Saturday, November 29, 2008

DigitalNames Trojan

Removing DigitalNames
Categories: Trojan,Adware
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer.

Visible Symptoms:
Files in system folders:
[%SYSTEM%]\imekp32.dll
[%SYSTEM%]\novacc.dll
[%SYSTEM%]\novagsun.exe
[%SYSTEM%]\Novagsx.exe
[%SYSTEM%]\novaini.ini
[%SYSTEM%]\novapd99.exe
[%DESKTOP%]\nts_shex66.dll
[%PROGRAM_FILES%]\uBiz\Mykey\Bms.dll
[%SYSTEM%]\drivers\novagsys.sys
[%SYSTEM%]\novags01.dll
[%SYSTEM%]\imekp32.dll
[%SYSTEM%]\novacc.dll
[%SYSTEM%]\novagsun.exe
[%SYSTEM%]\Novagsx.exe
[%SYSTEM%]\novaini.ini
[%SYSTEM%]\novapd99.exe
[%DESKTOP%]\nts_shex66.dll
[%PROGRAM_FILES%]\uBiz\Mykey\Bms.dll
[%SYSTEM%]\drivers\novagsys.sys
[%SYSTEM%]\novags01.dll

How to detect DigitalNames:

Files:
[%SYSTEM%]\imekp32.dll
[%SYSTEM%]\novacc.dll
[%SYSTEM%]\novagsun.exe
[%SYSTEM%]\Novagsx.exe
[%SYSTEM%]\novaini.ini
[%SYSTEM%]\novapd99.exe
[%DESKTOP%]\nts_shex66.dll
[%PROGRAM_FILES%]\uBiz\Mykey\Bms.dll
[%SYSTEM%]\drivers\novagsys.sys
[%SYSTEM%]\novags01.dll
[%SYSTEM%]\imekp32.dll
[%SYSTEM%]\novacc.dll
[%SYSTEM%]\novagsun.exe
[%SYSTEM%]\Novagsx.exe
[%SYSTEM%]\novaini.ini
[%SYSTEM%]\novapd99.exe
[%DESKTOP%]\nts_shex66.dll
[%PROGRAM_FILES%]\uBiz\Mykey\Bms.dll
[%SYSTEM%]\drivers\novagsys.sys
[%SYSTEM%]\novags01.dll

Folders:
[%PROGRAM_FILES%]\UBizNames

Registry Keys:
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\novags
HKEY_CLASSES_ROOT\clsid\{c18517da-ca70-46ce-86f4-882f6b62e975}
HKEY_CLASSES_ROOT\clsid\{eefe4ba1-1d9e-4364-8c15-18561ab19fbc}
HKEY_CLASSES_ROOT\interface\{09b4c362-3e63-431d-ad99-7a8b81218021}
HKEY_CLASSES_ROOT\novacc.ccc
HKEY_CLASSES_ROOT\novacc.ccc.1
HKEY_CLASSES_ROOT\typelib\{c76a64b8-dd96-4175-9c27-0f70f0b7da35}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c18517da-ca70-46ce-86f4-882f6b62e975}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\novags
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_novagsys
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\novagsys
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\xprtect

Registry Values:
HKEY_CURRENT_USER\software\microsoft\internet explorer\new windows\allow
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run

Removing DigitalNames:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Active.Delivery Downloader Symptoms

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)