Jump to content
Sign in to follow this  

Backdoor.bot Malware on TorGuard software?

Rate this topic

Recommended Posts


Malwarebytes found Backdoor.bot on the DDWRT automatic router configuration software. Highly concerning for those who are using VPNs in the first place to avoid being implanted with Malware. Anyone use this software before? Anyone found the backdoor? What's the reason for this?




Malwarebytes Anti-Malware
Scan Date: 6/21/2015
Scan Time: 1:00:31 PM
Logfile: Torguard backdoor.txt
Administrator: Yes
Malware Database: v2015.06.21.03
Rootkit Database: v2015.06.15.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 398116
Time Elapsed: 2 min, 5 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Backdoor.Bot, C:\Users\XXXXX\Downloads\DDWRT-QuickSetup.exe, , [3720e9d4dcae181e79904e2557abb64a], 
Physical Sectors: 0
(No malicious items detected)

Share this post

Link to post
Share on other sites

Did you checked a file with VirusTotal/other such services, Dr.Web, Kaspersky, so on?

Share this post

Link to post
Share on other sites

Guys it’s a false positive, Norton does the same thing, its due to the runtime packer, nothing else, you are FINE :)



Share this post

Link to post
Share on other sites

Haha Admin is watching you via your webcam :P


Its not giving any alarams with zonealarm.

If you use cracked software then they got many false positives as well.


Since you are using windows 7 i would worry more about what bill gates put in the bitlocker dll file. Thats the backdoor you need to worry about :D

A Finish prof. from a Finish university found it which i wrote a SA about back in 2009 or 2010.

Share this post

Link to post
Share on other sites

i would test via virus total and would report to the manufacturer of the AV so they fix it

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Create New...