Threat Database Backdoors Backdoor.Win32.IRCBot.sgu

Backdoor.Win32.IRCBot.sgu

By SpideyMan in Backdoors

Backdoor.Win32.IRCBot.sgu is a seditious backdoor Trojan that was created by hackers to remotely access the targeted PC system. Once Backdoor.Win32.IRCBot.sgu is installed it will download corrupt files to the computer system without a user's consent which will lead to security risk. Backdoor.Win32.IRCBot.sgu is also able to connect with a remote IRC server and even give a remote attacker access to the affected computer system by exposing saved files. Backdoor.Win32.IRCBot.sgu can slow down the PC performance. You need to remove Backdoor.Win32.IRCBot.sgu as quickly as possible to protect your computer.

File System Details

Backdoor.Win32.IRCBot.sgu may create the following file(s):
# File Name Detections
1. %System%\Xtreme\Xtreme.exe
2. %Temp%\XtremeServerSource.dat

Registry Details

Backdoor.Win32.IRCBot.sgu may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Xtreme
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
HKEY_CURRENT_USER\Software\Server
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{08C9E5JF-4KJB-16CP-AAA5-00401C6FV500}

Trending

Most Viewed

Loading...