BackDoor.Bulknet.739 Description

BackDoor.Bulknet.739 is a backdoor Trojan that, in conjunction with a second PC threat (BackDoor.Bulknet.847) uses an infected PC’s resources to send automated spam e-mail for malware distribution and other malicious purposes. In a victory for PC security, the Russian AV company known as Doctor Web recently managed to infiltrate one of BackDoor.Bulknet.739’s botnet servers, allowing them to gain access to useful information on BackDoor.Bulknet.739’s distribution and infection methodology. Despite this positive development, BackDoor.Bulknet.739 still is a danger to PCs that BackDoor.Bulknet.739 infects and may show limited or no symptoms of its attacks. malware experts consider anti-malware software necessary both for removing BackDoor.Bulknet.739 and in many cases, for detecting BackDoor.Bulknet.739 in the first place.

BackDoor.Bulknet.739: the Accurately-Named Trojan with One Step on the Path to Termination

BackDoor.Bulknet.739 is used to enable spam-based e-mail attacks that exploit the resources of any compromised PCs by connecting them to configurable botnets. These botnets issue instructions, typically en mass, to BackDoor.Bulknet.739-infected computers, allowing BackDoor.Bulknet.739 to send its spam or perform other attacks. malware researchers are particularly careful to warn that a BackDoor.Bulknet.739 infection will not show many visible symptoms of the presence of malign software, other than the possibility of BackDoor.Bulknet.739’s repetitive bulk-mailing functions eating your computer’s resources and, as a result, causing performance issues.

BackDoor.Bulknet.739’s campaign was active in 2012 but has been thrown into the spotlight anew after Doctor Web researchers managed to gain control over one of BackDoor.Bulknet.739’s botnet servers.

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter.

Although this action hasn’t completely terminated BackDoor.Bulknet.739’s campaign, it did allow the anti-malware industry to acquire some useful information about BackDoor.Bulknet.739’s infection patterns.

As expected from similar attack campaigns analyzed by malware experts, BackDoor.Bulknet.739 has shown signs of being distributed on a global level, with hundreds of computers infected on a daily basis. Some of the top countries being hit by BackDoor.Bulknet.739 include the Philippines, Mexico, the United States, Turkey, Italy and Venezuela. Additionally, Windows 7 was confirmed as the primary OS infected by BackDoor.Bulknet.739 successfully, with other versions of Windows also at high risk.

Getting the Vast Bulk of a BackDoor.Bulknet.739 Problem Out of Your Virtual Door

BackDoor.Bulknet.739 may be responsible for system performance problems or an overall loss of system resources that can be traced to its spambot activities, but other symptoms of BackDoor.Bulknet.739 infections are likely to be slim. Since BackDoor.Bulknet.739 most likely is operating from other servers besides the one seized by Russian PC security researchers, BackDoor.Bulknet.739 still should be treated as an ongoing PC threat campaign that can endanger your computer (most obviously, through its spam messages).

Since BackDoor.Bulknet.739 also installs a related Trojan BackDoor.Bulknet.847, and will try to conceal itself, malware experts encourage using accurate anti-malware scanners to detect and delete BackDoor.Bulknet.739, along with its relative. Removing BackDoor.Bulknet.739 completely also should solve any performance or stability issues that resulted from its presence on your computer.


Trj/Genetic.gen [Panda]SHeur4.BAQN [AVG]a variant of Win32/Kryptik.AUDY [ESET-NOD32]Heuristic.BehavesLike.Win32.Suspicious.H [McAfee-GW-Edition]TR/Crypt.XPACK.Gen [AntiVir]BackDoor.Bulknet.739 [DrWeb]Trojan.Agent/Gen-Dlg [SUPERAntiSpyware]UDS:DangerousObject.Multi.Generic [Kaspersky]TROJ_GEN.RC1H1BI [TrendMicro-HouseCall]Suspicious.Cloud.5 [Symantec]

More aliases (13)

BackDoor.Bulknet.739 Automatic Detection Tool (Recommended)

Is your PC infected with BackDoor.Bulknet.739? To safely & quickly detect BackDoor.Bulknet.739 we highly recommend you run the malware scanner listed below.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
  • The following files were created in the system:
    # File Name Detection Count
    1 %APPDATA%\ 1106.exe 7
Posted: April 10, 2013 | By
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Threat Metric
Threat Level: 6/10
Detection Count: 7
Home Malware ProgramsBackdoors BackDoor.Bulknet.739

Leave a Reply

What is 13 + 5 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)