Threat Profile: Dlder

Threat Search
Virus Profile information details
Risk Assessment: Home N/A | Corporate N/A
Date Discovered: 11/30/2001
Date Added: 12/31/2001
Origin: Unknown
Length: 31,232 (DLDER.EXE)
Type: Program
Subtype: -
DAT Required: 4180
Removal Instructions


This is a Potentially Unwanted Program (PUP) detection. It is not a virus or trojan. PUPs are any piece of software which a reasonably security-or privacy-minded computer user may want to be informed of.


N/A This is not a virus.


N/A This is not a virus.


TROJ_DLDER.A (Trend), Trojan.Win32.Dlder (AVP), Trojan/W32.Dlder (Panda)

Virus Characteristics

This program is not a virus. However, the application does resemble trojan like behaviour. It is/was being distributed by several popular freeware programs. Such as certain versions of BonziBUDDY,, KaZaA, Grokster, and LimeWire. In some cases the user was not made aware that the program was being installed, and/or what the program was designed to do.

The program is related to the ClickTillUWin game. It is designed to relay the computer IP Address, URLs that the user has visited, and web browser version to, for the purpose of displaying advertisements. It creates the following files and registry entries:

  • C:\Windows\dlder.exe
  • C:\Windows\explorer\explorer.exe
  • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\

The detection of this type of files is not automatically activated.
Users who would like to check for the presence of this kind of files on their system should run the command line scanner with the /PROGRAM switch.
Please note that VirusScan 7 has also an option, which enables users to detect this kind of program automatically (see below).
This type of detection also exists within e250/e500 Webshield filtering devices.

PC Infected? Get Expert Help

Virus Removal Service

Connect to one of our Security Experts by phone. Have your PC fixed remotely - while you watch!