Backdoor Trojan

Trojan.Backdoor.PRD removal tips

Malware Removal

The Trojan.Backdoor.PRD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Backdoor.PRD virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Compression (or decompression)
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Attempts to modify proxy settings

How to determine Trojan.Backdoor.PRD?



File Info:

crc32: 61557A10
md5: 8970bb60ec20d688fbe343efbc659759
name: 8970BB60EC20D688FBE343EFBC659759.mlw
sha1: f2ff1436ccff9b4c1a3947b3552b1da89ed52b4f
sha256: 0a3fa1f5eda09bccf6d5b4e3ecf87cfbd5bc3419ab203a083aab035520c32dfc
sha512: d69d9668037882bed93bf64e21226545ac891ecd1f9acad727d1535d625a0a7ea702df7dbd64003dae9e2c2311e4cb2a0a2120a5a7bcc74accc6dd7d1eec5153
ssdeep: 6144:bSUcDz6syHUlvwznc36CG+cKeh0jGqEDb9M9ug4lb+eEN:mfWsqUlvwoqCG1KHjGqEqN
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9. All rights reserved. UpdateStar GmbH
InternalName: Zetta
FileVersion: 7.7.3.854
CompanyName: UpdateStar GmbH
FileDescription: Hire Locale Suspect
LegalTrademarks: xa9. All rights reserved. UpdateStar GmbH
ProductName: Zetta
Languages: English
ProductVersion: 7.7.3.854
PrivateBuild: 7.7.3.854
OriginalFilename: Zetta
Translation: 0x0409 0x04b0

Trojan.Backdoor.PRD also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0056e92e1 )
DrWebTrojan.PWS.Papras.2401
CynetMalicious (score: 100)
ALYacTrojan.Backdoor.PRD
CylanceUnsafe
ZillyaTrojan.Yakes.Win32.62229
SangforTrojan.Win32.Save.a
AlibabaTrojanSpy:Win32/Yakes.edc69d8b
K7GWTrojan ( 0056e92e1 )
Cybereasonmalicious.0ec20d
CyrenW32/Trojan.AMWB-3638
SymantecTrojan Horse
ESET-NOD32Win32/Spy.Ursnif.AO
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Trojan.Emotet-6535662-0
KasperskyTrojan.Win32.Yakes.sjjf
BitDefenderTrojan.Backdoor.PRD
NANO-AntivirusTrojan.Win32.Yakes.elgycl
SUPERAntiSpywareHack.Tool/Gen-KeyLogger
MicroWorld-eScanTrojan.Backdoor.PRD
TencentWin32.Trojan.Yakes.Ebqm
Ad-AwareTrojan.Backdoor.PRD
SophosMal/Generic-S
ComodoMalware@#3btj6gj1vhr3m
BitDefenderThetaGen:NN.ZexaF.34628.rq0@ai1D@iai
VIPRETrojan.Win32.Generic!BT
TrendMicroMal_MiliCry-1h
McAfee-GW-EditionRDN/Generic PWS.ir
FireEyeGeneric.mg.8970bb60ec20d688
EmsisoftTrojan.Backdoor.PRD (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan.Yakes.uev
WebrootW32.Backdoor.Gen
AviraHEUR/AGEN.1114517
eGambitUnsafe.AI_Score_100%
KingsoftWin32.Troj.Backdoor.v.(kcloud)
MicrosoftRansom:Win32/Milicry
AegisLabTrojan.Win32.Yakes.4!c
ZoneAlarmTrojan.Win32.Yakes.sjjf
GDataTrojan.Backdoor.PRD
AhnLab-V3Trojan/Win32.Yakes.C1769263
McAfeeRDN/Generic PWS.ir
MAXmalware (ai score=100)
VBA32Trojan.Yakes
MalwarebytesMachineLearning/Anomalous.94%
PandaTrj/CI.A
TrendMicro-HouseCallMal_MiliCry-1h
RisingSpyware.Ursnif!8.1DEF (CLOUD)
IkarusTrojan-Ransom.Agent
MaxSecureTrojan.Malware.12328149.susgen
FortinetW32/Papras.EH!tr.pws
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.SageCryp.HwoCEpsA

How to remove Trojan.Backdoor.PRD?

Trojan.Backdoor.PRD removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment