Backdoor.Salgorea is a backdoor Trojan that opens a back door on the corrupted PC. Backdoor.Salgorea may propagate through spam emails carrying a harmful .hta file. When run, Backdoor.Salgorea replicates itself as the malevolent files on the infected computer system. Backdoor.Salgorea creates a partially modified copy of itself to the temporary folder and runs this copy with parameter '--help'. Backdoor.Salgorea also creates the clean file and executes it. Backdoor.Salgorea then creates the schedule task files in order to run the file 'sidebar.exe' daily. Backdoor.Salgorea creates the registry entry so that it can load automatically whenever you boot up Windows. Backdoor.Salgorea also creates other registry entries.
File System Details
|2||%Temp%\[RANDOM FILE NAME].exe|
|3||%UserProfile%\Application Data\Microsoft\Windows Sidebar\sidebar.exe|
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.