RCT's & RAT's
What are they?
How do I detect them?
How many are there?
What ports do they use?
How do I Remove?
Acid Shivers (modified)
Deep Back Orifice
Deep Throat v2
Hack 'a' Tack
NetBus 2 Pro
Sockets 'de Troie
Doly Trojan currently affects Windows 95/98 PC's.
The "server" portion is named "tesk.exe". It's approximately 169Kb in size and can usually be found in the either the WINDOWS or WINDOWS\SYSTEM directory.
Ports 1011 and 21 (by default) are used to establish the connection between the "client" and "server".
Once installed, it is rerun every time the computer is started by means of entries under the "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" and the "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" branch in the Registry.
Who is Responsible?
Doly Trojan was written by an individual named the-H-man.
Here are some of the functions that Doly Trojan offers:
- Enable/Disable the double click mouse
Here's a picture of what the "client" portion of the software looks like.
How to Remove Doly Trojan
The first eight steps involve editing the registry and although the steps are relatively easy, I cannot be held responsible if a mistake is made. Please use caution.
Congratulations, Doly Trojan has now been removed from your system.
Copyright Commodon Communications. All rights reserved.