Backdoor.ProxyBot

Backdoor.ProxyBot Description

Backdoor.ProxyBot is a backdoor Trojan that permits cybercriminals to obtain remote access and control over the corrupted PC system. Backdoor.ProxyBot uses numerous methods to penetrate into the affected workstation. Backdoor.ProxyBot can infiltrate into the compromised PC system without the affected computer user's consent and awareness. After successful installation, Backdoor.ProxyBot adds infected files that may seem to be the legitimate Windows components. Some components of the Backdoor.ProxyBot are closely connected with a counterfeit anti-spyware program called System Guard 2009. By using these components, System Guard can be surreptitiously install itself onto the infected computer system. Backdoor.ProxyBot can turn your computer into a proxy server, which will enable cybercriminals to use it for complex malicious actions, for instance, to execute illegitimate activities or attack other networks. Backdoor.ProxyBot has to be removed in order to keep your PC safe.

Aliases: Trj/Hino.F [Panda], Not_a_virus:Proxy.3proxy.122880, Riskware.Server-Proxy.Win32.3proxy.i!IK [a-squared], Server-Proxy/Win32.3proxy.gen [Antiy-AVL], SPR/3Proxy.A.2 [AntiVir], ApplicUnwnt.Win32.3Proxy.A_20 [Comodo], not-a-virus:Server-Proxy.Win32.3proxy.i [Kaspersky], TROJ_Generic.ADV, Suspicious_Gen2.YCHM, Proxy-Thrap [McAfee], Virtool.20528, Worm.Win32.VB.cbg [Kaspersky], Generic4.CBFV [AVG], AdWare.EZula.hfae and AdWare/Win32.EZula.gen [Antiy-AVL].

Technical Information

File System Details

Backdoor.ProxyBot creates the following file(s):
# File Name Size MD5 Detection Count
1 %PROGRAMFILES(x86)%\castvpn\castvpn.exe\castvpn.exe 201,216 4916c1df8f3c6a8934010ac129228d7d 2,062
2 C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw5sp.exe\iw5sp.exe 2,528,256 283996ed615f685e4c21afb8bb48698d 57
3 %WINDIR%\system32\MSNavgnt.exe 151,552 ed24cb2ca14412fc3c52d83b5656a4e1 32
4 %PROGRAMFILES%\VVT\browser\brsplus.exe 745,984 4a1ab0f529eea5622c1f5391260448a2 15
5 %SystemDrive%\3proxy\bin\3proxy.exe 122,880 ae72332620135e97254c12bda21fe30d 3
6 %WINDIR%\system32\su16308.dll 225,280 bff97581e5c0dd824cb60aa102ebab18 2
7 %APPDATA%SysE.exe 1,293,312 542f234390095289eb98152e7f28fe4a 2
8 %WINDIR%\system32\MIDIMirc.exe 158,275 c84fa589334927ad20c29e1ea52af9eb 1
9 %WINDIR%\system32\e4f035e2.dll 3,304,960 405756e3fc9d70e8e714abb01594ca9c 1
10 sp.DLL N/A
11 PCMAVExpress.exe N/A
12 VNFix1.1.exe N/A
13 scvhost.exe N/A
14 wss.exe N/A
15 VRT1C.tmp N/A
16 file.dll 56,832 b310d6ab709c933441827b9cf44ab34d 0
More files

Related Posts

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.