> Spyware Encyclopedia Page 46 > Diablo Keys

Diablo Keys removal

Spyware Diablo Keys Information
Name: Diablo Keys Category: Keylogger Date: 2000-10-13 Author: Joao Ferreira Coded in: Visual Basic Dangerous: Yes

Diablo Keys is Keylogger which is malware.
Installing it is highly not recommended.

Diablo Keys description by Joao Ferreira:

Vendor: DIABLO KEYS Tutorial By KodaPT - What´s this? This is your dream becoming true... With this great Trojan you´ll be able to see what the victims do & type. No...It┤s not a normal Trojan... because to do this you do not need to be connected to the server... you made to be making sex while Diablo Keys log all that the pour victim do and in the next day you can see it by connecting to a FTP server... This utility isn´t to lammers...because you´ll need some skills to spy the victim. This utility is only to use by persons that have a minimal "know - how" of FTP servers & Trojans.. Basically you´ll infect the victim like a normal Trojan. You can also use the Infect Utility to do that...Than the application will be spying the victim. Then it forwards the captures to a specified FTP account, that you previously have setup. Then you can read the log & see some interesting data....;) - Disclaimer 1 - Diablo Keys is provided ´as is´, without any express or implied warranty, in no event the author is held liable for any damages arising from the use of it. 2 - The author can´t be held responsible for any illegal action(s) arising from the use of this software. If you do not agree with these terms, do not use Diablo Keys... - Make a Diablo Keys . EXE file (server side/host) Follow the following steps if you really wanna spy someone: 1 - 1st you need an FTP account. To make a new account I used the FTP of Angelfire.com. Go to www.angelfire.com & then click on Sign Up. Now you must create a new account. Fill out the data that Angelfire requires. Be careful: don´t use your personal data, just lie...Remember your FTP account name, & password. For example mb/zapzap , 0987651 2- when the FTP account has been created, now you must create an email account. This is to use on the mail notification. Don´t use cellular phones or your own email. Create a new with strange names. 3- Ok. You´ve a new FTP & a new email account. Now you´re prepared to make the .EXE file, the file that will spy on Windows. Open the Diablo.exe application & click on New Diablo. Now you must setup the new .server, this is, the FileName.exe that you´ll use. - Name of Server : you must put here a name to the Diablo Server. Be sure not to use a normal name like Win32 or those things. Use a name created by your own. - Password: the password for the server. You´ll need to know this password if you use encryption.. - Use Encryption/ Compress? - you must tell if you want encryption or not. Using encryption will encrypt the any file so no one can see in your FTP server, only if they now the password. I´ll not tell the module ; ) , but it quite strong. In the other side, you can use compression, that is it´ll compress the captures. - Date to end:- of course that you don´t want that the server forwards you all the any file to the end of your life, not? So setup here a date to the server terminate. Use Yeahr_Month_Day (2000_12_31) . Be careful: use this Syntax. If not the application will ever terminate! - FTP Server - type there the FTP server that you wanna use. In our example we used Angelfire, so: ftp.angelfire.com - FTP Server User Name;- ok. The FTP name account that you wanna use, & once created. for example: mb/zapzap - FTP Server Password: Ftp account password. You need to setup this too. It┤s necessary to send the any file. - FTP File Type: the file type to use on FTP sending any file. It must be define with the encryption option,. If you use encryption you must put Binary. If not you must put ASCII . - Mail Server: you´ll receive also mail notification when new captures were sent. To receive you must setup the email server of the victim. Note: the server of the victim, not yours. This is like SMTP servers... - Send To: The email account to send the mails. Then you must type the subject & the body of the email too - Name of File: the name of the file. Use this option carefully... - Diablo Signature: this option is extremely useful. You must type a signature, like a symbol, to see which is the file on the FTP server. Use : *.sss . Remember the signature because if you use in local pc┤s you must now this pattern to see the any file. Now you must complete the setup process. You can choose by Faking a Message or not. By faking a message you can fake an error message. Configure the dialog box by choosing the title, text, buttons & type. You can also choose if you wanna use Regedit, System.ini or Win.ini or all together. With Melt File, the file will disappear after the person clicks on the .exe file. With auto-copy just copy the exe from the directory that´s clicked to the system dir, with another name if you specified that. (Name after Auto-Copy) Now click on Make to build the new .EXE file & save in a folder . Ok. The file is ready to spy anybody you want. To see this working you can infect yourself... - Infect a Diablo Keys Ok. You´ve the .EXE file, & now? Ok. You´ve two options: you can do it by yourself by breaking a window, turn on the PC & put the file in C:\windows\system & click on the file; or you send it to the victim by using the fantastic utility named "Infect.exe". This utility is great: it´ll send a normal file (.txt , .bmp, .wav) to the victim & also infect the victim. Or you redirect the victim to an URL. Here, yes, here you must have high skills of piracy. You must now the victim & now if she knows you. Pretend being someone sending a photo, or sending an HTML file to see. The file will appear like this Joe.BMP.vbs . If the victim see the extension .vbs. & understands how could be dangerous to click on the file, forget it! But if she clicks the photo will appear (+/- 2nds after depend on the size & the CPU speed) . If you choose to redirect to an URL it is simpler & more efficient. OK. You must make a plane! You´re know at your own... However, the author has coded & excellent utility called infect . This utility, will code a script for you! You must setup the script by filling out the text boxes. Be sure to fill out everything & another once you must be very clever... The utility is very easy to use. The final result will be a file that when the victim click will show a normal file & infect the computer! In the Show File section you must specify if you wanna show a file from a FTP server (the file must be in that account!) or if you wanna show a URL. The FTP option is more slowly...and it┤s case sensitive! Be sure not to put he file in the same FTP server you receive the captures, of course! You must also setup the .EXE file to infect. It must be in the FTP to the script download it! Cli

This Keylogger is also known as:

•Backdoor/DiabloKeys.10 - named by Computer Associates.
• Backdoor/DiabloKeys.22!Server - named by Computer Associates.
• Keylog.Diablo!plugin!Trojan - named by Computer Associates.
• Keylog.Diablo.plugin - named by Computer Associates.
• Keylog-Diablo - named by McAfee.
• security risk or a "backdoor" program - named by F-Prot.
• Trj/Spy.DiabloKeys - named by Panda.
• Trojan Horse - named by Panda.
• Trojan Horse.LC - named by Panda.
• Trojan.Spy.DiabloKeys.10 - named by a.
• Trojan.Spy.DiabloKeys.10 - named by Kaspersky.
• Trojan.Spy.DiabloKeys.22.a - named by Kaspersky.
• TrojanSpy.Win32.DiabloKeys.10 - named by Kaspersky.
• TrojanSpy.Win32.DiabloKeys.22.a - named by Kaspersky.
• Win32.DiabloKeys.10 - named by Computer Associates.
• Win32.DiabloKeys.22.A - named by Computer Associates.
• Win32/DiabloKeys.10.A!Trojan - named by Computer Associates.
• Win32/DiabloKeys.22.a!Spy!Trojan - named by Computer Associates.

>> Delete Diablo Keys automatically - Download Spyware Doctor

Diablo Keys Removal Instructions
Kill the following processes anonymous mail.exe, diablo keys 2.2 server.exe, dk config.exe, dk remover.exe, dk.exe, make .vbs.exe, regocx.exe
Unregister the following DLLs and reboot getpage.dll.
Remove the following files anonymous mail.exe, blood.ani, bloodym.ani, crazy.ani, data1.dat, diablo keys 2.2 server.exe, diablo keys 2.2.lnk, dk config.exe, dk remover tool readme.doc, dk remover.exe, dk.doc, dk.exe, dk2.2setup.reg, dk2ref.htm, getpage.dll, hand.ani, help.txt, koda.dat, make .vbs.exe, plugin2.dk, plugin3.dk, readdavid.txt, regocx.exe, select.ani, sys.ocx, tips.txt, winmem.dat, winsys9x.dat.

Bookmark Diablo Keys page

Previous Spyware: Remove Diablo 2 TCP/IP Sever DoS

Next Spyware: Remove Diablo Keys 1.0