Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
- Updated:
- February 13, 2007 11:37:29 AM
- Type:
- Dialer
- Risk Impact:
- High
- File Names:
- Run32dll.exe,Windial32.exe
- Systems Affected:
- Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
Behavior
Dialer.Kotu is a dialer program that modifies the Remote Access Server (RAS) phone-book and Internet Connection settings. It attempts to establish a RAS connection and to use the modem to dial a predefined, high-cost phone number.
Symptoms
Your Symantec antivirus product detects Dialer.Kotu.
Transmission
Dialer.Kotu is distributed as a stand-alone executable file when you open certain HTML or CHM files. These files are detected as MHTMLRedir.Exploit. Dialer.Kotu must then be manually executed for it to run.
Antivirus Protection Dates
- Initial Rapid Release version May 25, 2004
- Latest Rapid Release version September 28, 2010 revision 054
- Initial Daily Certified version May 25, 2004
- Latest Daily Certified version September 28, 2010 revision 036
- Initial Weekly Certified release date May 26, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
