Backdoor.Caphaw.D
Posted: August 21, 2012
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
Threat Level: | 6/10 |
---|---|
Infected PCs: | 1,009 |
First Seen: | August 21, 2012 |
---|---|
Last Seen: | January 22, 2020 |
OS(es) Affected: | Windows |
Aliases
Generic32.AZKH [AVG]Backdoor:Win32/Caphaw [Microsoft]BDS/Caphaw.A [AntiVir]HEUR:Trojan.Win32.Generic [Kaspersky]Win32:LockScreen-VN [Trj] [Avast]Dropper.Generic6.AXES [AVG]TROJ_GEN.RCBOCHV [TrendMicro]BDS/Caphaw.DJ [AntiVir]Trojan.AVKill.21469 [DrWeb]Trojan-Dropper.Win32.Dycler.fe [Kaspersky]Win32:MDE-E [Trj] [Avast]TrojanDropper.Dycler.fe [CAT-QuickHeal]Trj/Dtcontx.D [Panda]Generic32.BRNH [AVG]Trojan.Win32.Bublik.apar [Kaspersky]
More aliases (320)
More aliases (320)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%APPDATA%\McAfee\Supportability\MVTLogs\SystemPropertiesAdvanced.exe
File name: SystemPropertiesAdvanced.exeSize: 675.84 KB (675840 bytes)
MD5: c18cbfce97a33fadc1a9785702e309e1
Detection count: 555
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\McAfee\Supportability\MVTLogs
Group: Malware file
Last Updated: April 8, 2017
file.exe
File name: file.exeSize: 258.04 KB (258048 bytes)
MD5: 1708151737c64f3c3f82f22e3a14a5f6
Detection count: 62
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: October 9, 2017
file.exe
File name: file.exeSize: 258.04 KB (258048 bytes)
MD5: 0421d581a8be33099b5b140bbd2d97f0
Detection count: 60
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 15, 2016
file.exe
File name: file.exeSize: 294.91 KB (294912 bytes)
MD5: eb23678cfe1450222330ba6f3441d20e
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
c:\Users\<username>\appdata\roaming\mael\rmactivate_ssp_isv.exe
File name: rmactivate_ssp_isv.exeSize: 290.81 KB (290816 bytes)
MD5: 0cde6e06e8deacbf0c8b64dc8eedfe11
Detection count: 43
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\mael
Group: Malware file
Last Updated: November 28, 2018
file.exe
File name: file.exeSize: 278.52 KB (278528 bytes)
MD5: ca0403ea24fe2a7771b99cea55826c9b
Detection count: 34
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
file.exe
File name: file.exeSize: 28.03 KB (28032 bytes)
MD5: e63fead91fe788dac57601d2c77713f9
Detection count: 32
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
file.exe
File name: file.exeSize: 421.88 KB (421888 bytes)
MD5: 5f752bf79f79de9c67b6409034533f94
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 22, 2020
%APPDATA%\Skype\nutbag2005\chatsync\85\chkdsk.exe
File name: chkdsk.exeSize: 307.2 KB (307200 bytes)
MD5: bd0985cea24257f531a5dd59fac3fd1f
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Skype\nutbag2005\chatsync\85
Group: Malware file
Last Updated: February 14, 2013
%APPDATA%\Motive\btbb\DataStore\qprocess.exe
File name: qprocess.exeSize: 303.1 KB (303104 bytes)
MD5: 388b84f3ed7f620cd8727d03464dbab3
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Motive\btbb\DataStore
Group: Malware file
Last Updated: February 11, 2013
%APPDATA%\uTorrent\apps\cmstp.exe
File name: cmstp.exeSize: 262.14 KB (262144 bytes)
MD5: 4129d7026213dbdf223a6990a0900b15
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\uTorrent\apps
Group: Malware file
Last Updated: December 24, 2012
%APPDATA%\facemoods.com\rundll32.exe
File name: rundll32.exeSize: 262.14 KB (262144 bytes)
MD5: e710d72294cc6e0f359f7435103210b8
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\facemoods.com
Group: Malware file
Last Updated: December 17, 2012
%APPDATA%\OpenOffice.org\3\user\config\soffice.cfg\modules\scalc\dialer.exe
File name: dialer.exeSize: 360.44 KB (360448 bytes)
MD5: ef0f8972f818a8926bfb053488414a2a
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\OpenOffice.org\3\user\config\soffice.cfg\modules\scalc
Group: Malware file
Last Updated: April 16, 2013
%APPDATA%\Apple Computer\wextract.exe
File name: wextract.exeSize: 331.77 KB (331776 bytes)
MD5: b47b484fa3d07d9e0243161235a45ccb
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Apple Computer
Group: Malware file
Last Updated: May 1, 2013
%APPDATA%\Macromedia\Flash Player\#SharedObjects\FAQ4ZQUP\static.cdn-ec.viddler.com\dllhost.exe
File name: dllhost.exeSize: 258.04 KB (258048 bytes)
MD5: 74061117483885f7638136fd82dfd3d2
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\FAQ4ZQUP\static.cdn-ec.viddler.com
Group: Malware file
Last Updated: May 15, 2013
%APPDATA%\Birdstep Technology\wermgr.exe
File name: wermgr.exeSize: 299 KB (299008 bytes)
MD5: 164755707e996a7c50ea180a488ecff9
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Birdstep Technology
Group: Malware file
Last Updated: January 31, 2013
%APPDATA%\Skype\krishi.janday\chatsync\df\RmClient.exe
File name: RmClient.exeSize: 274.43 KB (274432 bytes)
MD5: 34ba0a2633b3e28a9ce0b2b1627d76e6
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Skype\krishi.janday\chatsync\df
Group: Malware file
Last Updated: December 3, 2012
%APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#ec.atdmt.com\drvinst.exe
File name: drvinst.exeSize: 286.72 KB (286720 bytes)
MD5: c665be725f7642c4f03a2e755f0012b2
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#ec.atdmt.com
Group: Malware file
Last Updated: December 3, 2012
%APPDATA%\Apple Computer\Safari\PubSub\Feeds\mshta.exe
File name: mshta.exeSize: 290.81 KB (290816 bytes)
MD5: 7a962c5e3504ff363b01fd6f282d7c90
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Apple Computer\Safari\PubSub\Feeds
Group: Malware file
Last Updated: January 8, 2013
%APPDATA%\Macromedia\Flash Player\#SharedObjects\795KQ4BB\imgs.sapo.pt\sapovideo\DevicePairingWizard.exe
File name: DevicePairingWizard.exeSize: 339.96 KB (339968 bytes)
MD5: 3e80e06ab629dabd751f6f30d5fcb499
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\795KQ4BB\imgs.sapo.pt\sapovideo
Group: Malware file
Last Updated: March 29, 2013
%APPDATA%\OfficeSuiteX\3\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\E794.tmp_\hwrcomp.exe
File name: hwrcomp.exeSize: 319.48 KB (319488 bytes)
MD5: 05235460f008546ca00d9d43253e073b
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\OfficeSuiteX\3\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\E794.tmp_
Group: Malware file
Last Updated: February 7, 2013
%APPDATA%\Apple Computer\iTunes\iPhone Updater Logs\ucsvc.exe
File name: ucsvc.exeSize: 364.54 KB (364544 bytes)
MD5: b186bcb4af21f4101ec8fa2f2ea34f28
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Apple Computer\iTunes\iPhone Updater Logs
Group: Malware file
Last Updated: April 22, 2013
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.