Discovered: April 10, 2004
Updated: February 13, 2007 12:21:13 PM
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows XP
Trojan.Popdis is a Trojan horse that modifies the registry keys and overwrites the Hosts file. The file, Addcls.exe (detected as Downloader.Trojan), downloads Trojan.Popdis.
The Trojan.Popdis executable usually uses the file name Dp.dll, but other file names are possible.
Protection
-
Initial Rapid Release version April 10, 2004
-
Latest Rapid Release version August 20, 2008 revision 017
-
Initial Daily Certified version April 10, 2004
-
Latest Daily Certified version January 20, 2009 revision 048
-
Initial Weekly Certified release date April 14, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 50 - 999
-
Number of Sites: More than 10
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Difficult
Damage
Distribution
Writeup By: Fergal Ladley
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
