Updated: February 13, 2007 11:42:23 AM
Type: Dialer
Risk Impact: High
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
When Dialer.IEDisco.B is run, it can perform the following actions:
Note: Dialer.IEDisco.B is a .dll file and cannot run by itself. It requires an executable to be run and and to perform these actions.
- Stop the following personal firewall processes:
- SYMPROXYSVC.EXE
- SMC.EXE
- PERSFW.EXE
- AGENTW.EXE
- ZONEALARM.EXE
- BLACKICE.EXE
- Stop the following adware/spyware processes:
- Create the following registry keys:
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{946B0485-8F8C-4C35-A6E7-D2115E3B0B4F}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{79733E69-6E1C-4682-BDF5-710D217A4125}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F513E3DA-5579-4981-8ABC-99E411893C3D}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{99FF4323-E68C-46DC-8F48-1F79A7005336}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DHTMLAccess.HTMLAccess
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DHTMLAccess.HTMLAccess.1
- Locate and execute Wintrim.exe.
- Dial randomly generated numbers.
- Download and install %Windir%\Sysres.exe from a designated Web site.
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
