Loading ...|
|
Tweet |  More |
Backdoor.Moudoor Description
Backdoor.Moudoor is a Trojan that opens a back door on the compromised PC. Once executed, Backdoor.Moudoor may create several potentially malicious files. Backdoor.Moudoor may also create several registry entries so that it can run automatically every time you start Windows. Backdoor.Moudoor connects to one of the several locations. Backdoor.Moudoor allows attackers to gain remote access and control over the
affected computer system. Backdoor.Moudoor may collect the victim’s personal information and send it to a remote server.
Type: Backdoors
How Can You Detect Backdoor.Moudoor?
Backdoor.Moudoor Removal Details
Backdoor.Moudoor has typically the following processes in memory:
- %ProgramFiles%\Symantec\LiveUpdate\VPTray.exe
- %Temp%\svohost.exe
- %Temp%\VPTray.exe
Backdoor.Moudoor creates the following files in the system:
- %Windir%\up.bak
- %System%\KB1035627.dat
Backdoor.Moudoor creates the following registry entries:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\”SymantecLiveUpdate” = “%PROGRAMFILES%\Symantec\LiveUpdate\VPTray.exe”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run\”SymantecLiveUpdate” = “%PROGRAMFILES%\Symantec\LiveUpdate\VPTray.exe
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\”Microsoft Update” = “%TEMP%\svohost.exe”
Important Article Disclaimer
This entry was last updated on 10/9/12 and posted on 10/9/12.
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Backdoor.Moudoor
Leave a Comment
Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.