Spyware free software spyware removal Anti Spyware software free spyware check adware spyware remover anti virus downloadAnti Spyware Software
Spyware Detector - HomeSpyware Detector - PurchaseSpyware Detector - AffiliatesSpyware Detector - Download UpdatesSpyware Detector -FAQSpyware Detector -Contact Us

Home/ Spyware Encyclopedia / Backdoor.Bandok

 Backdoor.Bandok Technical Details
 CategoryBackdoor
 Discovered 7/27/2006 8:41:00 PM
 Modified 12/1/2006 12:09:00 PM
 Threat LevelMedium
 DescriptionA Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes unknown to the user.
 SummaryThe hosts file was updated with the following url-to-ip mappings: n/a
The following http urls were started: n/a
Generated smtp traffic: n/a
Connection(s) established with remote IRC Server: n/a
The following hidden entries created: n/a
The following internet connection was established:
127.0.0.1:1167(www.test.com)
59.95.34.32:1167
 When the Backdoor is executed, it creates the following files:
 
NameVersionPublisherSignature (MD5)File Size (in Bytes)
..\ali.exe  460cc7f6866ff2323c9992d19a324bad90112
..\01087cec.dll  D55A089F4D1EAD40E4A2D50C97087DF554272
..\0509e946.exe  93B0A111B47ED964B13D05848E9D58E924064
..\0661c709.exe  3590628FBA7A6FF0B5E50FD0D86B6C3023061
..\080c9a86.exe  1394BAB37BB5B8C7FFF74F874E0D610A18944
..\0900a7a2.exe  D386CDADD481FAB28D0F67D74695645490112
..\123698ee.exe  5C3D72646E9669F9C0AE383D7DC6A6FF18881
..\1434f05d.exe  F7259D2AF5F8C356C372EF19A845183C122495
..\177fbe9b.exe  1ABB2A587D0754912CE36C7EF7F6372D93184
..\1d5b6212.exe  BD491776B7309F20D69D078F9D33E6D026112
..\1f86bb48.exe  2FBFDC9EF1453AB1875158383B2A799C36668
..\2e31bc2f.exe  C1B9BE9510D90E80573F944C2B5016AE26112
..\34e691d3.exe  442D9861C0AA143AF4D115B4F143AF9732256
..\351419fd.dll  A1B1C45EF975BD80DC48B0FA1AC6A41130720
..\3cb22611.exe  2389611EB95BC7CB8E604461D09A904425744
..\3ee2a0ff.exe  42B6D75278E046542E206D4DEBDB1D9231161
..\459811c4.dll  4E1F58F1E95B098DB696783548BD1C1837888
..\4bf47301.exe  11A0544EB5FAA8EF42B3BB1284033EDB18865
..\4c869b72.exe  2CE06018E2497CCD75F3D226D277AAC614336
..\4cc75e63.exe  C78FF6BA6AD6DAFDB484F06791C9D30918889
..\507dc019.exe  D1FAFBBBEE4C09013F1355AD41A313A743338
..\523f674c.exe  B84689016CFAC8CAEF7A0F3DBCEC3A4118853
..\52bc5b5c.exe  3EEA97FAD35E71ADB027D47F899D311F32256
..\53af5700.exe  01DE6FF11CA8591FC08EC05DA1D83FD35325
..\5faa15c1.exe  1668A909B98E86FA6A445BD3156588EA18881
 When the Backdoor is executed, it creates the following Registry entries:
 
..\software\microsoft\windows\currentversion\"bndkrt"
..\software\microsoft\windows\currentversion\"bnhide"
..\software\microsoft\windows\currentversion\"ofk"
..\software\microsoft\windows\currentversion\bnhide\"1564|ali.exe|bandook|1167|x|"
..\software\microsoft\windows\currentversion\run\"1234"
..\software\microsoft\windows\currentversion\run\"bandook"
..\software\microsoft\windows\currentversion\run\"bandookmyt"
..\software\microsoft\windows\currentversion\run\"gok"
..\software\microsoft\windows\currentversion\run\"hackingnation"
..\software\microsoft\windows\currentversion\run\"regserv"
..\software\microsoft\windows\currentversion\run\"windnes"
..\software\microsoft\windows\currentversion\run\"winlogz"
..\software\microsoft\active setup\installed components\{b6a807g7-42df-4w02-93e5-b156b3fa8al1}
..\software\microsoft\active setup\installed components\{b6a807n6-42df-4w02-93e5-b156b3fa8al1}\stubpath\"%WINDIR%\bdmyt.exe"
..\software\microsoft\active setup\installed components\{b6a857n6-42df-4w02-93e5-a156b3fa8an1}
..\software\microsoft\active setup\installed components\svchosts
..\software\microsoft\windows\currentversion\run\"winupbate"
..\software\microsoft\windows\currentversion\runonce\"*bandook"
..\software\microsoft\windows\currentversion\runonce\"*windnes"
Recommendation to remove Backdoor.Bandok
Spyware Detector can remove Backdoor.Bandok, and thousands of other Spyware definitions, automatically and instantly. Click here to download Spyware Detector and scan for free.
Download Spyware Detector and Scan for FREE
 
Personalized e-Mail support by our Research Team. You send an "Export Log" report to us, we then add new definition and you eliminate spyware found on YOUR PC in the next Live Update. So, not only do you benefit but the whole community enjoys the feedback. 
Speed up your computer and increase browsing performance by deleting Spyware & Adware
Enjoy continuous protection and security with frequent spyware definition updates so you never have to worry about new threats and outdated software.
Surf the web with confidence knowing your online activities aren't being tracked, and your confidential data is secure from prying eyes.
 
Free Spyware Scan
 Search Threats
Testimonials

Read More
Information Desk
Spyware & Adware Categories we scan
  
List of Spyware &
Adware we remove
Submit a Threat
Submit a threat to be reviewed by our research team

Submit a Threat
Home| About Us| Purchase| Contact Us| FAQ| Privacy Policy