iPhone 3GS from AT&T. Free Shipping
Spyware, viruses, & security : VIRUS \ SPYWARE ALERTS - April 17, 2009
- 4/17/09 6:22 AM
VIRUS \ SPYWARE ALERTS - April 17, 2009
by Marianna Schmudlach - 4/17/09 6:22 AM
Troj/Proxy-JB
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojproxyjb.html?_log_from=rss
Troj/FakeVir-LX
by Marianna Schmudlach - 4/17/09 6:23 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojfakevirlx.html?_log_from=rss
Troj/Bnkmr-Fam
by Marianna Schmudlach - 4/17/09 6:23 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Troj/Bnkmr-Fam is a family of Trojans which attempt to steal information related to banking websites.
http://www.sophos.com/security/analyses/viruses-and-spyware/trojbnkmrfam.html?_log_from=rss
Troj/Agent-JOU
by Marianna Schmudlach - 4/17/09 6:24 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentjou.html?_log_from=rss
Troj/Agent-JOT
by Marianna Schmudlach - 4/17/09 6:25 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentjot.html?_log_from=rss
Troj/Agent-JOS
by Marianna Schmudlach - 4/17/09 6:26 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentjos.html?_log_from=rss
Troj/Agent-JOR
by Marianna Schmudlach - 4/17/09 6:27 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentjor.html?_log_from=rss
Troj/Agent-JOV
by Marianna Schmudlach - 4/17/09 6:28 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentjov.html?_log_from=rss
Now this is just wrong!
by Marianna Schmudlach - 4/17/09 7:08 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Searching for good things with bad results is something that now happens on a regular basis, like the example we blogged about the other day. But now it's personal - searching for "f-secure" leads to rogue products. This time it's not via SEO (Search Engine Optimization) but through malicious Google ads. As you can see in the screenshot below there's an ad pointing to update-xp.com. You have to click on search twice for it to come up and it doesn't seem to happen every time.
More: http://www.f-secure.com/weblog/
Packed.Generic.221
by Marianna Schmudlach - 4/17/09 7:09 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Discovered: April 17, 2009
Updated: April 17, 2009 10:04:49 AM
Type: Trojan, Virus
Packed.Generic.221 is a heuristic detection for files that may have been obfuscated or encrypted in order to conceal them from antivirus software.
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-041710-0449-99
Trojan-Downloader:W32/FraudLoad
by Marianna Schmudlach - 4/17/09 7:10 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Name : Trojan-Downloader:W32/FraudLoad
Category: Malware
Type: Trojan-Downloader
Platform: W32
Summary
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the files.
Additional Details
This malware is created to download and install rogues into the system.
The presence of this malware is signified by the presence of windows like this one:
http://www.f-secure.com/v-descs/trojan-downloader_w32_fraudload.shtml
Virus Alerts [Panda Security's weekly report on viruses and
by Marianna Schmudlach - 4/17/09 7:12 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Virus Alerts [Panda Security's weekly report on viruses and intruders - 04/17/09]
- Panda Security's weekly report on viruses and intruders -
Virus Alerts, by Panda Security (http://www.pandasecurity.com)
This week's PandaLabs report looks at the Hiloti.A Trojan,
PersonalAntivirus and IRCBot.CML worm.
When run, the Hiloti.A Trojan sets the Mandatory Integrity Control level
(MIC) to low. This way, it can run any file downloaded without the user
noticing. In this case, it downloads the Lop adware, designed to show
advertising messages.
Additionally, Hiloti.A logs onto Internet Explorer as a BHO (Browser
Helper Object), monitoring Internet browsing. If users use Firefox, the
malware injects a code on the pages monitored (over a hundred) to
redirect searches carried out on those domains to pages that contain
more malware to be downloaded.
PersonalAntivirus is a fake antivirus. As with all such adware,
PersoanlAntivirus is designed to convince users that the system is
infected with malware. To do so, it performs a false scan of the
affected system, during which it detects several malware samples (image:
http://www.flickr.com/photos/panda_security/3448900109/)
If users click "Remove", a form will be displayed asking users to pay
for the license, and a false warning message will appear indicating the
computer is at risk (image:
http://www.flickr.com/photos/panda_security/3449714734/)
Finally, IRCBot.CML, is a worm that allows remote intruders to access
and control the computer via IRC. This worm passes itself off as a photo
to reach computers, but once run displays an error message with the
text: "Picture can not be displayed".
Next, IRCBot.CML opens several ports and tries to connect to an FTP
server to send the user's data, keystroke captures, etc.
This worm spreads through MSN Messenger, trying to infect all the user's
contacts.
Troj/FakeAV-PA
by Marianna Schmudlach - 4/17/09 10:27 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojfakeavpa.html?_log_from=rss
Troj/FakeAV-OZ
by Marianna Schmudlach - 4/17/09 10:27 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojfakeavoz.html?_log_from=rss
Troj/Dload-GF
by Marianna Schmudlach - 4/17/09 10:28 AM
In reply to: VIRUS \ SPYWARE ALERTS - April 17, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojdloadgf.html?_log_from=rss
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
