Skip to main content

UnHackMe

Newest viruses and malware

Backdoor Poison – msdcsc.exe – df713d28148ab921cc25caef135f230a

September 8, 2012

Alex NightWatcher

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor Poison
Also known as: Backdoor Tordev, Trojan Eldorado
SHA256: b7e69a739561742b1bf68b763d77683215808e5b1888028b53596536f4f36f27
SHA1: ec2c9973512b60f99eff7475256a991c35b48ba5
MD5: df713d28148ab921cc25caef135f230a
File size: 707072 bytes

Created files:

C:\MSDCSC\msdcsc.exe – Backdoor Poison

Backdoor Poison created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\UserInit: %WinDir%\System32\userinit.exe,C:\MSDCSC\msdcsc.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MicroUpdate: C:\MSDCSC\msdcsc.exe

Backdoor Poison MSDCSC.EXE

About Alex NightWatcher

Malware Hunter

View all posts by Alex NightWatcher →

Forgot password?

Please put in your email: Send me my password!

This blog post
All blog posts

Subscribe to this blog post's comments through...

RSS Icon RSS Feed

Subscribe via email

Subscribe to this blog's comments through...

RSS Icon RSS Feed

Subscribe via email

Follow the discussion

Comments

Logging you in...

Login to IntenseDebate

Or create an account

Username or Email:

Password:

Cancel Login

WordPress.com

Username or Email:

Password:

Lost your password?

Cancel Login

Dashboard | Edit profile | Logout

Logged in as

Disable comments for this page

Login or signup now to comment.

There are no comments posted yet. Be the first one!

Post a new comment

Comment as a Guest, or login:

Login to IntenseDebate
Login to WordPress.com

Name

Email

Website (optional)

Displayed next to your comments.

Not displayed publicly.

If you have a website, link to it here.

Posting anonymously.

Tweet this comment

Submit Comment

Subscribe to

Comments by IntenseDebate

Reply as a Guest, or login:

Login to IntenseDebate
Login to WordPress.com

Name

Email

Website (optional)

Displayed next to your comments.

Not displayed publicly.

If you have a website, link to it here.

Posting anonymously.

Tweet this comment

Cancel Submit Comment

Subscribe to

Loading IntenseDebate Comments...

Leave a Reply Cancel reply

You must be logged in to post a comment.

Post navigation

Trojan Sinowal – gqcsbmzkr.dll – cf4eebcfea2b3d8237297b65273ba5d4

Trojan NSIS – gutou_sina.exe – a362a08c88e7503b6c058870a48405fb

Recent Questions

Answered: lootsearchgood.com Virus
Answered: unable to get rid of jollypulse.co.nz
Answered: still seeing popups from escaptewos.co.in
Answered: male ware infects all pcs that join the lan , using msi installer
Answered: when trying to open google.de in google chrome searchtheweb opens
Answered: my mouse works with no mouse plugged in.... therefore its being F**ked with
Answered: Uninstall Lust Goddess
Answered: bingsearch.io impossibile da togliere
Answered: Idt opens mutiple tabs of any browser automatically
Answered: emsax.co.in has not been removed

Wildcat Cyber Patrol

Remove WERS.CO.IN virus (Removal Guide)
Remove VULAKINGLITER.COM virus (Removal Guide)
Remove SOPW.CO.IN virus (Removal Guide)
Remove OVELICRIZEDIS.CO.IN virus (Removal Guide)
Remove MESODEFENDER.PRO virus (Removal Guide)
Remove FLECUEATATE.COM virus (Removal Guide)
Remove BOOSTENHANCEMENT.CO.IN virus (Removal Guide)
Remove BERGQI.INFO virus (Removal Guide)
Remove 1XBET92.COM virus (Removal Guide)
Tycoon2FA Upgrades Make Microsoft 365 Phishing Attacks Harder to Detect
OttoKit Plugin Flaw Exploited Within Hours of Public Disclosure
How to Add Apps Allowed Through Windows Defender Firewall?
Remove UNKERSARYCE.CO.IN virus (Removal Guide)
Remove RPRLDNWSQ4.XYZ virus (Removal Guide)
Remove OLICHOOGRULSOM.COM virus (Removal Guide)
Remove MOSDEFENDER.CO.IN virus (Removal Guide)
Remove AVESDEFENDER.PRO virus (Removal Guide)
Remove VOPROTOCOL.CO.IN virus (Removal Guide)
Remove RAPROTOCOL.CO.IN virus (Removal Guide)
Remove NOFIREWALL.CO.IN virus (Removal Guide)
Remove HAZOTELEGAN.CO.IN virus (Removal Guide)
Remove DEVCONNECT.CO.IN virus (Removal Guide)
Remove CAST.LARIANIOT.COM virus (Removal Guide)
Remove 1WHTUJ.TOP virus (Removal Guide)
Windows Hello Login Problems Triggered by April 2025 Update
Remove WOSDEFENDER.CO.IN virus (Removal Guide)
Remove WEB-STARTPAGE.COM virus (Removal Guide)
Remove RPRLDNWSQ0.XYZ virus (Removal Guide)
Remove OOXXX.COM virus (Removal Guide)
Remove CRSS.EXE virus (Removal Guide)

Recent Posts

Remove WERS.CO.IN virus (Removal Guide)
Remove VULAKINGLITER.COM virus (Removal Guide)
Remove SOPW.CO.IN virus (Removal Guide)
Remove OVELICRIZEDIS.CO.IN virus (Removal Guide)
Remove MESODEFENDER.PRO virus (Removal Guide)
Remove FLECUEATATE.COM virus (Removal Guide)
Remove BOOSTENHANCEMENT.CO.IN virus (Removal Guide)
Remove BERGQI.INFO virus (Removal Guide)
Remove 1XBET92.COM virus (Removal Guide)
Remove UNKERSARYCE.CO.IN virus (Removal Guide)
Remove RPRLDNWSQ4.XYZ virus (Removal Guide)
Remove OLICHOOGRULSOM.COM virus (Removal Guide)
Remove MOSDEFENDER.CO.IN virus (Removal Guide)
Remove AVESDEFENDER.PRO virus (Removal Guide)
Remove VOPROTOCOL.CO.IN virus (Removal Guide)
Remove RAPROTOCOL.CO.IN virus (Removal Guide)
Remove NOFIREWALL.CO.IN virus (Removal Guide)
Remove HAZOTELEGAN.CO.IN virus (Removal Guide)
Remove DEVCONNECT.CO.IN virus (Removal Guide)
Remove CAST.LARIANIOT.COM virus (Removal Guide)
Remove 1WHTUJ.TOP virus (Removal Guide)
Remove WOSDEFENDER.CO.IN virus (Removal Guide)
Remove WEB-STARTPAGE.COM virus (Removal Guide)
Remove RPRLDNWSQ0.XYZ virus (Removal Guide)
Remove OOXXX.COM virus (Removal Guide)
Remove CRSS.EXE virus (Removal Guide)
Remove CHECK-TL-VER-297-4.COM virus (Removal Guide)
Remove CEDEFENDER.CO.IN virus (Removal Guide)
Remove BOSXDEFENDER.PRO virus (Removal Guide)
Remove TYJAZ.CO.IN virus (Removal Guide)

Search for:

Privacy Policy Terms and Conditions

Thank you for theme by IdeaBox Credits: Thank you to www.icons8.com for Icons and Images