Backdoor.Tofsee
Posted: May 6, 2009
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 447 |
|---|---|
| Threat Level: | 6/10 |
| Infected PCs: | 158,883 |
| First Seen: | July 24, 2009 |
|---|---|
| Last Seen: | October 16, 2023 |
| OS(es) Affected: | Windows |
Backdoor.Tofsee is a backdoor trojan infection that usually displays fake notifications once installed to persuade you into purchasing a malicious application. Backdoor.Tofsee may be installed through a security exploit without your permission or you knowing about it. Backdoor.Tofsee may open up your system to outside or remote attackers where personal information may be compromised. Backdoor.Tofsee should be detected and removed with a spyware removal application immediately to insure your system is not broken into by a remote hacker.
Aliases
a variant of Win32/Kryptik.DYL [NOD32]Backdoor.Tofsee.CQ [BitDefender]BKDR_CETORP.G [TrendMicro]Suspicious.DLoader [Symantec]Troj/Agent-NAO [Sophos]Generic.dx!rwd [McAfee]Backdoor.Win32.Cetorp.ex [Kaspersky]Gen:Trojan.Heur.GZ.bmGfbebBFEb [BitDefender]Generic17.BDTC [AVG]Trojan.Win32.Buzus [Sunbelt]Mal/Generic-L [Sophos]Win32/Lethic.AA [NOD32]VirTool:Win32/CeeInject.gen!DM [Microsoft]Heuristic.BehavesLike.Win32.CodeInjection.H [McAfee-GW-Edition]Generic.dx!spy [McAfee]
More aliases (205)
More aliases (205)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:ff6c17ec4d9ca00aa508ad67bc289168e2758316d91b5039c16aac16f7a990b3.exe
File name: ff6c17ec4d9ca00aa508ad67bc289168e2758316d91b5039c16aac16f7a990b3.exeSize: 188.41 KB (188416 bytes)
MD5: 91e49de44c4d3c3c528aa1fafc149585
Detection count: 83
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
f73d3c2edda301bc1b373f3ac95a0e2d35176ba5ae728daa5b16ba33dd7acaf3.exe
File name: f73d3c2edda301bc1b373f3ac95a0e2d35176ba5ae728daa5b16ba33dd7acaf3.exeSize: 147.45 KB (147456 bytes)
MD5: 86af2c39b1fd192c5b0913c9ceb3f95d
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
f4f3d5ffd79f649f0778ba47f607b0d8c767673f8ff912356ff578c6a8a4a8e7.exe
File name: f4f3d5ffd79f649f0778ba47f607b0d8c767673f8ff912356ff578c6a8a4a8e7.exeSize: 196.6 KB (196608 bytes)
MD5: 9ac36c72c699a3c37f6430cc01acee84
Detection count: 81
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
f43564197b82e89c3664c4f8d9e6cac76493204dc65902ad8def7e3237ee6a9c.exe
File name: f43564197b82e89c3664c4f8d9e6cac76493204dc65902ad8def7e3237ee6a9c.exeSize: 159.74 KB (159744 bytes)
MD5: 3b2c3d1f4d22a89bed058a5f5300fabd
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
f0a43a5b35ea584ab1ef55070450d814b2f4f8d708305f49b99f05233bba8724.exe
File name: f0a43a5b35ea584ab1ef55070450d814b2f4f8d708305f49b99f05233bba8724.exeSize: 159.74 KB (159744 bytes)
MD5: 3cee8cf45765face4657cffa387d37b7
Detection count: 76
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
eed8a4a28c7ea398012370566f4810b0b17dd4b7d9040d0dc3a2444184e96bd1.exe
File name: eed8a4a28c7ea398012370566f4810b0b17dd4b7d9040d0dc3a2444184e96bd1.exeSize: 139.26 KB (139264 bytes)
MD5: 1974a352e910387f1a88ac9a50efa590
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
edb169b9c8d1e963a2b4faf7aee3437806db768a154419bb43eb4a153eccd76c.exe
File name: edb169b9c8d1e963a2b4faf7aee3437806db768a154419bb43eb4a153eccd76c.exeSize: 139.26 KB (139264 bytes)
MD5: ba8ab5a2eddb48254773b3673476b7d4
Detection count: 74
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
ed49d7ab4c605bdf74d6b2e13ac4dffa684d754655f2f736b4eced0f99253e4a.exe
File name: ed49d7ab4c605bdf74d6b2e13ac4dffa684d754655f2f736b4eced0f99253e4a.exeSize: 172.03 KB (172032 bytes)
MD5: 8000adac7209f79025890d0933d3e192
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
eac20de0c0f1b512013d8605ff6f7c80b9916462c5d15c750d0fa4579d26e942.exe
File name: eac20de0c0f1b512013d8605ff6f7c80b9916462c5d15c750d0fa4579d26e942.exeSize: 199.04 KB (199040 bytes)
MD5: 19b0ad338e334c63a22803cf977abd45
Detection count: 72
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
ea0238511dcf2184505f7469a680fd082abce325bee5d51949d3e668a1650dd7.exe
File name: ea0238511dcf2184505f7469a680fd082abce325bee5d51949d3e668a1650dd7.exeSize: 139.26 KB (139264 bytes)
MD5: 1a90034cd08c655525f1f3293d52a266
Detection count: 71
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
e5017de9c227509d1afdeeae3263e07ca6dc2fc18a74b68f1f4f224bb356c09c.exe
File name: e5017de9c227509d1afdeeae3263e07ca6dc2fc18a74b68f1f4f224bb356c09c.exeSize: 192.51 KB (192512 bytes)
MD5: 48225818e9704ef713554b1ee290edf3
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
aa1c89cd4ac25638d5b2877a0f37a5e3b78a0232120b5d2f59bbb045947c3392.exe
File name: aa1c89cd4ac25638d5b2877a0f37a5e3b78a0232120b5d2f59bbb045947c3392.exeSize: 162.68 KB (162688 bytes)
MD5: 5db65331948a508f0135f94361fe1039
Detection count: 55
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
a88250e8cc383d8b8677e48b80ea5042d355dea984da8d54c2a0ef399c364ad6.exe
File name: a88250e8cc383d8b8677e48b80ea5042d355dea984da8d54c2a0ef399c364ad6.exeSize: 114.68 KB (114688 bytes)
MD5: 3f0bbfda0bf4b7fe7e095cfdb23cd12d
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
a74ac9fdfc23f48b803b5d793635cf9333c709e3f3e417f5b7d1c8948d7f4673.exe
File name: a74ac9fdfc23f48b803b5d793635cf9333c709e3f3e417f5b7d1c8948d7f4673.exeSize: 114.68 KB (114688 bytes)
MD5: e6ef7a0991e9a560a94215cc4982a6cd
Detection count: 53
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
a384b3b77572fff0b2419822e57b96579cefb65462751374af1b10f185930b35.exe
File name: a384b3b77572fff0b2419822e57b96579cefb65462751374af1b10f185930b35.exeSize: 139.26 KB (139264 bytes)
MD5: 8c786789afd5ad3aff80bb468121660a
Detection count: 52
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
c:\Users\<username>\downloads\troj_generic_0df461d06925e966a233aef76c9b190cb682b31d54e6ecfbd61589c6f0c75254.exe
File name: troj_generic_0df461d06925e966a233aef76c9b190cb682b31d54e6ecfbd61589c6f0c75254.exeSize: 105.98 KB (105984 bytes)
MD5: 886793a05f5d72e9e94eceb0511f6c94
Detection count: 52
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\downloads
Group: Malware file
Last Updated: March 26, 2019
9a2f01ee89f146b9879d745163aa93c8c9284a8ba4e5a1e826f02f1d34076cfd.exe
File name: 9a2f01ee89f146b9879d745163aa93c8c9284a8ba4e5a1e826f02f1d34076cfd.exeSize: 192.51 KB (192512 bytes)
MD5: a37048d2e94d6c515b397cad1460dcc1
Detection count: 51
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
933102554b2e643ea268f7b7082e05236ab973ddce85a40ab897ccb0c95a91f0.exe
File name: 933102554b2e643ea268f7b7082e05236ab973ddce85a40ab897ccb0c95a91f0.exeSize: 135.16 KB (135168 bytes)
MD5: b7bf23f9b24b7d98d4903c04edecf8ec
Detection count: 50
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
8433b2c140098958d8f1674aa8264f28d85bde9c090a312fa3c7bc5ba7dbc824.exe
File name: 8433b2c140098958d8f1674aa8264f28d85bde9c090a312fa3c7bc5ba7dbc824.exeSize: 143.36 KB (143360 bytes)
MD5: 1404c45d8b95054f3e8a3a406b873ff2
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
8099818243a984060801ad00de5c54d7ec7bac2921fadef568996a575532660e.exe
File name: 8099818243a984060801ad00de5c54d7ec7bac2921fadef568996a575532660e.exeSize: 139.26 KB (139264 bytes)
MD5: e9944febf313b30c0e60d3ae235a5f7b
Detection count: 45
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 21, 2016
file.exe
File name: file.exeSize: 155.64 KB (155648 bytes)
MD5: aaeebe86afd081d0e7d2173137d086d0
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: February 18, 2022
More files
Registry Modifications
The following newly produced Registry Values are:
Regexp file mask%USERPROFILE%\init.exe
Regexp file mask%USERPROFILE%\init.exe
Virus name Backdoor.Tofsee.AM{DB} is in the C:\WINDOWS\system32secupdat.dat in my PC.And is run internet on my PC so what should I have to do.Please give me the ways in which I can remove this error.
mine is exactly the same please help?