BackDoor.Bulknet.739 is a backdoor Trojan that, in conjunction with a second PC threat (BackDoor.Bulknet.847) uses an infected PC’s resources to send automated spam e-mail for malware distribution and other malicious purposes. In a victory for PC security, the Russian AV company known as Doctor Web recently managed to infiltrate one of BackDoor.Bulknet.739′s botnet servers, allowing them to gain access to useful information on BackDoor.Bulknet.739′s distribution and infection methodology. Despite this positive development, BackDoor.Bulknet.739 still is a danger to PCs that BackDoor.Bulknet.739 infects and may show limited or no symptoms of its attacks. SpywareRemove.com malware experts consider anti-malware software necessary both for removing BackDoor.Bulknet.739 and in many cases, for detecting BackDoor.Bulknet.739 in the first place.
BackDoor.Bulknet.739: the Accurately-Named Trojan with One Step on the Path to Termination
BackDoor.Bulknet.739 is used to enable spam-based e-mail attacks that exploit the resources of any compromised PCs by connecting them to configurable botnets. These botnets issue instructions, typically en mass, to BackDoor.Bulknet.739-infected computers, allowing BackDoor.Bulknet.739 to send its spam or perform other attacks. SpywareRemove.com malware researchers are particularly careful to warn that a BackDoor.Bulknet.739 infection will not show many visible symptoms of the presence of malign software, other than the possibility of BackDoor.Bulknet.739′s repetitive bulk-mailing functions eating your computer’s resources and, as a result, causing performance issues.
BackDoor.Bulknet.739′s campaign was active in 2012 but has been thrown into the spotlight anew after Doctor Web researchers managed to gain control over one of BackDoor.Bulknet.739′s botnet servers.
As expected from similar attack campaigns analyzed by SpywareRemove.com malware experts, BackDoor.Bulknet.739 has shown signs of being distributed on a global level, with hundreds of computers infected on a daily basis. Some of the top countries being hit by BackDoor.Bulknet.739 include the Philippines, Mexico, the United States, Turkey, Italy and Venezuela. Additionally, Windows 7 was confirmed as the primary OS infected by BackDoor.Bulknet.739 successfully, with other versions of Windows also at high risk.
Getting the Vast Bulk of a BackDoor.Bulknet.739 Problem Out of Your Virtual Door
BackDoor.Bulknet.739 may be responsible for system performance problems or an overall loss of system resources that can be traced to its spambot activities, but other symptoms of BackDoor.Bulknet.739 infections are likely to be slim. Since BackDoor.Bulknet.739 most likely is operating from other servers besides the one seized by Russian PC security researchers, BackDoor.Bulknet.739 still should be treated as an ongoing PC threat campaign that can endanger your computer (most obviously, through its spam messages).
Since BackDoor.Bulknet.739 also installs a related Trojan BackDoor.Bulknet.847, and will try to conceal itself, SpywareRemove.com malware experts encourage using accurate anti-malware scanners to detect and delete BackDoor.Bulknet.739, along with its relative. Removing BackDoor.Bulknet.739 completely also should solve any performance or stability issues that resulted from its presence on your computer.
Trj/Genetic.gen [Panda]SHeur4.BAQN [AVG]a variant of Win32/Kryptik.AUDY [ESET-NOD32]Heuristic.BehavesLike.Win32.Suspicious.H [McAfee-GW-Edition]TR/Crypt.XPACK.Gen [AntiVir]BackDoor.Bulknet.739 [DrWeb]Trojan.Agent/Gen-Dlg [SUPERAntiSpyware]UDS:DangerousObject.Multi.Generic [Kaspersky]TROJ_GEN.RC1H1BI [TrendMicro-HouseCall]Suspicious.Cloud.5 [Symantec]
More aliases (13)
BackDoor.Bulknet.739 Automatic Detection Tool (Recommended)
Is your PC infected with BackDoor.Bulknet.739? To safely & quickly detect BackDoor.Bulknet.739, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect BackDoor.Bulknet.739 What happens if BackDoor.Bulknet.739 does not let you open SpyHunter or blocks the Internet?
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %APPDATA%\ 1106.exe 16
Posted: April 10, 2013 | By SpywareRemove
Threat Level: 6/10
Rate this article:
Detection Count: 7