backdoor.bot (trojan)

Discussion in 'Waffle' started by SIRUS, Jun 24, 2010.

  1. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    anyone else had this and/or can furnish me with advice to eradicate this bastard?

    i have malware bytes and avast, which both identify and quarantine it, but it just reappears again.

    it's giving me the right hump.

    google just gives me free scan programs that need me to buy the product to do a fix, but as the trojan logs all your details for a hacker, i'm giving that a swerve.

    i'm backing all my stuff up now as i'm considering just reinstalling vista if i can't find a solution in the next 24 hours.

    this is the last pc i ever buy. utter steaming pile of dogs eggs.:-x


    your lovingly

    sirus
     
  2. DontLikeCops

    DontLikeCops Certified tramp

    Joined:
    Feb 15, 2009
    Messages:
    1,174
    Likes Received:
    0
    Location:
    peckham
    ye poor poor bastard, i recommened a hammer, a gallon of petrol, a match and some enthusiasm to do damage
     
  3. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    thanks cops.

    i'm tumescent with the raging enthusiam, believe me. my disdain is thickening to quite possible, brutal eruption.

    however at this current time i'm looking for a more cost effective measure, so lets call your offering 'plan c'.

    thanks for your response.
     
  4. djmotiondnb

    djmotiondnb AKA Tactician

    Joined:
    Jan 5, 2009
    Messages:
    1,548
    Likes Received:
    1
    Location:
    Royal Leamington Spa, Warwickshire, United Kingdom
    To remove Backdoor.Bot, you must first stop any Backdoor.Bot processes that are running in your computer's memory. To stop all Backdoor.Bot processes, press CTRL+ALT+DELETE to open the Windows Task Manager. Click on the "Processes" tab, search for Backdoor.Bot, then right-click it and select "End Process" key.

    To delete Backdoor.Bot registry keys, open the Windows Registry Editor by clicking on the Windows "Start" button and selecting "Run." Type "regedit" into the box and click "OK." Once the Registry Editor is open, search for the registry key "HKEY_LOCAL_MACHINE\Software\Backdoor.Bot." Right-click this registry key and select "Delete."

    Finally, to completely get rid of Backdoor.Bot, you must manually remove other Backdoor.Bot files. These Backdoor.Bot files can be in the form of EXE, DLL, LSP, TOOLBAR, BROWSER HIJACK, and/or BROWSER PLUGIN. For example, Backdoor.Bot might create a file like
    %PROGRAM_FILES%\Backdoor.Bot\Backdoor.Bot.exe. Locate and remove these files.


    hope this helps man (y)
     
  5. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    many thanks motion.

    i shall give that a whirl and report back.
     
  6. Moskit

    Moskit :rodigan: Staff Member

    Joined:
    May 27, 2009
    Messages:
    4,364
    Likes Received:
    3,747
    I'd love to backdoor your bot, you fiendishly sexy ruffian.

    :love:

    xxx
     
  7. herojuana

    herojuana hairy kuala

    Joined:
    Jul 17, 2009
    Messages:
    5,594
    Likes Received:
    948
    Location:
    London/Sheffield
    damn, i was coming in this thread to call shotgun on it
     
  8. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    the infected reg key is

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot)

    but when i delete it through regedit, then run malwarebytes, it comes back...

    can't find any exe file yet though.
     
  9. EWOKS

    EWOKS POTATOES GONNA POTATE

    Joined:
    Feb 8, 2008
    Messages:
    7,410
    Likes Received:
    360
    Location:
    Portsmouth
    YEA, WHAT MOTION SAID .. and ... after you have deleted it from registry etc .. then use search function and search backdoor bot, and delete anything that shows up .. i know thats pretty obvious.. but thought it was worth the mention brudda
     
  10. djmotiondnb

    djmotiondnb AKA Tactician

    Joined:
    Jan 5, 2009
    Messages:
    1,548
    Likes Received:
    1
    Location:
    Royal Leamington Spa, Warwickshire, United Kingdom
    gotta hunt that exe down man
     
  11. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    thanks ethix and motion. seems this is going to take a while to search out, and i've been at this too long already today.

    i shall adjourn this for now, have a small joint, relax for the evening, and tackle this bitch head on tomorrow evening.
     
  12. djmotiondnb

    djmotiondnb AKA Tactician

    Joined:
    Jan 5, 2009
    Messages:
    1,548
    Likes Received:
    1
    Location:
    Royal Leamington Spa, Warwickshire, United Kingdom
    dont loose sleep ;)
     
  13. SmallVictoriez

    SmallVictoriez Teen Pop Sensation

    Joined:
    Apr 4, 2010
    Messages:
    605
    Likes Received:
    2
    Location:
    Houston
    Motion's advice is pretty solid. I run a small operation in my spare time fixing up people's PCs - Wouldn't believe the amount of money people will pay to just not have to mess with cleaning up a tiny little trojan.

    I highly recommend that you grab Microsoft Security Essentials, I know you're probably thinking its shit because its Microsoft developed, but hey who better to design an antivirus than the OS manufacturer?

    It hardly eats up any page file memory as I can demonstrate even with one of my lower end PCs here:

    [​IMG]



    All you need is a valid copy of windows, its entirely free otherwise.

    Good luck to you, if you need any extra help I can provide.
     
  14. JamesZero

    JamesZero aka Zero Beats

    Joined:
    Oct 2, 2008
    Messages:
    2,934
    Likes Received:
    109
    Location:
    South London
  15. SIRUS

    SIRUS 変なひと

    Joined:
    Feb 16, 2007
    Messages:
    5,158
    Likes Received:
    874
    took a bad move.

    had more than this problem to solve so reinsatlled vista. now don't have the drivers to run the internet. tried installing the drivers and it won't have it. you need a degree to solve the flidtard mongputer i bought from dell.

    i'm fucking sick of this shit. bill gates should have been kicked to death as a boy.
     
  16. logikz

    logikz I Am Not The King Staff Member

    Joined:
    Feb 8, 2002
    Messages:
    10,556
    Likes Received:
    2,520
    Location:
    www.easternpromiseaudio.com
    ok. formatting and reinstallin then i suppose, think thatll help?
     
  17. Harry3

    Harry3 Chuki

    Joined:
    Jul 11, 2009
    Messages:
    8,045
    Likes Received:
    739
    Location:
    Canada
    now dont go hating on bill gates just because you downloaded drumandbassmix.exe off limewire :teeth:
     
  18. Joey AdhD

    Joey AdhD sweaty scouser

    Joined:
    Apr 2, 2008
    Messages:
    7,158
    Likes Received:
    298
    Location:
    Liverpool, United Kingdom
    you just need to get your netword drivers for your machine, u need to find out what mother board is in ya PC, then find a web site that tells your what drivers you need, once your have this sorted u will be able to get drivers no worries...let me jus find that site for ya
     
  19. Moskit

    Moskit :rodigan: Staff Member

    Joined:
    May 27, 2009
    Messages:
    4,364
    Likes Received:
    3,747
    Delete System 32.