Home Malware Programs Backdoors Backdoor.DMSpammer


Posted: November 4, 2010

Backdoor.DMSpammer is a backdoor Trojan that runs stealthily in the background. Backdoor.DMSpammer also allows hackers remote access to the compromised system and poses a severe threat to PC security. Once active, Backdoor.DMSpammer may bombard the user's email inbox with malicious spam messages which contain malware. Backdoor.DMSpammer should be removed immediately before it starts wreaking havoc on the compromised system.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\qtplugin.exe

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup]RegistryMonitor2 = "83772694"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]RegistryMonitor1 = "%System%\qtplugin.exe"