Backdoor.Bot or Trojan.Win32.Midgare Removal Report

Backdoor.Bot Description

Type: Trojan

Like its name suggests, Backdoor.Bot is a backdoor Trojan. Like most backdoor Trojans, Backdoor.Bot is designed to allow a hacker to obtain illegal access to a computer through a digital 'backdoor'. Much like a real-life backdoor allows a robber to enter a house or a building without being seen, a backdoor into a computer like the one the Backdoor.Bot establishes allows a criminal to gain access to the infected computer without being detected by the infected computer's security. Once installed, the Backdoor.Bot will open up an unauthorized opening that allows criminals to carry out tasks by gaining access to the infected computer from a remote location. If you are afraid that your PC has been in contact with Backdoor.Bot, you should scan your computer with a reliable anti-malware tool after restarting Windows in Safe Mode.

While a backdoor can be used to do anything on the infected computer (for example, stealing information, installing other malware, or deleting the contents of the infected computer's hard drive), the Backdoor.Bot itself is usually associated with scams that involve identity theft or stealing login data for online gaming and banking accounts. The Backdoor.Bot can also be used to execute a keylogger component on the infected computer. This keylogger records all the keys that are pressed on the infected computer's keyboard, meaning that criminals can then use this data to steal your online passwords and sensitive data, such as credit card or bank account numbers. A keylogger can also be used to monitor your activity on the infected computer and spy on your personal communications. Every once in a while, the Backdoor.Bot will deliver all the gathered data to a remote server where criminals can then gain access to it and use it for their own, malicious purposes.

What Kind of Tasks Can the Backdoor.Bot Be Used For?

Apart from stealing your information, Backdoor.Bot can be used as part of other large scale attacks on your computer. Criminals can use the Backdoor.Bot to install other malware on your computer, typically a rogue security program or a Trojan. There are numerous variants of the Backdoor.Bot due to the fact that the established backdoor can be used by criminals for a number of scams and attacks. Basically, the Backdoor.Bot allows criminals nearly the same level of control as if they were sitting in front of your computer's screen.

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software Detection

AVG Generic16.CDTS

Ikarus Trojan.Win32.Midgare

Sunbelt Packed.Win32.Rebhip.a.1 (v)

AhnLab-V3 Win-Trojan/Buzus.608256.D

eTrust-Vet Win32/Kollah.APV

McAfee-GW-Edition Heuristic.BehavesLike.Win32.Suspicious.H

DrWeb Win32.HLLW.Autoruner.9222

F-Secure Trojan-Dropper:W32/Malis.gen!H

BitDefender Trojan.Generic.2093113

Kaspersky Trojan.Win32.Buzus.bwqx

ClamAV Trojan.Buzus-4637

Avast Win32:Inject-TO

F-Prot W32/Trojan2.HEBD

NOD32 Win32/Buzus.BIGA

McAfee W32/Autorun.worm.fy

Technical Information

File System Details

Backdoor.Bot creates the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detection Count
1	rl9g0bwwr1l.exe	26615614660d568b2509a5373cbcad1c	9
Name: rl9g0bwwr1l.exe MD5: 26615614660d568b2509a5373cbcad1c Size: 39.93 KB (39936 bytes) Detection Count: 9 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 18, 2011
2	sys.exe	6f743f8489ef000c14191c9e547bddca	9
Name: sys.exe MD5: 6f743f8489ef000c14191c9e547bddca Size: 203.55 KB (203555 bytes) Detection Count: 9 Type: Executable File Path: %TEMP%\ Group: Malware file Last Updated: January 8, 2013
3	1lgww1g.exe	d6299d87ce2518668955468aa91667e3	6
Name: 1lgww1g.exe MD5: d6299d87ce2518668955468aa91667e3 Size: 39.93 KB (39936 bytes) Detection Count: 6 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 8, 2011
4	xpupdate.exe	2d9b147c2059dce494223b818274d748	6
Name: xpupdate.exe MD5: 2d9b147c2059dce494223b818274d748 Size: 124.41 KB (124416 bytes) Detection Count: 6 Type: Executable File Path: %SystemDrive%\RECYCLER\S-1-5-21-8556255180-8340947505-347048866-6696\ Group: Malware file Last Updated: December 12, 2012
5	winlogon.exe	208745d6ae95730c1bb66355aaa6d638	4
Name: winlogon.exe MD5: 208745d6ae95730c1bb66355aaa6d638 Size: 298.49 KB (298496 bytes) Detection Count: 4 Type: Executable File Path: C:\RECYCLER\S-1-5-21-1382786252-2331198890-065395318-6957\ Group: Malware file Last Updated: February 21, 2011
6	djwi2kcew.exe	160c20bd5a310b92f0a2105fe9b37ace	4
Name: djwi2kcew.exe MD5: 160c20bd5a310b92f0a2105fe9b37ace Size: 135.68 KB (135680 bytes) Detection Count: 4 Type: Executable File Path: C:\RECYCLER\S-1-5-21-1164416283-0704393758-153681830-7043\ Group: Malware file Last Updated: February 22, 2011
7	ql5g1vqgg1q.exe	e5aa1ca75d8ce62b7f0ee097346f3cec	4
Name: ql5g1vqgg1q.exe MD5: e5aa1ca75d8ce62b7f0ee097346f3cec Size: 39.93 KB (39936 bytes) Detection Count: 4 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 6, 2011
8	wnzip32.exe	5da6ba2f4f425a04c0ff675e91cd0c9b	2
Name: wnzip32.exe MD5: 5da6ba2f4f425a04c0ff675e91cd0c9b Size: 107 KB (107008 bytes) Detection Count: 2 Type: Executable File Path: C:\RECYCLER\S-1-5-21-1548338495-1396400765-946418885-8802\ Group: Malware file Last Updated: February 10, 2011
9	winrom.exe	742f9d3621a981a7bd6fc0cc8d225925	2
Name: winrom.exe MD5: 742f9d3621a981a7bd6fc0cc8d225925 Size: 40.44 KB (40448 bytes) Detection Count: 2 Type: Executable File Path: %WINDIR%\System32\ Group: Malware file Last Updated: December 9, 2010
10	ffaavqq2kf.exe	26d217ef3002f934d9f1c4787f2692f2	2
Name: ffaavqq2kf.exe MD5: 26d217ef3002f934d9f1c4787f2692f2 Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 11, 2011
11	qql1faavlaq.exe	6127348f0451305c0d520129f242ae1c	2
Name: qql1faavlaq.exe MD5: 6127348f0451305c0d520129f242ae1c Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: May 31, 2011
12	scxhost.exe	0eca47f9d5b93ca3498526b5580abdbd	2
Name: scxhost.exe MD5: 0eca47f9d5b93ca3498526b5580abdbd Size: 131.07 KB (131072 bytes) Detection Count: 2 Type: Executable File Path: %WINDIR%\ Group: Malware file Last Updated: March 14, 2011
13	zvlw1mns.exe	87c7e824dd386017f1b7651a50c3ccce	2
Name: zvlw1mns.exe MD5: 87c7e824dd386017f1b7651a50c3ccce Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: March 25, 2011
14	awwriiduup.exe	1db63bbbddce7131378767ee8f3eb60e	2
Name: awwriiduup.exe MD5: 1db63bbbddce7131378767ee8f3eb60e Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: March 28, 2011
15	0hm86y8.exe	8bc5757abfcffdf65fe041e8ae000642	2
Name: 0hm86y8.exe MD5: 8bc5757abfcffdf65fe041e8ae000642 Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: May 3, 2011
16	5iidjfv.exe	94afc9b7ec1a7c00a781e0f5df822c22	2
Name: 5iidjfv.exe MD5: 94afc9b7ec1a7c00a781e0f5df822c22 Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 26, 2011
17	5wwmns8.exe	a4ec4df6ca473fa9dae91aed5c4b2592	2
Name: 5wwmns8.exe MD5: a4ec4df6ca473fa9dae91aed5c4b2592 Size: 39.93 KB (39936 bytes) Detection Count: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: May 3, 2011
18	r.exe	53d4ee6fb944fa56733d1b099ca2dbd1	2
Name: r.exe MD5: 53d4ee6fb944fa56733d1b099ca2dbd1 Size: 67.99 KB (67997 bytes) Detection Count: 2 Type: Executable File Path: %APPDATA%\FTF\ Group: Malware file Last Updated: October 23, 2012
19	081yjkf.exe	fd0fc5c46c931405b005b68a9d9a8ed9	1
Name: 081yjkf.exe MD5: fd0fc5c46c931405b005b68a9d9a8ed9 Size: 38.4 KB (38400 bytes) Detection Count: 1 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: December 6, 2010
20	MsMxEng.exe	dc177beeb71e834a7af5e820aa6e9315	1
Name: MsMxEng.exe MD5: dc177beeb71e834a7af5e820aa6e9315 Size: 181.24 KB (181248 bytes) Detection Count: 1 Type: Executable File Path: C:\RECYCLER\S-1-5-21-4629222160-8634559352-099394617-1457\ Group: Malware file Last Updated: November 30, 2010
21	winrsc.exe	729182a9cf01c56cf51cd8caed6f88b6	1
Name: winrsc.exe MD5: 729182a9cf01c56cf51cd8caed6f88b6 Size: 63.48 KB (63488 bytes) Detection Count: 1 Type: Executable File Path: %WINDIR%\system\ Group: Malware file Last Updated: November 30, 2010
22	msimfo32.exe	c67241d3ac991ece12a1c6e091284b82	1
Name: msimfo32.exe MD5: c67241d3ac991ece12a1c6e091284b82 Size: 103.42 KB (103424 bytes) Detection Count: 1 Type: Executable File Path: C:\RECYCLER\S-1-5-21-1947311589-7562745499-915912882-6344\ Group: Malware file Last Updated: December 9, 2010
23	2too6aa.exe	38c94d3fc0147691b03ae361b8c899e3	1
Name: 2too6aa.exe MD5: 38c94d3fc0147691b03ae361b8c899e3 Size: 39.93 KB (39936 bytes) Detection Count: 1 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 8, 2011
24	rnnjzzv2rmm.exe	ca96f280ab521b593b0c45676e08e4eb	1
Name: rnnjzzv2rmm.exe MD5: ca96f280ab521b593b0c45676e08e4eb Size: 39.93 KB (39936 bytes) Detection Count: 1 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 8, 2011
25	uqqlccxooj.exe	98784700ee33189554b397cd5ee89e2a	1
Name: uqqlccxooj.exe MD5: 98784700ee33189554b397cd5ee89e2a Size: 39.93 KB (39936 bytes) Detection Count: 1 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup\ Group: Malware file Last Updated: April 18, 2011

More files

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Ranking:	12,585
Threat Level:	80 % (High)
Infected Computers:	377

First Seen:	November 30, 2010
Last Seen:	August 21, 2021
OS(es) Affected:	Windows

Backdoor.Bot

Backdoor.Bot Description

What Kind of Tasks Can the Backdoor.Bot Be Used For?

Aliases

Technical Information

File System Details

Related Posts

Site Disclaimer

Your comment is awaiting moderation.

Please verify that you are not a robot.

Leave a Reply

EnigmaSoft Threat Scorecard

Popular Malware

Popular Trojans

Popular Ransomware

Popular Issues

Popular How-Tos

Products

Malware Research

Company

Legal