Security+Alert++++++++Trojan.Darkshell


 * Security Alert Trojan.Darkshell**

Trojan.Darkshell is a Trojan infection that hackers can use to launch a Distributed Denial of Service attack (DDoS). If your PC is infected, it becomes part of a botnet, under the control of hackers, which they can use to send thousands of messages to the site they want to attack in order to try to bring it down.

It creates the following files on infected systems: In addition to creating these files, it also creates the following registry entries: Finding these files and registry settings is an indication that you are infected with this Trojan. Before removing the infection, backup your registry following the steps here:
 * C:\​Windows\​System 32\​fkrekk[RANDOM NUMBERS].exe
 * C:\​Windows\​System 32\​drivers\​PCIDump.sys
 * HKEY_LOCAL_MACHINE\​SYSTEM\​CurrentControlSet\​Services\​Fkrkk[RANDOM NUMBERS]\​"DisplayName" = "FkreFoxkk[RANDOM NUMBERS]"
 * HKEY_LOCAL_MACHINE\​SYSTEM\​CurrentControlSet\​Services\​Fkrkk[RANDOM NUMBERS]\​"Description" = "FkreFoxkk Browser[RANDOM NUMBERS]"
 * HKEY_LOCAL_MACHINE\​SYSTEM\​CurrentControlSet\​Services\​Fkrkk[RANDOM NUMBERS]\​"ErrorControl" = "0x00000000"

To remove the infection:
 * 1) Press [**Windows Key**] + [**R**], type **REGEDIT** and click **OK**.
 * 2) Navigate to the registry key: **HKEY_LOCAL_MACHINE\​SYSTEM\​CurrentControlSet\​Services\​Fkrkk[RANDOM NUMBERS]**
 * 3) Delete the registry value: **DisplayName = "FkreFoxkk[RANDOM NUMBERS]"**
 * 4) Delete the registry value: **Description = "FkreFoxkk Browser[RANDOM NUMBERS]"**
 * 5) Delete the registry value: **ErrorControl = "0x00000000"**
 * 6) Delete the registry value: **ImagePath = "%System%\​fkrekk[RANDOM NUMBERS].exe"**
 * 7) Delete the registry value: **ObjectName = "LocalSystem"**
 * 8) Delete the registry value: **Start = "0x00000002"**
 * 9) Delete the registry key: **HKEY_LOCAL_MACHINE\​SYSTEM\​CurrentControlSet\​Services\​Fkrkk[RANDOM NUMBERS]\​"Type"**
 * 10) Exit the Registry Editor.

Look for the Trojan in the services registry key