Backdoor.IRC.Flood
Backdoor.IRC.Flood Description
This flooder can make some serious damage to your PC, as it installs a mIRC client with ‘backdoor’ function. That way the hacker can gain unlimited access to your machine. Many versions appeared from May, 2002 to April, 2004. They all share the same abilities.
Aliases
Dropper.Generic4.CMOF [AVG]W32/IRCBot.ADAK!tr.bdr [Fortinet]Virus.Win32.CeeInject [Ikarus]Backdoor.IRCBot.adak [VBA32]Virus.Win32.CeeInject!IK [Emsisoft]Backdoor.Win32.IRCBot.adak [Kaspersky]Win32:Dropper-FIT [Drp] [Avast]W32/Suspicious_Gen2.TQUMA [Norman]a variant of Win32/Injector.KPI [NOD32]Trojan.Injector!aNw2clheCWA [VirusBuster]
More aliases (1395)
Backdoor.IRC.Flood Automatic Detection Tool (Recommended)
Is your PC infected with Backdoor.IRC.Flood? To safely & quickly detect Backdoor.IRC.Flood, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Backdoor.IRC.Flood
What happens if Backdoor.IRC.Flood does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 vmmon32.exe 475 2 %WINDIR%\ nvsvc32.exe 159 3 %APPDATA%\ jusched.exe 148 4 %USERPROFILE%\ Desktop\ Lorenzo\ P1753577.JPG-www.facebook.exe 138 5 %APPDATA%\ galaxy.exe 115 6 %WINDIR%\ system32\ wmiapsrv.exe 54 7 %WINDIR%\ oldbi.exe 44 8 %WINDIR%\ system32\ igfxdmt32.exe 44 9 %USERPROFILE%\ Network\ wmpsx64.exe 44 10 %WINDIR%\ system32\ wmpld64.exe 33
More files
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY..\..\{Value}Software\Microsoft\OLE, value: tskmgrSoftware\Microsoft\OLE, value: Microsoft Intrenet ExplorerSoftware\Microsoft\OLE, value: Laord serviceSOFTWARE\Microsoft\Windows\CurrentVersion\RunServices, value: Microsoft Intrenet ExplorerSOFTWARE\Microsoft\Windows\CurrentVersion\RunServices, value: PrinterHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}iSecurity appletLaord serviceMicrosoft Intrenet Explorer - The following CLSID's were detected:
HKEY..\..\{CLSID Path} {A8311E8F-E459-4D22-89B4-CB9DCF10A425}
Posted: March 28, 2006 | By SpywareRemove
MoreThreat Level: 8/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 1,213
