DameWare.Mini.Remote.Control RAT

DameWare.Mini.Remote.Control virus description
Technical details:
Categories: RAT

DameWare.Mini.Remote.Control Folders:
[%PROGRAM_FILES%]\dameware development

DameWare.Mini.Remote.Control Files:
[%DESKTOP%]\dwmrcw.exe
[%PROGRAMS%]\dameware mini remote control\dameware mini remote control help.lnk
[%PROGRAMS%]\dameware mini remote control\dameware mini remote control.lnk
[%PROGRAMS%]\dameware mini remote control\install dmrc service.lnk
[%PROGRAMS%]\dameware mini remote control\remove dmrc service.lnk
[%PROGRAMS%]\dameware mini remote control\service install & remove wizard.lnk
[%DESKTOP%]\dwmrcw.exe
[%PROGRAMS%]\dameware mini remote control\dameware mini remote control help.lnk
[%PROGRAMS%]\dameware mini remote control\dameware mini remote control.lnk
[%PROGRAMS%]\dameware mini remote control\install dmrc service.lnk
[%PROGRAMS%]\dameware mini remote control\remove dmrc service.lnk
[%PROGRAMS%]\dameware mini remote control\service install & remove wizard.lnk

DameWare.Mini.Remote.Control Registry Keys:
HKEY_CURRENT_USER\software\dameware development
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu2\programs\dameware mini remote control
HKEY_LOCAL_MACHINE\software\dameware development\dwrcs

DameWare.Mini.Remote.Control Registry Values:
HKEY_CURRENT_USER\software\microsoft\installer\features\0fe858bbc088f154fad5c167b51f7167
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\installer\folders
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\installer\folders
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\{bb858ef0-880c-451f-af5d-1c765bf11776}
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\dwmrcs

DameWare.Mini.Remote.Control indications of infection

This symptoms of DameWare.Mini.Remote.Control detection are the files, registry, and network communication referenced in the technical details section.
Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.

Also Be Aware of the Following Threats:
Remove yachtworld.com Tracking Cookie
AOLPS.Amath Trojan Removal
Active.Strip.Setup Adware Removal

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)