Internet Antivirus or InternetAntivirus, is a fake rogue program that claims to “Protect Your System with the Best Antivirus” according its website, www.internet-antivirus.com. We have determined that Internet Antivirus is totally bogus and does not protect your computer or remove parasites from your system.
(...Read more)-------------------------------------------------------- Top ^
Antispyware 2008 XP or known as Antispyware2008XP, is a fake anti-spyware application that is effecting mainly Italian speaking areas of the world. Antispyware 2008 XP can be dangerous to any part of the world provided that a computer is connected to the internet. Any system connected to the internet is vulnerable to the Antispyware 2008 XP rogue program.
(...Read more)-------------------------------------------------------- Top ^
AntivirusMaster is a new rogue anti-spyware program and a clone of Antivirus 2008 along with quite a few others. This parasite is a fake spyware remover, which uses trojans, such as Zlob or Vundo, to enter the system. AntivirusMaster uses misleading popups and fake system notifications to convince the user he is infected and therefore in need of an anti-spyware program. Not just any program either, but AntivirusMaster.
(...Read more)-------------------------------------------------------- Top ^
On Monday, Symantec opened two of its Norton 2009 products to public beta. Both Norton Internet Security 2009 and Norton Antivirus 2009 feature new code that not only makes the scans and services run faster, but consume fewer system resources, says Tom Powledge, vice president of consumer product management.
(...Read more)-------------------------------------------------------- Top ^
Trojan.Win32.Pakes.bqb is a malicious security threat that is responsible for infecting systems, disabling vital security settings and making way for more malware into your computer. Unsecure websites with embedded malicious code are primary sources of Trojan.Win32.
(...Read more)-------------------------------------------------------- Top ^
A couple of weekends ago, I was doing exactly what most computer users do in their free time. I was sitting front of the computer, visiting sites that I have no business with. One site led to another and I eventually started looking for some old friends I had lost contact with over the years.
(...Read more)-------------------------------------------------------- Top ^
Zlob-x.a is the newest version of the infamous Zlob trojan. Essentially, tt is a backdoor designed to give the attacker remote control over a compromised computer, and more often than not, install additional malware into the compromised system. It changes essential system settings and modifies certain files and Windows registry entries. Zlob-x.a starts automatically on every Windows startup and stays hidden in background.
(...Read more)-------------------------------------------------------- Top ^
Since the beginning of this year, a new kind of rootkit has been discovered in the wild. The MBR rootkit, the rootkit that affects Master Boot Record to hide itself inside Windows, has enticed the security industry and sparked many conversations on the future of malicious software because of its new approach never used before if not for some proof of concepts.
(...Read more)-------------------------------------------------------- Top ^
Independent antivirus testing organization AV-Test.org has released new test results on the latest versions of 30 antivirus products, and the report cards weren't all good. None of the AV products scored straight As, and a few failed in some categories, such as remediation from malware infections and AV's old nemesis, rootkit detection.
(...Read more)-------------------------------------------------------- Top ^
My colleague, Takashi Katsuki, posted a blog that describes how Trojan.Farfli provides a service to affiliates, which allows them to increase the number of hits for an affiliate’s tracker. Recently I came across another Trojan, which provides such a service: Trojan.Trafbrush. When Trojan.Trafbrush is executed, it drops several components and registers a browser helper object (BHO).
(...Read more)-------------------------------------------------------- Top ^
Cyber-criminals and malware writers are looking for ways to test their creations before distributing them, according to research carried out by security firm PandaLabs.. An investigation conducted by the malware analysis and detection laboratory found that cyber-crooks are collaborating on different forums and internet sites.
(...Read more)-------------------------------------------------------- Top ^
The statistics resulting from our scanning of mail traffic in February 2008 were slightly different to data from the first month of the year. Although the Trojan-Downloader program, Diehard, is continuing to cause significant outbreaks, this isn't reflected in the rankings. There were four variants of this program in the January Top Twenty. In February, these four were replaced by a single new version which occupies twelfth place; however, this does not mean that the battle against Diehard is over.
(...Read more)-------------------------------------------------------- Top ^
A Window Mobile PocketPC trojan that disables Windows Mobile application installation security has been discovered in China.WinCE/InfoJack sends the infected device’s serial number, operating system and other information to the author of the trojan. It also leaves the infected mobile device vulnerable by allowing silent installation of malware. The trojan modifies the infected device’s security setting to allow unsigned applications to be installed without a warning.
(...Read more)-------------------------------------------------------- Top ^
When a colleague pointed me at this article about some MS research on using worm techniques to distribute patches more efficiently, I had a moment of extreme déjà vu. After all, Fred Cohen was talking about beneficial uses of viruses in the mid-80’s. But since then, we’ve had a number of attempts occur that prove the old adage that the road to hell is paved with good intentions.
(...Read more)-------------------------------------------------------- Top ^
When we first heard the words "Hillary Clinton video" and "malicious download," we assumed it was a piece from a Fox News segment, maybe a teaser for the next episode of O'Reilly.Security vendor Symantec said it is a legitimate computer threat being sent out in spam to unsuspecting recipients. As we have seen in other instances, the spammers are using a Google URL to make the link look safe.
(...Read more)-------------------------------------------------------- Top ^
BortMedVirus is a malicious rogue anti-spyware parasite that propagates with the help of malicious toolbars and trojans such as Zlob or via unsecure internet sites. After installing itself into your hard drive, the parasite starts to generate massive amount of pop-up security messages, prompting you to check your computer for spyware with a free BortMedVirus version. After the check is complete, you will be presented with a list of fake spyware threats that have supposedly infected your computer.
(...Read more)-------------------------------------------------------- Top ^
Safenavweb com is a browser hijacker, which uses scare tactics to promote rogue anti-spyware programs. Safenavweb com usually infects the system by using trojans and, once inside, changes the user's homepage Safenavweb com and redirects him to other malicious websites, thus potentially downloading other malware on the system.
(...Read more)-------------------------------------------------------- Top ^
Small.HKO is a downloader trojan that sneaks into computers by exploiting loopholes in your browser security defenses. Its main destructive payload consists of opening a backdoor your system and make it ripe for hackers to wreak havoc onto your computer, personal and financial data. Trojan-Downloader.Small.hko may also potentially install other malware into your PC and contaminate it even further.
(...Read more)-------------------------------------------------------- Top ^
Ekxdvft Toolbar is the most recent reincarnation of the Zlob trojan. It is mainly responsible for distributing rogue anti-spyware parasites across the Web into the systems of unsuspecting users. Like other randomly named toolbars of the same type, Ekxdvft Toolbar displays fake error notifications in your browser, desktop and system tray. It is done to lure you into clicking on the ad of random malware parasite and download it to your computer.
(...Read more)-------------------------------------------------------- Top ^
VirusHeat, a new version of corrupt parasite removers was launched this week. The parasite owners, who host in Ukraine, claim that they work on this tool since 2000 and have the best tool around. Surely, this parasite will help you by cleaning the fake and some known spywares that came with it when you pay money for the full version of it.
(...Read more)-------------------------------------------------------- Top ^
Trojan Agent Azb is a dangerous parasite that infiltrates your system via loopholes in your web browser security. It is a specialized personal information theft tool that is used by hackers to steal user's passwords, bank account details and credit card numbers. If you have the process mstool.exe running in your system background, you can be sure you've been infected. We strongly recommend you to kill this process if found and remove Trojan Agent Azb.
(...Read more)-------------------------------------------------------- Top ^
NadadeVirus is a rogue anti-spyware program - a fake spyware remover, targeted at the spanish-speaking public. It employs Trojans to infect systems. When active, NadadeVirus will flood the user with popups and fake system notifications to "warn" him of an infection and thus get him to buy the "licensed version" of NadadeVirus.
(...Read more)-------------------------------------------------------- Top ^
Romance is out and sex is in, according to security experts who said the Mega-Dik botnet has ousted the infamous Storm as the most prolific sender of spam. The Mega-D botnet, which offers discounted sexual enhancement pills to users, delivers a whopping 30 percent more spam than Storm, famous for delivering malicious Valentine's Day cards.
(...Read more)-------------------------------------------------------- Top ^
Skitodayplease is a clone of the notorious doginhispen trojan. It makes normal web browsing almost impossible, especially if you are using the Internet Explorer browser. Skitodayplease trojan corrupts you web browsing history, changes your desktop background, slows down and destabilizes your system. This parasite is usually a precursor to a rogue anti-spyware infection, and is impossible to remove manually.
(...Read more)-------------------------------------------------------- Top ^
For the second month in a row, representatives of the new Trojan-Downloader family Diehard have been creating a considerable stir in mail traffic. Our December 2007 Top Twenty contain three variants of this program; yet another variant has joined the rankings in the first month of 2008. The unknown authors are using exactly the same approach which made families such as Warezov and Zhelatin so successful two years ago – conducting a multitude of very short lived mass-mailings. However, in contrast to Warezov, we're not yet seeing ten new variants of Diehard every day.
(...Read more)-------------------------------------------------------- Top ^
Nebuler, also known as Eterok.b, is a trojan that gathers system information and transfers it to predetermined web sites. The parasite also downloads from the Internet and executes arbitrary, potentially harmful files. Once executed, Nebuler secretly installs itself to the system and injects malicious code into legitimate system processes in order to avoid detection. Then it runs a payload. Nebuler runs on every Windows startup.
(...Read more)-------------------------------------------------------- Top ^
Imbot.AC is a dangerous worm that infects systems via MSN Messenger by sending itself as attachement to contacts from the infected computer and showing such messages as: Have I shown you this new picture of my cat:) Did you see this picture, it’s hilarious!!!!! Hey, check out this great photo from my trip to England
(...Read more)-------------------------------------------------------- Top ^
Virantix is a trojan that may infect your computer via various websites of questionable security and malicious P2P network shares. Its main function is to disable your security processes and make way for more malware into your system. As soon as Virantix Trojan completes its operations, be sure to anticipate a massive malware attack in the nearest future.
(...Read more)-------------------------------------------------------- Top ^
Trojan.Win32.Pakes.bqb is a malicious security threat that is responsible for infecting systems, disabling vital security settings and making way for more malware into your computer. Unsecure websites with embedded malicious code are primary sources of Trojan.Win32.Pakes.bqb infections.
(...Read more)-------------------------------------------------------- Top ^
Spy KeyLogger rp (also known as Trojan Spy KeyLogger rp) installs itself insidiously and opens a backdoor so it can import other spyware/adware to your computer. This brings about a large variety of issues, the most obvious being the massive amount of popup advertisements and the chance that your private information can be stolen and abused.
(...Read more)-------------------------------------------------------- Top ^
