Backdoor.Win32.IRCNite.cde
Backdoor.Win32.IRCNite.cde is a malicious backdoor trojan that runs in the background and enales hackers to access to the affected computer system remotely. Backdoor.Win32.IRCNite.cde propagates via network if the malicious drive is shared at the network. Backdoor.Win32.IRCNite.cde will download files to the computer without user's consent which will result in security risk. Backdoor.Win32.IRCNite.cde can even enable hacker to control the corrupted computer system. Remove Backdoor.Win32.IRCNite.cde once it is detected on a computer system.
File System Modifications
- The following files were created in the system:
# File Name 1 %System%\drivers\gmer.sys 2 %System%\gmer.ini 3 %Windir%\gmer.dll 4 %Windir%\gmer.exe 5 %Windir%\gmer_uninstall.cmd
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_GMERHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_GMER\0000HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_GMER\0000\Control HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\gmerHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\gmer\EnumHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GMERHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GMER\0000HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gmerHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gmer\Enum HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GMER\0000\Control
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.