Categories: Trojan
This category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.
[Kaspersky]Trojan-Dropper.Win32.Small.avj,Trojan.Win32.Agent.abf,Trojan-Proxy.Win32.Small.du,Trojan-Proxy.Win32.Small.fl;
[McAfee]BackDoor-DKH;
[F-Prot]W32/Agent.DLE;
[Other]Win32/Ditul,Win32/Ditul.BA,Win32/Ditul.BC,Win32/Ditul.BD,Win32/Ditul.B,Win32/Ditul.BE,Infostealer,Win32/Ditul.Y,Win32/Ditul.AA,Troj/Agent-EBN,Troj/Agent-DWW,Trojan.Dropper,Win32/Ditul.FL,Win32/Ditul.FW,Win32/Ditul!generic,W32/Smalltroj.BKEU,TROJ_SMALL.ISO
Visible Symptoms:
Files in system folders:
[%SYSTEM%]\msnetax.dll
[%SYSTEM%]\windhcp.ocx
[%SYSTEM%]\Drivers\CelInDriver.sys
[%SYSTEM%]\RemoteDbg.dll
[%SYSTEM%]\windds32.dll
[%SYSTEM%]\msnetax.dll
[%SYSTEM%]\windhcp.ocx
[%SYSTEM%]\Drivers\CelInDriver.sys
[%SYSTEM%]\RemoteDbg.dll
[%SYSTEM%]\windds32.dll
How to detect Ditul:
Files:
[%SYSTEM%]\msnetax.dll
[%SYSTEM%]\windhcp.ocx
[%SYSTEM%]\Drivers\CelInDriver.sys
[%SYSTEM%]\RemoteDbg.dll
[%SYSTEM%]\windds32.dll
[%SYSTEM%]\msnetax.dll
[%SYSTEM%]\windhcp.ocx
[%SYSTEM%]\Drivers\CelInDriver.sys
[%SYSTEM%]\RemoteDbg.dll
[%SYSTEM%]\windds32.dll
Registry Keys:
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_celindrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_windhcpsvc
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\win32dds
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\windhcpsvc
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\celindrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\remotedbg
Removing Ditul:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
No comments:
Post a Comment