Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Backdoor.Agent << Back

Recommendation to Automatically remove Backdoor.Agent

Our products can remove Backdoor.Agent and thousands of other Virus and Spyware automatically and instantly.

Backdoor.Agent Details

Category Backdoor
Discovered 3/3/2009 12:47:45 PM
Modified 10/14/2024 11:30:39 AM
Threat Level Critical
Category Description
A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
yql_lyrics_common.dll	451584	yiqilai.com	1.2.6.0	1908031943862821a306656b2e137ba3
0467F94C.EXE	344576	YHook	6.20.0.0	a614961f806da33c7437c2ed5581a32f
9A37F6C0.EXE	344576	YHook	6.18.0.0	79f21383c35f613296a816d196aeae2d
y!hook.exe	344576	YHook	6.18.0.0	79f21383c35f613296a816d196aeae2d
8AC0EC7A.EXE	347136	YHook	6.10.0.0	cb5833eb96f45cda5ac5beba6518501a
y!hook.exe	347136	YHook	6.10.0.0	cb5833eb96f45cda5ac5beba6518501a
28230450.exe	1346048	YHook	5.72.0.0	9dcbfd81c0dfee21e5c05e72bf6b0d97
BE231C6E.EXE	286208	YHook	5.68.0.0	7f323144a6b77f171d9e7a53d77c5364
c70d54ec.exe	272896	yhook	5.64.0.0	fe89b21de3b9b0f0cea98ac2e513bb9a
C34E7463.EXE	268288	YHook	5.60.0.0	2bab6c16976cefa90a9fb6bcbf5f1354

The following Registry Entries were created:

..\Software\Microsoft\Windows NT\CurrentVersion\image file execution options\fssm32.exe\(Default)

..\Software\Microsoft\active setup\installed components\{cae4973b-6e51-eaa7-e215-21afaeb0dc78}\(Default)

..\Software\Microsoft\active setup\installed components\{8cee828f-507a-d288-f5b2-f375d6640dc0}\(Default)

..\System\CurrentControlSet\Enum\root\legacy_ntservice\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"jdbtray"\"%root%\input\11139_backdoor.win32.agent_20091109\c84d4111.exe"

..\Software\Microsoft\wbem\"udbb"\"trza2kipko9es6ok+jdyk/lcpe2p5qqffvzsmadiactw7lpzlyhik87m6ko"

..\System\CurrentControlSet\Enum\root\legacy_sysloader\(Default)

..\System\CurrentControlSet\Enum\root\legacy_windows_update_servrices!\(Default)

..\System\CurrentControlSet\Services\windows update servrices!\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"vxvfkhgt.exe"\"%win%\vxvfkhgt.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Backdoor.Agent

Backdoor.Agent Details

Useful Links