Backdoorwin32cycbot.b

Backdoorwin32cycbot.b Description

Backdoorwin32cycbot.b is a Windows platform backdoor Trojan. Backdoorwin32cycbot.b is able to enter a system without a user's permission or knowledge. Once inside a system, Backdoorwin32cycbot.b will allow remote attackers access to the system. Backdoorwin32cycbot.b will also download more infections onto the system making it vulnerable to other attacks. Backdoorwin32cycbot.b is a computer threat that is advisable to remove upon detection.

Aliases: Backdoor.Gbot, Win32.Troj.Generic.(kcloud), Backdoor/Gbot.lbb, Gen:Variant.Kazy.51620 (B), BDS/Gbot.qwmva [AntiVir], TrojWare.Win32.Kryptik.YAK [Comodo], Backdoor.Gbot!/6E7tgcfFEI, Backdoor.Win32.Gbot.qwm [Kaspersky], Trojan.Gbot-5255 [ClamAV], TROJ_GEN.RC1H1A4, Win32/Gbot.F!generic, Cycbot.FB, W32/Goolbot.P.gen!Eldorado [F-Prot], Trojan.Win32.Gbot.tughe and Trojan.Dropper.PE4.

Technical Information

File System Details

Backdoorwin32cycbot.b creates the following file(s):
# File Name Size MD5 Detection Count
1 %APPDATA%\98FB6\D71E9.exe 169,472 a5464a8b1c87c5334c64fda0a440821c 64
2 %PROGRAMFILES%\Internet Explorer\43A0\B95.exe 173,568 ebfd27b09e70975c6a05d62ae9da5c68 29
3 %APPDATA%\Microsoft\lvvm.exe 177,664 04f82663b480dde92e05b5462e0553a0 12
4 %APPDATA%\C4242\D7101.exe 173,568 8769f7a253e65035b9aa5b0f3b1a5611 11
5 %APPDATA%\4CF2B\00001.exe 172,032 c9fbeeddb9d78f6d8a765ad31a16c9ca 6
6 %APPDATA%\A85FE\A1B5F.exe 173,568 f0fb6c147bdcff21e4bf38052b41f699 5
7 %APPDATA%\78012\84527.exe 174,080 a4bd17aebd8ea75fb0cc999c3d941526 5
8 %APPDATA%\B6827\EBE63.exe 168,960 bc157c90cc8b474503367b76be979218 5
9 %APPDATA%\Microsoft\491E\6F9.exe 175,616 fe023bc3133eece7b0c8c944143fcfe2 4
10 %USERPROFILE%\Application Data\firefox.exe 2,790,400 b719533b9f4a3cf8c17a6c3baa08342b 4
11 %APPDATA%java.exe 2,939,904 3cc9f4cca076a0849332f894807f13b6 4
12 %APPDATA%\1E366\B9B79.exe 172,544 bb3da9a3ed04012b5f3b01d7a94595f3 4
13 %APPDATA%\F8B42\0BA0F.exe 174,080 2f00aad059497a49f9c807281372bc6a 3
14 %USERPROFILE%\Application Data\iexplore.exe 2,838,528 a5421d4a65a033cf5df3a09e74329f0e 3
15 %APPDATA%\2C436\6562D.exe 176,640 ed281b006c5f6be6e5aef450fb4c890c 3
16 %APPDATA%\E4CDE\1F128.exe 198,144 3ee4c1176bfe69f666662a99e05c6b05 3
17 %APPDATA%\4A647\E21E6.exe 173,568 a324d8cb374f835cba2b0bae56bed0ef 2
18 %APPDATA%\08D03\689BA.exe 173,568 95b988fb918271a582caf02e3c8949ff 2
19 %APPDATA%\2EDC8\B7595.exe 174,080 283529285c7ce47fb7f6d2c57a8fc576 2
20 %TEMP%0.42125441913294215.exe 194,048 e9a9f730b3b6f79129ef60634422b383 1
21 %TEMP%orary Internet Files\Content.IE5\EHKQ5WMU\drufee[1].mp3 191,488 22db9768cc44985a6629ed0060c10cb4 1
22 %APPDATA%\A8TePv3Qf\ONSpHfXktSpHfqI.exe 2,413,568 2b7f6f2b8420e9b2f96261a6f14b40f5 1
23 %APPDATA%\Microsoft\D476\2FD.exe 176,128 7c20ae7c36808280ff099ffb64d08d5b 1
24 %APPDATA%\Microsoft\DEBA\264.exe 285,184 f4d5c5d4496889008fc677e0ffb59ec4 1
25 %PROGRAMFILES%\LP\0155\38A.exe 286,208 e5d0f3610c8456e8a7c99987ef14e18e 1
26 %APPDATA%\Microsoft\7BD9\E1D.exe 285,696 2a949abf0ed18967f6fa6bb12f45ad0e 1
27 %APPDATA%\Microsoft\5865\276.exe 289,792 022db570eaacc52070735b3393c7ceb0 1
28 %APPDATA%\B04D0\087E7.exe 174,592 fb3eda59e0eed8c0e0bcb275709b0d86 1
More files

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.