W32.Rbot.MSS

Description:	Backdoor
Risk Level:	Critical
Date of First Occurence:	Wednesday, June 18, 2008
Software Developer:	(unknown)
Brief Info:	Backdoor is a hidden method for bypassing normal computer authentication systems.
Removal:	This threat can be removed using "Spyware Terminator"

RIMUOVI SPYWARE »

Geographical Distribution of Threat "W32.Rbot.MSS"

Threat Info

View All

Detected Items

Detected Files: %SYSDIR%\cmss.exe MD5: 8900FB59AC9C41649572D0596A8A094B Size:147456
Detected Files with variable Filenames:

Detecting items list:

Files by Name %SYSDIR%\cmss.exe
Files by MD5 MD5: 370A84CE06F3CE07F7C06262BEDEBEE3 Size: 109568
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=Windows CMS Protocol Value=cmss.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices ValueName=Windows CMS Protocol Value=cmss.exe HKCU\Software\Microsoft\Windows\CurrentVersion\Run ValueName=Windows CMS Protocol Value=cmss.exe

« Go to Software Database

Cerca nel nostro database dei software

Sfoglia il database dei software

Ultimissime notizie sui Malware

23. settembre 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Notizie sui vecchi malware »