Win32.Nirvana

While Nirvana describes a perfect and peaceful state of mind, this backdoor Trojan by the same name will do nothing of the sort to your mind if it is allowed to stay on your system to finish its business.  It will use the following registry key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCADDC14-BD46-408A-9842-CDBE1C6D37EB}

Its MD5 is 9cd65cab1ba7827cd65f424eb32f4d93 and it has a file size of 142336 bytes.

Win32.Nirvana will enter a system without notice and without permission.  Then it will await instructions from its hacker all the while opening a port to allow its author to enter

Related Files:
bd.nirvana.194.exe
bd.nirvana.195.exe
bd.nirvana.196.exe
bd.nirvana.197.exe
bd.nirvana.199.exe
bd.nirvana.20.exe
bd.nirvana.21.exe

Category:
Backdoor Trojan

AKA:
Backdoor.Win32.Nirvana.20
Backdoor.Nirvana.20
BackDoor-HG
Backdoor.Trojan
BackDoor.Nirvana.20
Troj/Bdoor-HG
Backdoor:Win32/Nirvana.2_0
TROJ_NIRVANA.197
BDS/Nirvana.20.B
Win32:Trojan-gen.
BackDoor.Nirvana
Backdoor.Nirvana.2.0
Bck/Nirvana.20
Win32/Nirvana.20.A

Recommended Action:
Remove at once.

You can remove Win32.Nirvana manually by determining the processes and stopping them and then removing all remaining files and folders related to the program.  A reliable anti-spyware application can also remove Win32.Nirvana with ease in addition to any other spyware you may have on your system.  ZookaWare PC Cleaner is a trusted system that can root out any spyware you may have on your system and eradicate it with one scan.

Download Free Scan
ZookaWare runs on Windows Vista, 7, 8 and 10. It has no ads, popups or bundled software and fully uninstalls by clicking Start > All Programs > select ZookaWare and click Uninstall.

One Response

  1. Gabriel Morley says:

    I am not the most computer literate person, but SpyZooka was so easy to use! I love knowing my kids are safe online. I am very happy with this great program!

Leave a Reply

Your email address will not be published. Required fields are marked *

css.php