Trojan.Basutra
Trojan.Basutra Description
Trojan.Basutra is a Trojan that modifies the master boot record (MBR) of the infected computer. Once executed, Trojan.Basutra modifies the certain registry entry. Trojan.Basutra then changes the password for the Administrator account to HaHaHa_[RANDOM NUMBERS]. Trojan.Basutra also ends up the Alerter and System Event Notification services. Trojan.Basutra can delete all directories and files on all logical drives. Trojan.Basutra then contacts the particular locations on ports 8080 or 110. Trojan.Basutra then overwrites the master boot record (MBR)(Boot.Basutra). Once the affected PC is restarted, a black screen is shown and the PC cannot run.
Trojan.Basutra Automatic Detection Tool (Recommended)
Is your PC infected with Trojan.Basutra? To safely & quickly detect Trojan.Basutra, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Trojan.Basutra
What happens if Trojan.Basutra does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 file.exe 204
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY..\..\{Value}HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\"ClearPageFileAtShutdown" = "1"
Posted: June 22, 2012 | By SpywareRemove
MoreThreat Level: 9/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 26
