Trojan:Win32/Diple.A

Detected by Microsoft Defender Antivirus

Aliases: Trojan.Win32.Diple.pkm (Kaspersky)

Summary

Trojan:Win32/Diple.A is a trojan that allows unauthorized remote access and control of an affected computer. The trojan attempts to connect to a remote server using a specific port to accept and execute commands from a remote attacker. The trojan could download an arbitrary file and run it as "%TEMP%\csrssd.exe".

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

Microsoft Security Essentials
Microsoft Safety Scanner

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Trojan:Win32/Diple.A

Summary

What to do now

Technical information

Threat behavior

Installation

Payload

Prevention

Symptoms

System changes