Backdoor:Win32/Trubsil.B

Backdoor:Win32/Trubsil.B Description

Type: Possibly Unwanted Program

Backdoor:Win32/Trubsil.B is a web-based backdoor Trojan that replicates itself into the specific folder on the corrupted PC. Backdoor:Win32/Trubsil.B creates the registry entry to guarantee that it can load automatically whenever the computer is started. Backdoor:Win32/Trubsil.B communicates with a remote host to execute other payloads. Backdoor:Win32/Trubsil.B executes password-guessing attacks depending on a list of passwords that it downloads from a distant server. Backdoor:Win32/Trubsil.B may also be able to update itself or drop other files. Backdoor:Win32/Trubsil.B contacts the certain servers to download commands and configuration information. Backdoor:Win32/Trubsil.B attempts to guess the administrator login data for a set of administrator login PHP pages for a certain URL using user names that it downloads from the distant server.

Technical Information

File System Details

Backdoor:Win32/Trubsil.B creates the following file(s):
# File Name Detection Count
1 %APPDATA%\system\djyvobbrgnsdwlaea.exe N/A

Registry Details

Backdoor:Win32/Trubsil.B creates the following registry entry or registry entries:
RegistryKey
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run [malware_file_name], for example djyvobbrgnsdwlaea = %APPDATA%\system\[malware_file_name]

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.