Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It allows hackers to gain remote access to the affected computer.
|First detected on:||Nov. 14, 1998|
|Detection updated on:||March 6, 2006|
|Yes, using TruPrevent Technologies
|Country of origin:||SWEDEN|
TrjNetbus.170 is a backdoor type Trojan that allows hackers to gain remote access to the affected computer. Both computers should be TCP/IP network users.
This virus has two programs:
- The server program, which is installed in the affected computer.
- The client program, which is installed in the attacker’s computer.
Due to the combination of these two programs, the attacker can gain remote access to the resources of the affected computer without the user realizing.
Therefore, the hacker would be able to open and close the CD-ROM tray of the affected computer, run programs, send and receive files, capture keystrokes, etc., among other things.
When TrjNetbus.170 activates on the affected computer, the programs may automatically run, some window may open, minimize or close for no apparent reason, the CD-ROM tray may open and close, etc.
The best way to check if this Trojan is active on the computer is to access the Task Administrator (by pressing the keys Ctr+Alt+Supr). If it is active TrjNetbus.170 will appear among the list of active processes. From the Task Administrator it is possible to stop the activity of this Trojan.