Backdoor.Teambot
Backdoor.Teambot is a backdoor Trojan infection, this backdoor infection designed to open up a conduit or hole in the system to give hackers control of the machine. Hackers behind this malicious scheme do this via LAN or the internet. Backdoor.Teambot also has the ability to launch and install other malware through the backdoors it creates in the system without the user's knowledge.
Backdoor.Teambot may be capable of sending and receiving files, launching and deleting files, executing files, displaying fake pop-up notifications, deleting important data and continuously rebooting the machine. Experts have proven that Backdoor.Teambot poses a threat to PC safety and security. Affected computer users should make use of a reliable anti-malware program to make sure their computer is free of all threats related to Backdoor.Teambot.
File System Modifications
- The following files were created in the system:
# File Name 1 %UserProfile%\Application Data\TeamViewer\TeamViewer4_Logfile.log 2 %Windir%\log\DSC456.jpg 3 %Windir%\log\PIC071.exe 4 %Windir%\log\START.JS 5 %Windir%\svchost.exe 6 %Windir%\ts.dll 7 %Windir%\TV.dll
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"sv[ONE MULTIBYTE CHARACTER]host" = "%Windir%\svchost.exe"HKEY_CURRENT_USER\Software\WinRAR SFX\"C%%WINDOWS" = "%SystemDrive%\WINDOWS"HKEY_CURRENT_USER\Software\WinRAR SFX\"C%%WINDOWS%log" = "%Windir%\log"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.