 1.00.00013cea3f1603d0f7db7fdd027441c7adf518/06/2020
7d425f214741366d104298193c01563b.vir.exe 34041ICQ NetDetect Agent1.007d425f214741366d104298193c01563b27/07/2023

The following Registry Entries were created:
..\Software\Microsoft\OLE\"Micrsoft Intrnet Exploror"\"salmk.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Micrsoft Intrnet Exploror"\"salmk.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Microsoft Update 32"\"wininit.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Micrsoft Intrnet Exploror"\"salmk.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"Microsoft Update 32"\"wininit.exe"
..\System\CurrentControlSet\Services\SVKP\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.