Home Malware Programs Backdoors Backdoor.DsBot


Posted: February 23, 2010

Backdoor.DsBot (alias Backdoor.DsBot.mu) is a malicious Trojan which stealthily enters the system via security exploits. Backdoor.DsBot makes drastic changes to your Registry. If your system is infected with Backdoor.DsBot.mu, chances are it will create a conduit to get various parasites onto your PC. You are also likely to encounter the following symptoms: system slowdown, vanishing files and Internet connection problems. Backdoor.DsBot should be removed from your computer as promptly as possible.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\Microsoft\backup.ftp
    2 %System%\Microsoft\backup.tftp
    3 %Windir%\servicestub.exe
    4 %Windir%\W0034_jpg.zip

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "%Windir%\servicestub.exe"

Related Posts