Rootkit.Agent.pq
|
Description:
|
Rootkit
|
|
Risk Level:
|
Critical
|
|
Date of First Occurence:
|
Tuesday, May 27, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
A rootkit is a program designed to take fundamental control (in Unix terms "root" access, in Windows terms "Administrator" access) of a computer system, without authorization by the system's owners and legitimate managers.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Rootkit.Agent.pq"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\drivers\ctl_w32.sys
MD5: 2BBE23C0E8B3F638F0F5AED4B6864513 Size:3
MD5: BF9F455DBA5BD461DAA5249B89E35BFC Size:4294967295
MD5: A9FFEC18839FF8FC6FBE26474CBBED7B Size:34816
MD5: 2D52B9693B93D17829C04181823E6DCA Size:35328
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%SYSDIR%\drivers\ctl_w32.sys
- Files by MD5
MD5: D732BE3359DA741502CA051BCD06CD03 Size: 35328
- Registry Keys
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ctl_w32.sys
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ctl_w32.sys
HKLM\SYSTEM\CurrentControlSet\Services\ctl_w32
«
Go to Software Database