Backdoor.Win32.Rukap.bq is a backdoor Trojan which allows a remote intruder to do the following:
1.Gain access and control the computer.
2.Execute programs.
3.Reboot the system.
4.Open files.
5.Open webpages.
6.Download files.
7.Launch and manage a Proxy Server on the victim`s machine.
It`s as if the intruder is operating his own desktop at free will.
Virus Information
Prevalence:
Medium
Name: Backdoor.Win32.Rukap.bq
Type: Trojan
How it spreads: Internet Downloads
Affected operating: Windows
Aliases: Troj/Crybot-C
Date of surface: Aug 28 2006
MediumName: Backdoor.Win32.Rukap.bq
Type: Trojan
How it spreads: Internet Downloads
Affected operating: Windows
Aliases: Troj/Crybot-C
Date of surface: Aug 28 2006
To remove the virus, please follow the steps below:
1) The latest virus vaccine update of eScan removes the worm from your system. Ensure that Internet access for your system is running. Right click on
and click Download eScan update. The latest updates are downloaded,your system is scanned and the worm is removed.
OR
2) Download the free MicroWorld Anti Virus Toolkit (MWAV Tool Kit). The tool checks your machine for viruses. If any illegal dialers or sniffer tools have been installed they are detected.
MWAV Tool Kit
(Download the free MicroWorld Anti Virus Toolkit that detects viruses in system registry and running processes)
Link 1
Link 2
Link 3
eScan Internet Security Suite (ISS)
(Download MicroWorld`s eScan that detects viruses in system registry,running processes and has a real time monitor)
Link 1
Link 2
Link 3
Link 4
Link 5
Link 6
1) The latest virus vaccine update of eScan removes the worm from your system. Ensure that Internet access for your system is running. Right click on
and click Download eScan update. The latest updates are downloaded,your system is scanned and the worm is removed.OR
2) Download the free MicroWorld Anti Virus Toolkit (MWAV Tool Kit). The tool checks your machine for viruses. If any illegal dialers or sniffer tools have been installed they are detected.
MWAV Tool Kit
(Download the free MicroWorld Anti Virus Toolkit that detects viruses in system registry and running processes)
Link 1
Link 2
Link 3
eScan Internet Security Suite (ISS)
(Download MicroWorld`s eScan that detects viruses in system registry,running processes and has a real time monitor)
Link 1
Link 2
Link 3
Link 4
Link 5
Link 6
Backdoor.Win32.Rukap.bq is a backdoor Trojan which allows a remote intruder to do the following:
1.Gain access and control the computer.
2.Execute programs.
3.Reboot the system.
4.Open files.
5.Open webpages.
6.Download files.
7.Launch and manage a Proxy Server on the victim`s machine.
It`s as if the intruder is operating his own desktop at free will.
Backdoor.Win32.Rukap.bq is registered as a new system driver service named "DirectLujp", with a display name of "DirectX Service" and a startup type of automatic, so that it is started automatically during system startup. It creates foll Registry entries under:
HKLM\SYSTEM\CurrentControlSet\Services\DirectLujp\
HKLM\SOFTWARE\Microsoft\DirectLujp\
Backdoor.Win32.Rukap.bq uses the system utility netsh.exe to adjust Windows firewall settings in order to make connection to remote servers
1.Gain access and control the computer.
2.Execute programs.
3.Reboot the system.
4.Open files.
5.Open webpages.
6.Download files.
7.Launch and manage a Proxy Server on the victim`s machine.
It`s as if the intruder is operating his own desktop at free will.
Backdoor.Win32.Rukap.bq is registered as a new system driver service named "DirectLujp", with a display name of "DirectX Service" and a startup type of automatic, so that it is started automatically during system startup. It creates foll Registry entries under:
HKLM\SYSTEM\CurrentControlSet\Services\DirectLujp\
HKLM\SOFTWARE\Microsoft\DirectLujp\
Backdoor.Win32.Rukap.bq uses the system utility netsh.exe to adjust Windows firewall settings in order to make connection to remote servers
