W32.Doal.Trojan


Aliases: TROJ_DOAL.A,Win32/DIToon, Load,QDel254
Variants: N/A

Classification: Malware
Category: Trojan Horse

Status: Inactive
Spreading: Moderate
Geographical info: Asia, Europe and US
Removal: Easy
Platform: W32
Discovered: 01 Jul 2002
Damage: Medium

Characteristics: The W32.Doal.A Trojan resembles the W32.Whiter.Trojan program because may pose as a "key generator" for Windows XP.

More details about W32.Doal.Trojan

This is a malicious spyware disguising itself as Windows XP Home Edition Key generator. It creates the following files and folders: C:\Program Files\Windows XP Home Keys; C:\Program Files\Common Files\Software; C:\Program Files\Windows XP Home Keys\Windows XP Home Edition Serials.diz (499 Bytes) and C:\Program Files\Common Files\Software\Load.exe (312,606 Bytes). If run, a file "load.exe" is then saved in your system and this will not run until the user reboots its system. The W32.Doal.A Trojan program will then prompt a message about not having enough disk space and whether the user wants to proceed or not. If the user continued, then his files would be gone and deleted by QDel254. It can infect the Windows 2000, Windows 95, Windows ME, Windows NT and Windows XP.

This Trojan infects others through email, group messaging, chatting and other online and files sharing activities. Some of the most common sites wherein you can possibly acquire this are: Kazaa, Morpheus and some other more sites or networks that do file sharing. The best way to avoid this infection is by following the most basic security protocols of the computer. They include the use of password and creating a user account on your pc; putting a limit on what others can do while using your computer, keeping your firewall on at all times when you using the Net, having antivirus and anti- spyware installed in your system and keeping them updated, turning off unnecessary file sharing devises such as Bluetooth and infrared, turning off autoplay, avoiding sharing and accepting files specially when you do not know them.